Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
File:                     yYDRnDv8xARxVndvAqNJiY5GuQ0.mft (raw, json)
Hash identifier:          /DAqSJkZ2QKMiUhJmep26jOj8Drlw9nrOtdJMV/rwvU=
Subject key identifier:   58:73:79:4F:23:94:E3:99:B2:2C:CC:A5:20:DE:FA:90:84:8E:05:82
Authority key identifier: C9:80:D1:9C:3B:FC:C4:04:71:56:77:6F:02:A3:49:89:8E:46:B9:0D
Certificate issuer:       /CN=c980d19c3bfcc4047156776f02a349898e46b90d
Certificate serial:       019CAB6BE6ED9B36C355C6A2865FB7A82C10
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
Manifest number:          0B61
Signing time:             Sun 01 Mar 2026 22:01:41 +0000
Manifest this update:     Sun 01 Mar 2026 22:01:41 +0000
Manifest next update:     Mon 02 Mar 2026 22:01:41 +0000
Files and hashes:         1: yYDRnDv8xARxVndvAqNJiY5GuQ0.crl (hash: xcbOAheoCxlwMKpT3OAis4lpaHNxj8C1SXZEakK02Tg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 18:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:6b:e6:ed:9b:36:c3:55:c6:a2:86:5f:b7:a8:2c:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c980d19c3bfcc4047156776f02a349898e46b90d
        Validity
            Not Before: Mar  1 22:01:41 2026 GMT
            Not After : Mar  2 22:01:41 2026 GMT
        Subject: CN=5873794f2394e399b22ccca520defa90848e0582
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:e7:f9:98:25:39:08:d0:07:4b:79:d7:cb:5a:
                    8d:cb:d7:f2:1a:5e:f1:f3:5c:22:7a:b0:ba:5b:e1:
                    e8:ea:5b:c5:25:d8:43:21:0c:a8:9a:71:30:1d:da:
                    dd:e4:9e:12:cf:26:21:4b:42:c2:f2:be:fb:99:7c:
                    b8:cf:e4:04:a1:b6:5f:c9:29:89:fe:0a:fb:f5:28:
                    b3:cf:13:27:a9:e3:50:c2:02:21:bd:40:82:65:9a:
                    3b:46:9c:08:25:31:92:da:85:86:65:dd:df:56:55:
                    7c:52:4a:12:f9:e6:d5:52:95:ca:70:ae:b8:88:55:
                    35:73:06:95:4b:43:d5:4b:56:15:b3:2e:f3:05:b0:
                    41:16:ac:02:84:a3:e9:3a:5c:22:92:40:ea:44:d2:
                    1e:60:ce:8b:81:14:af:cf:dc:f4:58:99:8f:9c:b6:
                    e9:34:f7:13:07:c3:d7:27:9b:c8:af:04:a7:a7:f6:
                    74:4c:90:c6:10:9b:92:53:0d:d1:4d:6d:85:f1:62:
                    55:4e:69:ba:fb:ad:ed:ab:4d:55:fa:ad:03:df:8c:
                    bf:18:bc:05:7e:07:5c:c7:84:1c:53:ca:c6:c4:98:
                    19:ae:da:9a:b1:2b:b3:e7:61:e1:10:70:e9:3d:cd:
                    c4:85:71:6d:59:63:2d:83:37:c6:75:6f:dd:b6:a9:
                    3c:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                58:73:79:4F:23:94:E3:99:B2:2C:CC:A5:20:DE:FA:90:84:8E:05:82
            X509v3 Authority Key Identifier:
                keyid:C9:80:D1:9C:3B:FC:C4:04:71:56:77:6F:02:A3:49:89:8E:46:B9:0D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yYDRnDv8xARxVndvAqNJiY5GuQ0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/68c063-400a-4ed1-9fbf-b86619752039/1/yYDRnDv8xARxVndvAqNJiY5GuQ0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:d6:e7:c9:a0:b9:9f:a7:e0:2d:04:60:c8:90:45:3a:ac:d0:
         94:1b:f9:e3:42:ff:9f:7d:88:7f:e2:19:80:9f:04:8e:1a:5b:
         bb:18:9e:7e:5a:aa:c2:8b:73:9b:33:e3:ea:9a:c4:5e:27:b4:
         ea:2d:dd:6d:39:7a:5b:79:93:00:1d:55:68:ba:c9:9f:01:1e:
         45:de:8b:fc:31:02:3f:37:a3:45:da:a0:36:94:81:91:17:3f:
         ca:50:2d:d6:29:42:ad:b6:0e:9c:74:a8:65:4d:0e:44:0d:64:
         72:cb:79:e9:2d:5b:4b:5b:ca:f1:42:07:d4:97:c1:b2:d4:01:
         15:cb:1b:a0:6b:f9:72:64:87:9b:6f:8c:a9:88:b7:9a:b3:8e:
         98:87:d1:e5:65:df:5b:d4:bc:85:63:39:60:44:9b:6b:e7:50:
         8a:c4:dd:3b:a2:d8:0b:69:2a:a5:d5:01:a2:ff:bb:7d:ca:b3:
         71:72:b1:0c:46:a9:de:6d:70:69:c9:e7:6f:c1:3d:27:e1:1d:
         65:41:d5:69:e7:09:f3:12:c9:e1:0f:3b:7c:af:d4:73:db:61:
         b4:77:7b:e2:a4:5c:a2:fe:f7:3e:21:db:86:70:6b:67:df:34:
         86:6f:6f:60:7c:45:01:c0:fd:96:ee:ce:cb:e1:40:39:b7:31:
         d6:57:4d:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----