Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft
File:                     dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft (raw, json)
Hash identifier:          qnBhX/z5VfkTF7MbbPaWUlHtgaxou3tnDFidYIbdYww=
Subject key identifier:   62:A1:C6:CA:E3:9E:A2:1F:E0:55:21:A9:98:EA:30:EE:B5:16:1E:D1
Authority key identifier: 74:B3:12:68:F2:FF:7E:8C:EA:DF:1D:E9:5F:97:F0:B1:D2:B1:5F:96
Certificate issuer:       /CN=74b31268f2ff7e8ceadf1de95f97f0b1d2b15f96
Certificate serial:       019D371B3BF9C079638DB37D1F5AA7F579DF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft
Manifest number:          1360
Signing time:             Sun 29 Mar 2026 01:00:24 +0000
Manifest this update:     Sun 29 Mar 2026 01:00:24 +0000
Manifest next update:     Mon 30 Mar 2026 01:00:24 +0000
Files and hashes:         1: dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl (hash: AoLlrZZjFP2KQuXiCO2fFhIqixM7VJH0NRqCg2Szv6M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 01:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:37:1b:3b:f9:c0:79:63:8d:b3:7d:1f:5a:a7:f5:79:df
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74b31268f2ff7e8ceadf1de95f97f0b1d2b15f96
        Validity
            Not Before: Mar 29 01:00:24 2026 GMT
            Not After : Mar 30 01:00:24 2026 GMT
        Subject: CN=62a1c6cae39ea21fe05521a998ea30eeb5161ed1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:d0:51:39:74:a9:ad:36:aa:49:3c:10:7f:9d:
                    bd:e7:4e:75:c6:e8:fb:ac:c9:ef:39:77:7f:36:7d:
                    b9:52:da:58:6d:53:63:4b:ba:74:ac:3a:7f:20:c7:
                    0c:a4:ae:82:fd:9b:a9:2a:4a:4b:37:c8:15:d6:be:
                    d0:28:47:84:a3:56:2e:2e:1b:87:d8:d7:50:e6:98:
                    0e:eb:a0:bc:ce:e0:e1:a2:4f:e9:94:da:ef:06:be:
                    d2:ff:5d:40:ac:ae:47:2d:a1:a2:65:19:2f:9d:98:
                    db:75:1f:b3:c1:04:16:80:60:71:f3:84:ef:f8:4f:
                    3e:7e:45:84:2a:e6:0f:e9:17:b9:eb:64:2a:e4:46:
                    cb:b9:51:a2:1c:66:a5:79:20:06:ee:5a:9f:37:1b:
                    e2:18:30:b2:fd:d6:af:9a:9d:49:bd:b3:3e:bd:2f:
                    03:ed:45:ff:45:95:50:98:a0:62:a6:7d:7f:d6:90:
                    21:89:0c:e5:55:28:4c:c2:e7:97:8f:26:b2:c6:0f:
                    33:f4:c1:c6:b7:49:28:9e:df:f1:7e:26:0d:a6:c1:
                    0c:f0:e3:6e:1e:2f:ef:14:d3:a9:44:ee:72:2c:ad:
                    6c:d0:ba:fb:2f:a6:02:9f:cc:d0:03:97:47:ba:3f:
                    21:5a:a0:cc:4f:24:7d:9e:b7:4e:43:e1:98:35:dc:
                    29:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:A1:C6:CA:E3:9E:A2:1F:E0:55:21:A9:98:EA:30:EE:B5:16:1E:D1
            X509v3 Authority Key Identifier:
                keyid:74:B3:12:68:F2:FF:7E:8C:EA:DF:1D:E9:5F:97:F0:B1:D2:B1:5F:96

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLMSaPL_fozq3x3pX5fwsdKxX5Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9d9112-f57e-49c7-a93b-d8549edf7cef/1/dLMSaPL_fozq3x3pX5fwsdKxX5Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:9e:0e:9a:bd:f2:1f:e5:04:d9:5a:91:d1:c8:80:2e:65:15:
         18:a6:14:e3:c0:1f:88:9f:ff:cd:e4:fb:af:23:62:9e:fa:71:
         96:ca:a6:97:c8:61:5b:77:23:7a:d6:ee:e4:30:e9:70:be:b6:
         23:30:81:2f:ad:49:00:57:2a:2a:28:7b:45:06:3d:23:48:d6:
         eb:5c:5d:31:5a:00:fd:54:7e:f7:43:1e:15:d7:80:d0:ca:cd:
         8a:43:85:c0:a9:3e:6e:b5:49:3c:37:de:4e:5d:e6:01:38:24:
         24:5b:c6:ed:7a:87:ae:39:59:2b:29:b1:51:52:2d:b2:94:ab:
         ef:d3:e9:12:20:9e:68:86:6c:8a:34:e9:b2:49:d0:b5:a7:eb:
         0c:6b:9a:d5:cd:aa:74:a6:aa:8a:54:92:19:f8:dc:44:02:4e:
         86:7f:a1:6f:62:c7:b8:bb:ef:48:91:34:0e:4f:9d:1a:bf:9a:
         82:39:ea:7b:bd:fa:8b:12:90:ff:0b:a1:b3:cc:2c:46:24:ea:
         e1:23:06:cf:2f:31:f4:cb:26:a9:26:7f:4c:93:0f:29:a5:8f:
         12:e0:70:1f:aa:75:f1:1a:7a:62:d3:77:61:89:c3:e8:61:32:
         8b:0d:63:92:56:57:ef:a4:fa:c0:be:f4:98:0f:14:94:38:07:
         b1:b4:25:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----