Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
File:                     v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft (raw, json)
Hash identifier:          TL0JLNdEK/VnpGOkDRzSnWhQv9l4CKs0upD17xhFfXs=
Subject key identifier:   C9:C9:46:60:B9:4B:0A:9A:EA:D0:E2:B3:F2:4D:BE:03:9F:03:6D:A7
Authority key identifier: BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49
Certificate issuer:       /CN=bf56ba98c6745a63026d78fc284722399d2eb849
Certificate serial:       019D99D0D9FE48072C0BEA653EE066CD34C1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
Manifest number:          12FD
Signing time:             Fri 17 Apr 2026 05:01:34 +0000
Manifest this update:     Fri 17 Apr 2026 05:01:34 +0000
Manifest next update:     Sat 18 Apr 2026 05:01:34 +0000
Files and hashes:         1: pBZly4FM6dBwlJDuWkuLuvUQhJg.roa (hash: o71HDV8s+9P3IJ7RipmOqIZNCQQ65Mxlc2gRRdwJM+c=)
                          2: v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl (hash: 8VEp/BR6xGNEch+fTA93gqQJofpj0oeig0FCpnECPbg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 05:01:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:99:d0:d9:fe:48:07:2c:0b:ea:65:3e:e0:66:cd:34:c1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bf56ba98c6745a63026d78fc284722399d2eb849
        Validity
            Not Before: Apr 17 05:01:34 2026 GMT
            Not After : Apr 18 05:01:34 2026 GMT
        Subject: CN=c9c94660b94b0a9aead0e2b3f24dbe039f036da7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:fa:81:93:d7:1e:8d:0f:61:f7:74:60:c3:76:
                    96:17:f0:e2:e6:bd:a2:24:04:30:02:85:7d:e2:93:
                    55:98:67:df:d4:9f:64:d2:1a:f7:3c:3e:f0:a6:8b:
                    7b:7c:15:ee:28:6e:7e:73:c0:67:2f:52:2f:40:47:
                    54:4e:70:a1:21:bb:4a:d1:12:f5:99:61:59:b6:15:
                    36:2c:ec:63:e7:32:d2:28:ee:e3:c1:37:42:01:4d:
                    03:9e:97:ac:1d:f4:8c:06:fb:e5:ea:f1:7f:1b:f6:
                    34:5a:80:ce:49:e8:23:92:4b:a4:47:02:34:27:27:
                    7c:18:a3:1f:0a:69:fe:db:28:28:50:32:4e:35:17:
                    84:0d:28:e8:53:3f:f0:63:be:94:c9:d1:d6:f0:d3:
                    3f:ba:b8:27:8d:f8:a4:e2:9c:61:63:51:8a:1c:46:
                    7f:3f:b0:00:09:07:01:f8:61:c9:20:98:63:a4:e2:
                    dd:db:96:83:3d:c6:e0:f3:dc:93:f6:e7:59:7a:f9:
                    0f:12:67:ee:5c:e0:94:5e:2e:5e:d8:33:43:41:3d:
                    80:fe:b2:50:95:24:21:8b:70:76:10:29:fb:93:89:
                    f2:0f:1a:f5:71:5c:2c:9e:8c:ea:05:7b:78:10:69:
                    06:f3:63:d8:75:69:8b:b3:cc:31:75:32:ec:9b:fd:
                    27:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:C9:46:60:B9:4B:0A:9A:EA:D0:E2:B3:F2:4D:BE:03:9F:03:6D:A7
            X509v3 Authority Key Identifier:
                keyid:BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cb:13:7a:db:43:9e:05:7d:a9:7f:ba:4b:4a:b6:56:df:29:7f:
         ea:e6:30:ae:16:cd:c7:ae:1f:78:5b:a9:77:bf:93:26:c8:12:
         eb:9c:dd:0c:5f:06:f3:1a:19:df:7f:f3:ff:70:8b:b9:69:08:
         0b:9e:d8:0b:5e:6a:9a:36:ba:ed:98:a0:68:95:9a:5f:ab:14:
         4d:b7:d2:4a:e4:ce:8a:7c:8c:a1:85:fb:2d:06:6d:f4:14:78:
         80:2f:a2:af:5b:54:91:a6:99:61:e4:98:0d:48:8f:4b:43:4c:
         82:9f:f6:57:2c:50:5d:19:ef:5b:58:dc:22:64:67:ad:29:0e:
         25:38:a0:75:6a:37:13:da:f1:bf:80:cf:22:e5:6e:fe:23:87:
         fa:d6:61:33:ad:8e:5c:eb:25:97:70:02:a1:a2:6d:00:44:d0:
         d9:e3:d8:a3:52:42:d7:c3:04:2f:f1:03:ba:a5:ee:db:99:47:
         d9:2a:a0:2d:8f:bf:79:7f:40:b7:fd:bb:6e:cd:15:ba:19:8f:
         dd:29:88:3e:ec:11:69:b6:1e:09:8a:03:7a:5f:35:ef:f6:80:
         8b:46:ab:31:cd:11:88:50:54:0f:b3:75:c7:86:2c:19:0f:5c:
         fc:40:51:00:e8:3a:2d:f2:e8:e2:ba:9c:73:3e:39:34:ed:49:
         76:9f:7b:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:08:37 2026 by rpki-client