Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.mft
File:                     yyaLUpOTAY1LyfxUBzAwoD2SlyE.mft (raw, json)
Hash identifier:          ROkCE/ebRH46QpZYUcdHYIyJSOTX2ptYKZlkXemDsXA=
Subject key identifier:   76:2B:14:CA:BC:78:E8:3F:62:D8:CB:35:0D:C5:86:12:6A:B3:6E:F1
Authority key identifier: CB:26:8B:52:93:93:01:8D:4B:C9:FC:54:07:30:30:A0:3D:92:97:21
Certificate issuer:       /CN=cb268b529393018d4bc9fc54073030a03d929721
Certificate serial:       019D9A3DF9073F6AC39489C91BA957977ECB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yyaLUpOTAY1LyfxUBzAwoD2SlyE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.mft
Manifest number:          1556
Signing time:             Fri 17 Apr 2026 07:00:45 +0000
Manifest this update:     Fri 17 Apr 2026 07:00:45 +0000
Manifest next update:     Sat 18 Apr 2026 07:00:45 +0000
Files and hashes:         1: yyaLUpOTAY1LyfxUBzAwoD2SlyE.crl (hash: yBs9Hs5qfFAnKwpNu3CLo66lUQ+rahs8B6hBclZezdE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yyaLUpOTAY1LyfxUBzAwoD2SlyE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 07:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9a:3d:f9:07:3f:6a:c3:94:89:c9:1b:a9:57:97:7e:cb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cb268b529393018d4bc9fc54073030a03d929721
        Validity
            Not Before: Apr 17 07:00:45 2026 GMT
            Not After : Apr 18 07:00:45 2026 GMT
        Subject: CN=762b14cabc78e83f62d8cb350dc586126ab36ef1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:58:12:0b:20:54:09:75:e5:66:d6:22:17:b7:
                    7a:bd:75:9f:a7:a6:9d:e3:b9:ff:3a:c0:98:5b:d1:
                    a7:a0:cf:29:51:0a:4b:c5:36:2e:d0:06:9d:fd:d9:
                    e8:01:d5:2f:da:35:f5:e3:e4:25:d8:1a:9d:bc:97:
                    c1:44:d1:64:22:43:67:67:0a:d4:74:2b:8b:81:9d:
                    73:c2:8c:ab:af:5f:bf:34:5b:41:71:ef:10:72:12:
                    14:fb:12:55:f5:7d:fd:7f:98:3a:8f:e9:c3:3e:81:
                    a6:f9:f1:ca:a8:af:c5:a4:6e:e3:1c:4f:3e:bd:4f:
                    07:0d:88:09:26:12:0e:55:8a:1a:46:4b:e5:4e:ac:
                    39:54:97:a8:c8:9b:30:97:80:2d:82:f3:05:27:1a:
                    62:82:9d:4b:40:df:d0:db:3a:24:7a:39:95:b6:77:
                    9d:b5:e0:5e:30:71:01:2c:c1:d4:73:f2:3d:5c:e6:
                    98:f2:fe:c4:01:8a:ad:1e:ba:eb:34:ca:aa:00:af:
                    8a:6d:4d:20:00:61:9b:c0:11:a6:6b:f0:4d:50:cd:
                    0a:35:aa:4e:8e:6f:d7:31:2c:0a:b3:f6:37:19:c6:
                    ea:bb:5d:3a:23:84:12:2b:4f:d4:7a:5c:dd:3a:d4:
                    09:b9:48:be:43:2c:3f:30:a8:6c:bb:4b:51:4c:eb:
                    6a:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:2B:14:CA:BC:78:E8:3F:62:D8:CB:35:0D:C5:86:12:6A:B3:6E:F1
            X509v3 Authority Key Identifier:
                keyid:CB:26:8B:52:93:93:01:8D:4B:C9:FC:54:07:30:30:A0:3D:92:97:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yyaLUpOTAY1LyfxUBzAwoD2SlyE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:60:c5:e7:3b:05:03:a4:3a:1b:68:4d:02:5e:66:1a:a2:0d:
         c4:72:1f:3d:ba:8b:2f:c6:44:5a:96:28:78:a4:91:b5:75:f4:
         0d:6f:8a:f4:46:fd:c1:1d:4c:91:ea:b7:9a:f3:e6:0f:78:94:
         fa:03:c1:a9:2e:a4:2b:c5:fc:9b:c1:e0:15:1a:69:aa:dc:6b:
         3f:be:41:db:ad:05:cb:58:fa:19:cf:a6:98:d3:4c:80:2b:e2:
         9c:83:29:d5:97:64:79:c9:c5:ca:7c:77:60:11:2a:11:c0:d2:
         f1:96:c6:82:c0:2d:3b:9b:73:2e:4a:d0:94:d5:6f:c8:36:28:
         e9:74:e2:00:00:9a:d9:ec:ac:32:17:8f:57:01:c3:5a:f1:21:
         84:67:b4:c0:d3:8a:2b:24:4d:a1:23:f1:b1:d6:cd:9d:3e:3b:
         6f:31:28:c9:d5:0b:fd:26:45:a8:6f:77:ef:c5:77:9d:df:37:
         b2:71:5b:eb:a7:cc:39:4f:61:77:db:ab:28:f2:df:7e:cb:96:
         fc:62:66:6e:7a:3c:16:f2:8c:a9:d0:d3:5b:e4:79:77:7c:2f:
         1c:d9:7c:89:14:bc:80:f1:a8:15:ce:c9:45:5d:c5:73:80:22:
         ff:65:c5:f8:bf:9d:80:bb:98:05:1a:0a:ba:d7:9f:16:dd:86:
         7c:73:76:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----