Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft
File:                     6gYhpKcsclr8dUFej4rPdTPUIH0.mft (raw, json)
Hash identifier:          hy6kbnFgy1pp/6MY6WSKjiBl9EyxmUcia6eecaR4Bjw=
Subject key identifier:   47:ED:5B:C6:DA:A9:B9:64:A6:1F:02:68:38:4A:07:D5:A0:29:9B:61
Authority key identifier: EA:06:21:A4:A7:2C:72:5A:FC:75:41:5E:8F:8A:CF:75:33:D4:20:7D
Certificate issuer:       /CN=ea0621a4a72c725afc75415e8f8acf7533d4207d
Certificate serial:       019E31855F2E978D08C38995665F8428D4B7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft
Manifest number:          175B
Signing time:             Sat 16 May 2026 16:01:24 +0000
Manifest this update:     Sat 16 May 2026 16:01:24 +0000
Manifest next update:     Sun 17 May 2026 16:01:24 +0000
Files and hashes:         1: 6gYhpKcsclr8dUFej4rPdTPUIH0.crl (hash: ZobBFwUJCfUCKRF8ARLiOHIpzD/l0A53lZBI0esiBZI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:31:85:5f:2e:97:8d:08:c3:89:95:66:5f:84:28:d4:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ea0621a4a72c725afc75415e8f8acf7533d4207d
        Validity
            Not Before: May 16 16:01:24 2026 GMT
            Not After : May 17 16:01:24 2026 GMT
        Subject: CN=47ed5bc6daa9b964a61f0268384a07d5a0299b61
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:86:4b:ef:35:61:6c:56:de:51:0c:5c:36:91:54:
                    5d:a8:55:73:15:eb:c5:6e:c0:99:54:f1:f3:93:b5:
                    a7:99:18:b6:b4:4d:12:9a:8f:d2:21:10:ac:8c:50:
                    21:2a:4b:8d:90:b6:23:e7:aa:39:44:05:71:c4:bc:
                    ca:43:45:0b:56:cd:e1:44:f9:c9:c9:17:45:f3:58:
                    e0:d2:eb:79:a8:f1:9e:8d:21:3a:1f:6c:f9:77:5c:
                    66:eb:7a:ce:96:d8:bf:f6:36:94:72:b1:5d:54:18:
                    eb:9b:91:6d:3e:cc:70:c5:88:8e:9a:98:88:cb:90:
                    da:07:b3:4a:56:fd:07:e8:ff:5b:7b:d7:9b:fb:2c:
                    dd:96:78:89:57:9f:e6:a6:46:84:58:2f:28:e8:e5:
                    2c:12:3a:52:c1:47:a9:c6:ce:28:91:81:6b:2d:10:
                    56:5b:aa:3d:0a:fb:72:59:22:25:51:18:c6:50:6c:
                    fc:25:e8:f6:8d:e5:e5:8e:a7:2e:0f:ad:79:cb:a9:
                    8f:13:a9:79:cd:a7:a0:b5:40:76:37:f7:14:46:5f:
                    97:5f:ca:ca:b0:12:20:95:e8:a3:e4:7f:32:92:f4:
                    2d:d2:bc:e6:68:4d:47:54:3c:47:2a:06:8e:24:da:
                    a1:e8:15:f8:2e:ca:be:0b:e6:00:fb:b5:39:df:72:
                    62:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:ED:5B:C6:DA:A9:B9:64:A6:1F:02:68:38:4A:07:D5:A0:29:9B:61
            X509v3 Authority Key Identifier:
                keyid:EA:06:21:A4:A7:2C:72:5A:FC:75:41:5E:8F:8A:CF:75:33:D4:20:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6gYhpKcsclr8dUFej4rPdTPUIH0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/10/31158e-9ca6-44e3-9853-c384d8bc3bef/1/6gYhpKcsclr8dUFej4rPdTPUIH0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c4:f8:4c:9c:46:76:ff:d6:2d:70:fa:c2:31:1f:f8:12:bc:24:
         fc:29:42:0e:77:b3:60:87:42:be:0f:46:a8:a6:01:f9:f9:25:
         35:d8:85:d0:6b:e2:13:62:2d:21:3c:26:43:9f:0b:90:75:bd:
         ed:88:58:b4:ef:a9:b6:d9:9f:6e:16:75:4c:e5:e0:ee:a9:29:
         ff:1b:fd:a6:b1:29:be:ae:27:f9:26:af:3c:f2:56:66:cd:f5:
         92:d3:ff:cc:aa:45:96:90:a6:c9:81:0e:f1:64:45:f0:8f:0a:
         23:53:e3:44:67:66:dc:e2:53:39:18:8d:86:d7:9d:cd:3c:2a:
         fc:f4:86:dd:6c:dd:2b:8c:6a:aa:48:6c:02:7c:af:22:64:78:
         b2:6f:6c:e9:6a:0b:61:38:14:e5:6f:7d:b7:e4:5c:b2:fd:c1:
         23:14:55:f9:ed:53:60:b5:be:7e:de:a7:61:c9:e7:09:f9:3d:
         6b:49:0a:54:aa:82:94:3b:97:f0:1b:0e:e6:6b:55:e0:6a:18:
         d7:c6:15:eb:b7:79:9b:1a:91:9e:ae:61:b9:d6:5b:71:a1:ef:
         d4:39:61:83:e7:72:42:6c:23:78:fb:5d:34:ad:35:85:c9:ca:
         52:c0:5a:c3:fe:12:9b:74:a9:c2:d8:31:59:7f:1d:50:dd:93:
         95:31:19:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----