Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft
File:                     UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft (raw, json)
Hash identifier:          mUGGjcVxgu3y894yIT0A8wjswGghvHbac+YrHNKvW4g=
Subject key identifier:   69:0B:02:B0:10:0E:E9:97:CA:D4:C9:5C:CB:0E:F4:DA:AC:1B:18:5B
Authority key identifier: 51:C3:CC:54:41:4F:B4:42:BE:39:D6:E1:A4:AF:72:4C:FF:EE:EE:FF
Certificate issuer:       /CN=51c3cc54414fb442be39d6e1a4af724cffeeeeff
Certificate serial:       019CAB6B927CE74DCB8CCC5E1DFFE7DCAC8A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UcPMVEFPtEK-OdbhpK9yTP_u7v8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft
Manifest number:          174B
Signing time:             Sun 01 Mar 2026 22:01:19 +0000
Manifest this update:     Sun 01 Mar 2026 22:01:19 +0000
Manifest next update:     Mon 02 Mar 2026 22:01:19 +0000
Files and hashes:         1: UcPMVEFPtEK-OdbhpK9yTP_u7v8.crl (hash: 9VhVm0ZQ0ovGB6cD16imJ11oJfquRt+GQePtnRrxW+w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UcPMVEFPtEK-OdbhpK9yTP_u7v8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 18:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:6b:92:7c:e7:4d:cb:8c:cc:5e:1d:ff:e7:dc:ac:8a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=51c3cc54414fb442be39d6e1a4af724cffeeeeff
        Validity
            Not Before: Mar  1 22:01:19 2026 GMT
            Not After : Mar  2 22:01:19 2026 GMT
        Subject: CN=690b02b0100ee997cad4c95ccb0ef4daac1b185b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:7e:a9:c8:bb:7f:64:f8:3c:69:1d:c3:90:18:
                    0d:e9:e4:1a:70:ec:8a:0d:21:2e:a8:80:f5:ed:b8:
                    51:5a:fd:9a:c4:3d:b7:c9:d6:fc:2b:28:1c:21:94:
                    e2:40:67:3b:d8:85:ae:b9:0e:71:d0:a8:da:cf:21:
                    6b:da:8f:e4:ae:53:1b:d5:f1:95:ab:c2:6e:69:0a:
                    f2:6f:a6:b7:9d:b9:10:7d:17:54:73:35:e7:38:f4:
                    59:de:66:1a:22:0a:d6:7a:84:94:df:d7:fa:95:ec:
                    9e:53:0a:d2:84:c2:fe:bd:2c:16:ed:96:76:f0:76:
                    94:56:44:04:2b:96:e2:86:dc:3c:95:9a:39:e2:eb:
                    d6:7f:d7:51:a1:73:9d:e3:6a:16:15:10:97:14:18:
                    23:a8:54:6f:f1:8b:de:29:cf:2a:ad:21:98:a3:86:
                    48:b6:a9:fc:7f:90:0f:9a:d8:9e:ba:87:18:69:85:
                    fb:e6:90:87:a7:af:5a:ab:22:c8:18:8c:52:17:bf:
                    19:71:a5:8d:8a:d5:a4:7a:77:13:84:68:f3:8c:cc:
                    d7:6f:45:e4:2b:53:46:96:85:6a:ad:b5:a3:22:3b:
                    13:aa:c9:b2:ac:cf:4e:1a:69:c6:51:9f:d4:c9:60:
                    d8:72:a2:a2:b5:3a:4d:4e:9d:f0:de:f1:72:21:b5:
                    63:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:0B:02:B0:10:0E:E9:97:CA:D4:C9:5C:CB:0E:F4:DA:AC:1B:18:5B
            X509v3 Authority Key Identifier:
                keyid:51:C3:CC:54:41:4F:B4:42:BE:39:D6:E1:A4:AF:72:4C:FF:EE:EE:FF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UcPMVEFPtEK-OdbhpK9yTP_u7v8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a73900-b34f-4ffc-9e39-2315cd9b9fa2/1/UcPMVEFPtEK-OdbhpK9yTP_u7v8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:9a:04:f4:e3:40:0f:53:eb:7e:28:5d:42:c0:19:0f:5f:99:
         81:82:6d:35:4f:59:63:18:5d:79:5a:60:fe:60:8f:87:53:00:
         27:72:46:7b:33:ab:e0:7e:f1:ec:a5:2c:b3:5a:8f:2b:fd:e3:
         14:b4:89:71:22:04:06:c7:28:85:a9:d8:f0:69:45:1f:5a:f1:
         4f:b4:4f:4e:eb:25:47:c2:53:76:20:1f:f2:48:f1:db:a5:13:
         10:05:69:a5:83:d2:09:98:97:fe:89:1e:52:95:b4:0a:55:07:
         c2:8a:f9:1e:84:a4:ee:d4:96:a8:47:9b:88:5d:07:de:2d:09:
         1e:44:fb:11:03:41:88:22:ba:f7:fb:59:72:cf:bd:fe:44:fc:
         30:76:0b:d3:54:18:94:0e:2e:af:b2:48:f5:22:38:0d:72:9c:
         2b:27:b8:34:82:cc:70:fa:b4:17:a4:d1:e7:67:ec:ff:ba:fc:
         e0:ed:5d:80:2c:e4:1e:66:45:e9:21:dd:a7:a7:0a:fd:99:6e:
         15:d2:53:22:d6:5e:e2:2a:88:2b:cc:7c:45:bb:c6:e6:f0:53:
         3e:25:33:c5:4c:5a:c5:50:c9:55:95:e7:77:27:77:26:90:09:
         73:9a:8e:62:36:77:d4:41:8c:bd:63:77:54:70:8a:46:85:c7:
         63:10:64:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----