Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft
File:                     9bMQ6dROhHDWzYAJWQZssA8pHvo.mft (raw, json)
Hash identifier:          Liw/WURDrrBAqNulRippt9ZFDhV4VvYwKJ/pqwkDSXI=
Subject key identifier:   06:CC:29:3A:38:8B:50:7C:EE:94:D5:FE:D8:92:73:6D:10:73:C1:07
Authority key identifier: F5:B3:10:E9:D4:4E:84:70:D6:CD:80:09:59:06:6C:B0:0F:29:1E:FA
Certificate issuer:       /CN=f5b310e9d44e8470d6cd800959066cb00f291efa
Certificate serial:       019F17548193B8D3AF1C9EB0D2E4D7F741D6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9bMQ6dROhHDWzYAJWQZssA8pHvo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft
Manifest number:          13EB
Signing time:             Tue 30 Jun 2026 07:00:41 +0000
Manifest this update:     Tue 30 Jun 2026 07:00:41 +0000
Manifest next update:     Wed 01 Jul 2026 07:00:41 +0000
Files and hashes:         1: 9bMQ6dROhHDWzYAJWQZssA8pHvo.crl (hash: /1K1hQve5XseLsUg2ngboAA/h1iPIeh3marEPjGIhYQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9bMQ6dROhHDWzYAJWQZssA8pHvo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 07:00:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:54:81:93:b8:d3:af:1c:9e:b0:d2:e4:d7:f7:41:d6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f5b310e9d44e8470d6cd800959066cb00f291efa
        Validity
            Not Before: Jun 30 07:00:41 2026 GMT
            Not After : Jul  1 07:00:41 2026 GMT
        Subject: CN=06cc293a388b507cee94d5fed892736d1073c107
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:7c:5e:ec:4a:84:f8:b5:8d:ac:3a:38:3b:f1:
                    39:f8:27:0e:6d:b4:c0:0c:93:f1:4a:69:86:a3:33:
                    1f:84:61:99:65:ee:b0:d0:2a:1e:7b:f2:50:2f:0a:
                    89:e8:6d:f3:9f:37:51:e6:91:cb:5f:d5:1e:e5:a6:
                    49:2f:b7:c7:ef:2b:b7:f3:b8:27:05:1e:04:22:e6:
                    c7:f1:79:f7:4e:04:d3:25:2d:14:a0:d6:53:c4:db:
                    db:17:14:ab:a0:90:56:e8:ab:e2:46:32:c6:34:71:
                    8f:e8:a7:42:ab:f5:ef:53:42:73:fb:7e:11:ba:22:
                    98:7b:31:a4:b6:51:0e:d3:d5:88:8e:e0:42:3c:76:
                    25:87:22:5a:60:09:d1:bd:b5:52:91:a4:15:f8:b2:
                    91:0c:c0:bd:8d:f1:2d:d8:83:84:fc:15:93:a0:41:
                    fd:fc:e8:b9:3a:25:3f:7d:16:e0:c0:a7:7c:90:fa:
                    48:f5:ca:fc:0d:6f:aa:4a:47:82:8c:ad:cf:d1:88:
                    fa:d5:25:77:ef:a2:79:43:03:bc:8c:32:8a:9c:ad:
                    c2:1d:b3:c6:e5:0b:24:4c:64:8c:24:7c:a7:84:3f:
                    40:79:f8:52:3e:eb:6f:1a:bc:cf:29:a8:bd:76:f9:
                    9c:63:c4:33:bf:3f:23:13:8e:6d:ef:48:2f:cc:fb:
                    c3:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:CC:29:3A:38:8B:50:7C:EE:94:D5:FE:D8:92:73:6D:10:73:C1:07
            X509v3 Authority Key Identifier:
                keyid:F5:B3:10:E9:D4:4E:84:70:D6:CD:80:09:59:06:6C:B0:0F:29:1E:FA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9bMQ6dROhHDWzYAJWQZssA8pHvo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8c:f3:df:d3:ac:07:ba:65:ea:a1:2e:33:16:f3:6f:9d:39:55:
         54:e1:c6:39:94:ef:03:cc:fa:81:b4:c9:b4:da:fd:89:bc:8d:
         c7:03:30:6e:0e:c5:28:db:6b:84:ce:f0:4c:24:f2:3d:0d:c5:
         d6:2d:1f:8e:11:f1:a7:1c:44:49:6f:41:24:c6:46:4c:ae:dd:
         78:8b:44:15:f6:46:75:cc:6b:1e:d7:99:4c:e0:91:45:c1:8f:
         83:b5:5e:c9:9e:3f:a4:15:ac:48:85:e6:5f:c5:3c:3e:32:d5:
         80:26:e3:0a:fc:5b:f0:9a:d1:a1:f9:da:c4:95:ae:be:60:1e:
         d4:67:e1:5d:55:a1:a6:e3:ce:4d:6d:3f:78:9c:4e:a0:6b:75:
         9a:32:a2:75:2b:ee:6d:be:20:b1:c7:f6:92:2f:76:87:2c:8c:
         c7:e1:11:8b:b5:2a:3b:f9:88:87:0e:37:12:8b:7c:ba:d1:54:
         ad:39:a4:09:fd:5e:2b:70:33:4a:89:3a:e5:4d:a1:26:31:bc:
         5c:ce:26:61:16:56:b1:72:6d:60:45:19:f9:99:8f:52:e0:05:
         23:9e:6b:ff:1d:fa:0a:57:50:39:30:4d:37:91:18:35:71:9f:
         84:18:76:96:df:9a:de:46:4e:44:5b:7d:a9:74:ec:6a:9b:d1:
         6a:c6:a0:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----