Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
File:                     tY6n73bYACz8pmxSD3ybYIo5XZU.mft (raw, json)
Hash identifier:          o4BgkrgVjN5mJ/tMx2hOa7rCyZVoTsxIL5FeV1nvD+k=
Subject key identifier:   2E:C0:27:1A:6E:04:19:B7:E6:6B:15:C8:39:99:B1:C8:F4:22:6E:6A
Authority key identifier: B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95
Certificate issuer:       /CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
Certificate serial:       019CAAC65B9A45A1323C1970B0CE286A2F05
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
Manifest number:          07D6
Signing time:             Sun 01 Mar 2026 19:00:52 +0000
Manifest this update:     Sun 01 Mar 2026 19:00:52 +0000
Manifest next update:     Mon 02 Mar 2026 19:00:52 +0000
Files and hashes:         1: tY6n73bYACz8pmxSD3ybYIo5XZU.crl (hash: Tzdhc7NtR72Vuvow0wdY942mgKD+mHZu0W+meaduSAg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 15:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:c6:5b:9a:45:a1:32:3c:19:70:b0:ce:28:6a:2f:05
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
        Validity
            Not Before: Mar  1 19:00:52 2026 GMT
            Not After : Mar  2 19:00:52 2026 GMT
        Subject: CN=2ec0271a6e0419b7e66b15c83999b1c8f4226e6a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:02:ec:0d:81:27:e3:8b:1f:36:93:3b:1c:d4:
                    10:f7:4a:08:a7:af:c9:3b:91:5b:b1:95:5b:7a:64:
                    52:f9:72:10:29:85:80:7d:b3:4c:76:fd:91:5d:de:
                    15:d3:05:5f:04:dc:47:25:2e:44:d4:bf:2c:a3:23:
                    47:4a:a0:5a:70:e9:00:d8:db:1b:44:c3:1f:0c:f7:
                    44:99:4b:97:83:fb:c4:7e:be:d9:01:71:e1:1f:7f:
                    68:0f:48:21:f4:19:8f:eb:87:6c:64:cf:d9:75:e5:
                    9a:17:53:81:f7:96:04:01:fe:b8:1d:06:9f:29:75:
                    58:95:35:1e:e6:76:25:29:72:e5:95:d2:f1:09:5d:
                    f5:9f:9a:f0:3b:f8:3c:ff:9f:e8:63:e4:1d:7b:bc:
                    0d:1f:0f:eb:78:9c:14:da:69:7f:bc:e0:36:3d:70:
                    08:99:af:4d:e6:8c:78:6c:ea:0f:dd:34:f3:16:c6:
                    41:54:bd:9d:87:0b:f2:f4:e7:34:cc:2e:0e:99:a7:
                    2b:6f:09:2e:72:82:31:70:7a:a7:ac:df:59:41:91:
                    c8:c7:47:70:f2:2f:bf:62:0d:cc:4d:5c:78:1d:fa:
                    0f:c0:17:58:cb:9f:99:24:d6:2a:a6:28:79:de:7c:
                    fd:8f:63:5b:1e:fd:60:06:84:fb:ff:ca:ac:79:30:
                    42:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2E:C0:27:1A:6E:04:19:B7:E6:6B:15:C8:39:99:B1:C8:F4:22:6E:6A
            X509v3 Authority Key Identifier:
                keyid:B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:fa:7d:70:40:46:46:d2:bb:bd:43:21:2b:a6:1d:a4:af:8e:
         15:10:c2:ea:4c:0a:8b:3c:7f:9f:12:aa:f1:ec:f3:97:51:2f:
         c7:15:41:d1:15:fe:5a:ce:88:b2:c2:24:b1:0d:8c:99:2f:40:
         6f:5d:c9:b8:65:8e:5c:25:cb:d8:59:48:13:db:3c:6f:96:43:
         fd:c4:f1:a3:bb:bb:23:b0:a9:d2:fe:84:02:1d:ab:4e:6a:31:
         3a:1e:e8:20:32:07:d0:db:a7:03:e3:a4:49:dd:13:3f:2b:7b:
         48:aa:d3:1b:cb:53:0d:3d:ce:46:84:fa:fc:68:db:ab:98:43:
         af:8e:30:a6:0b:a3:39:e2:f7:ae:f2:f1:f6:d7:a5:bc:41:04:
         c3:60:f2:29:8d:5f:cb:94:7f:f1:67:8e:4a:22:82:c6:bf:45:
         e5:b9:2c:a5:cd:04:bb:0a:22:c1:07:b6:ae:9d:f9:95:aa:c9:
         cd:b3:dc:19:ee:92:41:6c:7d:3e:ce:80:22:f7:4d:a5:cf:34:
         d6:9e:04:e7:d8:d8:ff:9b:80:55:0b:31:e5:4b:1a:e8:fb:53:
         df:26:a1:81:ec:da:ce:92:75:9d:88:2b:55:03:6e:ed:90:a9:
         0a:57:87:e4:cf:90:6b:61:1b:e5:fe:35:1f:85:e3:38:32:19:
         c7:d8:0c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----