Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
File:                     C1XbSaXB_JAcoahcjSXxPxhuL_o.mft (raw, json)
Hash identifier:          Yj/nm8/teBvf11qYQLEgJJbJVUiTiVhU/GGMAGrLJOk=
Subject key identifier:   D2:F5:E2:3C:65:4D:27:64:C5:04:25:DF:63:16:C5:FF:40:2B:00:AF
Authority key identifier: 0B:55:DB:49:A5:C1:FC:90:1C:A1:A8:5C:8D:25:F1:3F:18:6E:2F:FA
Certificate issuer:       /CN=0b55db49a5c1fc901ca1a85c8d25f13f186e2ffa
Certificate serial:       019D9B515CA372D2D5EC4C1F3894F81836D2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
Manifest number:          18BF
Signing time:             Fri 17 Apr 2026 12:01:33 +0000
Manifest this update:     Fri 17 Apr 2026 12:01:33 +0000
Manifest next update:     Sat 18 Apr 2026 12:01:33 +0000
Files and hashes:         1: C1XbSaXB_JAcoahcjSXxPxhuL_o.crl (hash: BFyXB17NcENKnyshuVFHW+xQh/8uw8ZCwZjHJLLJOQs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 07:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9b:51:5c:a3:72:d2:d5:ec:4c:1f:38:94:f8:18:36:d2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0b55db49a5c1fc901ca1a85c8d25f13f186e2ffa
        Validity
            Not Before: Apr 17 12:01:33 2026 GMT
            Not After : Apr 18 12:01:33 2026 GMT
        Subject: CN=d2f5e23c654d2764c50425df6316c5ff402b00af
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:4c:32:79:22:c0:10:0a:ca:58:77:09:d7:82:
                    f6:52:41:3e:51:cc:83:91:14:22:d2:11:bf:f3:e9:
                    fb:ef:ae:46:1c:9d:bd:16:ba:cf:74:d2:2a:f5:c6:
                    2a:90:a0:b2:89:5f:bd:a0:a6:d8:12:9c:0a:ee:3c:
                    1a:36:2a:a5:61:55:0f:d7:1f:4a:88:27:30:36:90:
                    14:1f:26:63:f8:88:02:b4:d5:43:2a:6f:7f:af:c2:
                    a4:b4:53:09:57:32:d7:04:2b:97:e7:c7:58:4d:0a:
                    8d:19:cb:ce:94:fe:9c:80:ba:74:97:fc:16:c0:a6:
                    b5:48:b9:9f:8c:b5:e2:1d:df:0e:5e:77:6a:64:c6:
                    51:f5:59:0b:b2:8d:4a:b5:19:c0:92:11:5a:11:e3:
                    d7:44:da:5b:5a:16:bb:07:f7:6f:30:07:22:3b:bf:
                    74:c7:eb:44:a1:93:d8:f1:14:bd:ba:ba:1f:b8:65:
                    0c:b9:bf:a5:42:7c:c9:9d:d8:06:e3:4a:80:ff:2f:
                    aa:74:61:38:41:4a:bc:c6:75:d7:4c:7e:6e:a6:64:
                    21:09:ce:83:d1:12:5d:5c:3a:8b:1d:c3:a9:81:a7:
                    f2:ac:99:f1:c9:64:8c:bf:df:e9:62:51:81:2a:91:
                    f0:3e:03:24:12:55:ed:59:1b:e6:86:a5:3d:c8:18:
                    5b:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D2:F5:E2:3C:65:4D:27:64:C5:04:25:DF:63:16:C5:FF:40:2B:00:AF
            X509v3 Authority Key Identifier:
                keyid:0B:55:DB:49:A5:C1:FC:90:1C:A1:A8:5C:8D:25:F1:3F:18:6E:2F:FA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3f:5b:23:ec:bd:e7:29:97:1e:d0:ef:fb:42:31:55:c6:3d:e3:
         5f:b6:5e:b3:e5:05:0e:30:d4:d0:5c:44:9c:56:3a:88:03:06:
         53:f7:5a:74:ab:cb:58:76:70:5a:6a:2c:5e:f9:d5:72:f4:0c:
         3d:77:df:27:34:63:9a:a6:fe:7b:66:0f:f5:97:c9:e2:23:36:
         fd:53:66:d2:37:0e:96:c9:f2:b3:ca:53:b4:c7:70:67:c1:4d:
         3c:cd:bd:b2:c0:d3:57:8b:b3:18:6d:a7:25:d0:33:db:d8:c5:
         46:d7:dc:4b:ba:b5:8a:1d:4a:6e:ac:50:d7:dc:25:29:7a:f5:
         8f:93:e9:a4:03:45:37:92:cd:40:5c:e8:b0:29:a8:e0:61:20:
         d3:ee:70:da:c0:f3:c6:24:f5:e1:59:fc:13:02:0c:d7:46:69:
         b9:a7:5b:2d:08:81:c5:93:71:80:2b:9f:d3:9d:e4:c6:8d:2d:
         2f:1b:9f:5e:8b:7a:ce:61:c3:d0:bb:fe:73:0e:5b:c2:6c:94:
         eb:c0:29:b3:d4:7c:5f:93:ca:6d:66:3a:36:57:f3:58:69:6f:
         04:13:0f:6d:b6:61:9d:41:46:f9:f8:a0:56:60:c6:f6:e1:2d:
         73:9f:b1:3e:58:ed:97:df:05:ad:52:e5:ab:21:03:cc:e4:2c:
         99:3f:5c:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----