Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft
File:                     mXFUBuche_wTgSpHBMYq4JnnyP8.mft (raw, json)
Hash identifier:          ktkoiEbwnamrDLzfpw3ej5r0VSlJ4HlhDxBYiA7ApLc=
Subject key identifier:   01:33:84:90:7C:8B:34:C4:C6:02:EF:B2:37:44:F4:A1:5B:66:26:7A
Authority key identifier: 99:71:54:06:E7:21:7B:FC:13:81:2A:47:04:C6:2A:E0:99:E7:C8:FF
Certificate issuer:       /CN=99715406e7217bfc13812a4704c62ae099e7c8ff
Certificate serial:       019D39AE54747F7D4CA1C0DEFC6D8129EC85
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft
Manifest number:          05AD
Signing time:             Sun 29 Mar 2026 13:00:19 +0000
Manifest this update:     Sun 29 Mar 2026 13:00:19 +0000
Manifest next update:     Mon 30 Mar 2026 13:00:19 +0000
Files and hashes:         1: mXFUBuche_wTgSpHBMYq4JnnyP8.crl (hash: ol5AYa/XShH036sMg+W0zYHo8zBR7IhvfJQoCofOc84=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:39:ae:54:74:7f:7d:4c:a1:c0:de:fc:6d:81:29:ec:85
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=99715406e7217bfc13812a4704c62ae099e7c8ff
        Validity
            Not Before: Mar 29 13:00:19 2026 GMT
            Not After : Mar 30 13:00:19 2026 GMT
        Subject: CN=013384907c8b34c4c602efb23744f4a15b66267a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:5e:74:c4:b2:5a:28:a2:e6:8e:9f:43:99:59:
                    ac:d7:f3:aa:84:8e:ad:b0:6a:01:84:8e:87:2e:dd:
                    ec:1e:fc:f2:3a:14:9f:e8:c4:18:12:7a:83:22:e2:
                    a1:a2:08:76:76:72:9f:0e:18:50:f5:f3:72:72:fe:
                    dd:b5:8e:3a:90:22:11:fb:34:59:85:53:9b:0b:7e:
                    2e:4f:4c:37:94:35:f3:fc:e3:e7:55:cc:2b:28:ce:
                    15:19:2f:3a:06:1e:bc:25:97:c6:a9:41:f8:2d:c4:
                    0e:06:29:c8:57:1a:9f:3a:3d:be:a3:e2:85:84:46:
                    00:82:c5:20:e7:dc:7e:83:8f:b4:2c:74:ff:45:29:
                    6e:19:2a:ee:cb:9a:5c:65:35:54:93:8e:91:35:f3:
                    12:d1:9d:ad:74:bf:39:99:08:74:c9:e8:9f:da:d3:
                    da:70:cd:c7:e7:68:09:b2:c9:2f:24:ec:1d:64:4d:
                    8e:0b:7a:c4:5d:7b:0a:ee:c5:0b:97:bf:ff:58:53:
                    a5:62:30:bc:94:14:0a:eb:7a:17:d9:96:a9:dd:35:
                    bb:c7:0b:3b:d2:64:0d:ea:93:fa:86:66:51:d9:75:
                    a1:e2:e3:76:27:92:84:5c:81:56:e2:83:91:87:c3:
                    42:81:5c:ee:95:3e:dc:a0:b8:97:10:fa:24:4a:e4:
                    85:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:33:84:90:7C:8B:34:C4:C6:02:EF:B2:37:44:F4:A1:5B:66:26:7A
            X509v3 Authority Key Identifier:
                keyid:99:71:54:06:E7:21:7B:FC:13:81:2A:47:04:C6:2A:E0:99:E7:C8:FF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:4a:00:66:dc:57:24:89:39:b8:0e:d6:1b:b7:2a:24:a7:74:
         3f:5b:47:c0:62:06:57:a0:09:e9:4c:00:25:e2:4f:8e:5e:91:
         d8:7b:85:4e:6b:9f:1f:39:cd:41:53:28:af:e6:3c:dd:b9:7d:
         68:6d:4e:0a:dd:f9:55:97:72:29:80:f4:3d:e7:36:57:d7:82:
         fe:80:a6:62:64:da:3b:a1:1d:70:1c:d7:eb:b3:e8:a1:e4:6e:
         e6:6b:0e:0f:14:89:16:2d:08:0b:b9:ff:9b:6e:9d:99:12:47:
         f2:3d:ab:68:15:8b:bb:a5:a3:64:79:b9:c1:99:44:b7:1a:7e:
         11:cb:b8:6a:7f:1e:1f:a0:f5:cb:27:26:71:dc:e0:e9:94:d0:
         11:d7:b7:4b:49:44:b4:32:e6:2e:e3:be:0a:1d:e4:6d:d7:06:
         ae:27:30:10:5b:ce:d4:7e:a5:be:c2:9d:bd:b3:37:18:02:68:
         41:2f:57:25:3a:dd:0e:89:41:0d:3a:09:0b:30:3f:b9:c8:b1:
         2b:50:5d:ac:13:9e:66:f5:ac:d7:98:95:e0:05:71:83:20:b2:
         1e:5a:f5:64:9b:2b:c5:fa:ea:c5:75:a5:1b:c3:98:8e:66:51:
         cc:9f:28:03:1e:96:94:3c:94:ac:56:fd:b5:d9:ea:06:b6:1a:
         7d:e3:c7:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----