Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft
File:                     4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft (raw, json)
Hash identifier:          qvJ2mx2LkVLf3uVs85apNFSOEsB9+8Y2kSLz1RoAdk0=
Subject key identifier:   EA:5F:4B:AF:AA:F3:51:32:56:4A:FE:10:7E:50:F3:4B:92:6E:C8:B7
Authority key identifier: E3:37:79:B8:38:8D:00:1F:DC:BD:DC:48:AC:E2:27:F0:09:85:06:60
Certificate issuer:       /CN=e33779b8388d001fdcbddc48ace227f009850660
Certificate serial:       019E2F9668B3C80A5F190B3BEC4D9A644230
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft
Manifest number:          190A
Signing time:             Sat 16 May 2026 07:00:46 +0000
Manifest this update:     Sat 16 May 2026 07:00:46 +0000
Manifest next update:     Sun 17 May 2026 07:00:46 +0000
Files and hashes:         1: 4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl (hash: m2n85AnO4xisVu2UsTKNsBIvbLky+Y+0RgXMTphYlss=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:96:68:b3:c8:0a:5f:19:0b:3b:ec:4d:9a:64:42:30
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e33779b8388d001fdcbddc48ace227f009850660
        Validity
            Not Before: May 16 07:00:46 2026 GMT
            Not After : May 17 07:00:46 2026 GMT
        Subject: CN=ea5f4bafaaf35132564afe107e50f34b926ec8b7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:c4:85:9a:84:d0:b0:3d:07:2e:95:fc:ff:8a:
                    bc:46:68:d9:98:58:98:da:f7:8d:21:6f:30:9b:db:
                    90:41:15:f1:a4:17:c0:ff:e1:7a:59:07:d6:77:ed:
                    03:99:42:08:92:a7:b8:5d:cd:22:e5:69:eb:18:7d:
                    43:79:6d:69:b9:7c:28:dc:30:c8:82:1e:58:84:be:
                    d4:75:20:f4:f6:24:76:b5:8d:62:32:92:79:72:8b:
                    76:bf:f6:41:d1:76:b2:8a:3a:d0:40:25:99:13:32:
                    00:a6:a8:15:3a:26:ff:39:01:46:37:96:7a:85:b2:
                    2c:2e:8a:9c:4f:96:e6:e5:e5:b5:b9:02:54:7f:d6:
                    f5:8b:0d:1c:98:de:97:48:70:0b:8f:55:a9:e3:91:
                    1a:f5:d5:37:5d:4e:9c:2c:37:74:a7:74:75:26:80:
                    a9:8e:00:eb:a3:86:e1:ad:76:5e:7d:a3:59:7f:f6:
                    ae:40:58:c9:64:3e:84:41:49:b4:95:f8:f6:0b:17:
                    c3:cf:72:0c:15:be:43:e7:97:6b:ab:3f:0c:22:72:
                    36:bb:01:06:ac:b1:0d:12:6d:72:fe:b0:cd:ec:ff:
                    9d:82:15:7e:f2:73:7f:c4:c2:3a:6a:5c:0f:01:66:
                    54:3a:d1:d6:37:b3:2f:bf:bb:13:bf:b9:9e:a3:e1:
                    78:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:5F:4B:AF:AA:F3:51:32:56:4A:FE:10:7E:50:F3:4B:92:6E:C8:B7
            X509v3 Authority Key Identifier:
                keyid:E3:37:79:B8:38:8D:00:1F:DC:BD:DC:48:AC:E2:27:F0:09:85:06:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:38:26:fb:ef:cb:26:d8:d5:96:87:5c:25:e0:03:9d:91:3e:
         df:2c:e3:f8:c4:99:5a:27:fb:7f:15:72:1b:27:a3:66:5c:4d:
         1e:e0:67:ce:e1:3d:23:87:69:a5:50:e6:59:f0:7e:39:8a:76:
         a3:b2:f0:38:1e:d5:b9:8a:c6:96:13:89:cc:d5:66:f6:c4:5d:
         30:41:b5:df:fa:d4:72:d1:d2:99:d2:5c:c8:57:6e:cb:fd:81:
         f4:a0:58:d6:20:86:e2:e3:4c:c3:db:7a:74:d1:4a:7c:5f:b5:
         88:02:91:42:eb:37:56:71:4d:f4:8f:0f:3f:a1:13:3e:fd:92:
         a0:78:08:3b:b0:92:30:ff:da:a0:98:6e:80:04:81:bf:a2:c6:
         25:98:27:83:9d:a6:17:70:01:5a:65:17:14:32:ba:60:d0:0a:
         92:3d:3b:d3:3b:6d:9a:64:35:f8:e3:ba:3f:5e:ae:21:40:3f:
         76:65:bc:49:eb:c9:4f:7c:8a:6a:7a:bb:12:09:87:89:b0:58:
         32:de:32:c7:6e:2e:5e:11:e0:bd:92:42:42:3c:47:91:5f:d3:
         8c:c6:de:63:01:5f:c7:69:4c:45:21:e8:ee:51:00:c9:b4:6d:
         95:b8:6f:6a:a4:74:c5:ab:ed:fd:5b:b4:fb:2c:1b:34:41:e1:
         3d:0f:fc:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vlmizyApfGQs77E2aZEIwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzMzc3OWI4Mzg4ZDAwMWZkY2JkZGM0OGFjZTIyN2YwMDk4
NTA2NjAwHhcNMjYwNTE2MDcwMDQ2WhcNMjYwNTE3MDcwMDQ2WjAzMTEwLwYDVQQD
EyhlYTVmNGJhZmFhZjM1MTMyNTY0YWZlMTA3ZTUwZjM0YjkyNmVjOGI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscSFmoTQsD0HLpX8/4q8RmjZmFiY
2veNIW8wm9uQQRXxpBfA/+F6WQfWd+0DmUIIkqe4Xc0i5WnrGH1DeW1puXwo3DDI
gh5YhL7UdSD09iR2tY1iMpJ5cot2v/ZB0XayijrQQCWZEzIApqgVOib/OQFGN5Z6
hbIsLoqcT5bm5eW1uQJUf9b1iw0cmN6XSHALj1Wp45Ea9dU3XU6cLDd0p3R1JoCp
jgDro4bhrXZefaNZf/auQFjJZD6EQUm0lfj2CxfDz3IMFb5D55drqz8MInI2uwEG
rLENEm1y/rDN7P+dghV+8nN/xMI6alwPAWZUOtHWN7Mvv7sTv7meo+F45wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOpfS6+q81EyVkr+EH5Q80uSbsi3MB8GA1UdIwQY
MBaAFOM3ebg4jQAf3L3cSKziJ/AJhQZgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHpkNXVEaU5BQl9jdmR4SXJPSW44QW1GQm1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi85ZGIzMjYtMTE4OS00YWM5LWI0MTIt
ZjI5NGQzYjEyY2ZkLzEvNHpkNXVEaU5BQl9jdmR4SXJPSW44QW1GQm1BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi85ZGIzMjYtMTE4OS00YWM5LWI0MTItZjI5NGQzYjEyY2Zk
LzEvNHpkNXVEaU5BQl9jdmR4SXJPSW44QW1GQm1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAzgm++/L
JtjVlodcJeADnZE+3yzj+MSZWif7fxVyGyejZlxNHuBnzuE9I4dppVDmWfB+OYp2
o7LwOB7VuYrGlhOJzNVm9sRdMEG13/rUctHSmdJcyFduy/2B9KBY1iCG4uNMw9t6
dNFKfF+1iAKRQus3VnFN9I8PP6ETPv2SoHgIO7CSMP/aoJhugASBv6LGJZgng52m
F3ABWmUXFDK6YNAKkj070zttmmQ1+OO6P16uIUA/dmW8SevJT3yKanq7EgmHibBY
Mt4yx24uXhHgvZJCQjxHkV/TjMbeYwFfx2lMRSHo7lEAybRtlbhvaqR0xavt/Vu0
+ywbNEHhPQ/87w==
-----END CERTIFICATE-----