Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/55b848-0fc3-43c3-8ace-0dc3c21bd628/1/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.mft
File:                     maXkwc3ovLO4Qgdw1ZqDp5F8jMg.mft (raw, json)
Hash identifier:          KbdMV6UrbFp/37X8acTYgTyDgzR1D/bUwDUiuv2bmFg=
Subject key identifier:   64:46:DA:04:49:AD:36:96:0E:F1:47:7A:10:97:91:AA:BF:CE:00:1A
Authority key identifier: 99:A5:E4:C1:CD:E8:BC:B3:B8:42:07:70:D5:9A:83:A7:91:7C:8C:C8
Certificate issuer:       /CN=99a5e4c1cde8bcb3b8420770d59a83a7917c8cc8
Certificate serial:       019CAC46C9DB8159CBB3152ECC79763C0733
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f9/55b848-0fc3-43c3-8ace-0dc3c21bd628/1/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.mft
Manifest number:          1404
Signing time:             Mon 02 Mar 2026 02:00:46 +0000
Manifest this update:     Mon 02 Mar 2026 02:00:46 +0000
Manifest next update:     Tue 03 Mar 2026 02:00:46 +0000
Files and hashes:         1: maXkwc3ovLO4Qgdw1ZqDp5F8jMg.crl (hash: Dx4UUNB5fIdNUFnhPZj39G7u4FxaykG6PDritUQn6Ew=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f9/55b848-0fc3-43c3-8ace-0dc3c21bd628/1/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f9/55b848-0fc3-43c3-8ace-0dc3c21bd628/1/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:46:c9:db:81:59:cb:b3:15:2e:cc:79:76:3c:07:33
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=99a5e4c1cde8bcb3b8420770d59a83a7917c8cc8
        Validity
            Not Before: Mar  2 02:00:46 2026 GMT
            Not After : Mar  3 02:00:46 2026 GMT
        Subject: CN=6446da0449ad36960ef1477a109791aabfce001a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:09:d3:e5:e9:05:c8:bd:e1:f8:7f:bc:40:56:
                    a8:b6:9c:b8:be:66:f1:41:a9:b8:87:53:81:2f:e7:
                    22:c8:5d:c2:c6:d7:00:5f:0e:b3:e6:83:ec:4f:c0:
                    31:e9:d2:1d:d0:53:dd:c6:fc:d9:a1:96:d5:34:29:
                    9f:2a:0e:22:33:00:34:5b:8b:3f:29:b1:3e:6e:e0:
                    e4:04:5b:f3:f4:ce:a1:f7:59:da:a4:f4:dc:80:9c:
                    b8:b3:32:9e:78:26:05:89:6a:ac:14:68:d2:75:7e:
                    d7:3c:60:e4:a8:0d:e2:f1:7e:77:f9:b6:2d:9e:77:
                    1d:b0:b2:da:4a:92:a3:3d:2b:23:9f:95:0f:ff:90:
                    66:a9:9e:4f:69:e8:f0:bf:13:e0:3a:0c:bf:2a:a5:
                    87:61:fb:2d:b1:ea:91:87:ef:df:d2:ac:b3:2f:f9:
                    05:f2:6a:a3:d2:45:21:c0:d1:15:90:f1:3c:b6:5c:
                    73:af:1c:48:41:64:53:93:8e:95:a3:96:42:0b:9c:
                    16:9f:d2:36:64:b8:93:43:6e:30:c5:a7:5d:d3:69:
                    f0:1c:11:86:26:7c:a2:0f:66:b7:d2:17:6f:65:b9:
                    ed:37:f2:de:fb:94:6e:3f:0d:5c:96:ac:81:63:f4:
                    44:df:91:f8:54:fa:30:eb:23:ca:5c:b1:d2:c1:a6:
                    32:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:46:DA:04:49:AD:36:96:0E:F1:47:7A:10:97:91:AA:BF:CE:00:1A
            X509v3 Authority Key Identifier:
                keyid:99:A5:E4:C1:CD:E8:BC:B3:B8:42:07:70:D5:9A:83:A7:91:7C:8C:C8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/55b848-0fc3-43c3-8ace-0dc3c21bd628/1/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/55b848-0fc3-43c3-8ace-0dc3c21bd628/1/maXkwc3ovLO4Qgdw1ZqDp5F8jMg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:23:29:1b:3b:3e:da:39:f6:b9:5d:b5:ad:e6:22:a1:e4:0b:
         05:57:be:cd:e1:8d:7c:2b:da:0d:d5:0a:13:c6:43:bb:d1:3b:
         72:7b:f2:5b:b8:31:bc:11:2d:2b:73:86:cf:38:3b:68:6d:5d:
         90:14:f1:f4:3f:93:12:76:04:ea:03:6f:f6:c4:4c:37:8d:eb:
         09:df:d0:5c:2b:c6:45:71:e8:8f:14:25:94:cc:89:1a:4a:c6:
         1c:30:33:7e:2c:24:fb:fd:b9:9e:d4:aa:ed:4d:27:91:fc:9b:
         2e:77:5a:13:85:1e:46:39:54:8b:33:37:fb:39:29:f5:e4:c4:
         dd:4e:c0:9f:8e:10:4f:da:de:d0:cb:5a:c6:d4:b5:f2:d6:6e:
         c6:76:d3:28:6f:5d:0a:01:86:be:a6:17:b8:97:14:39:48:57:
         67:11:c0:70:ff:c2:f2:b5:62:34:6f:e9:7c:58:17:54:21:e5:
         69:a5:75:34:4b:4d:29:37:3e:b2:78:80:ce:e7:09:77:0d:db:
         f4:18:8a:a7:7a:d3:33:57:bb:cd:e5:70:b6:b0:c8:8d:a5:ad:
         98:20:39:b8:60:78:fd:ac:20:cd:8c:44:57:f4:fe:60:f8:24:
         d4:d2:81:19:e3:76:37:bf:00:47:21:36:6e:1c:61:0b:de:05:
         9a:62:cc:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----