Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
File:                     EDfew086MutlAvFmKoKiD4teohw.mft (raw, json)
Hash identifier:          gX3RkqaZoxg8ssNJ7lcinQhI/MmsES5v1213RcmOcSU=
Subject key identifier:   3D:A8:3B:BF:AB:D9:28:F9:D3:5F:95:CB:9F:B5:95:A0:13:60:E7:39
Authority key identifier: 10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C
Certificate issuer:       /CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c
Certificate serial:       019F17C2E1A8631960BF8140DBB4618F3B5C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
Manifest number:          1985
Signing time:             Tue 30 Jun 2026 09:01:15 +0000
Manifest this update:     Tue 30 Jun 2026 09:01:15 +0000
Manifest next update:     Wed 01 Jul 2026 09:01:15 +0000
Files and hashes:         1: EDfew086MutlAvFmKoKiD4teohw.crl (hash: lRxVVXP23y80EC/4WBCxofVxAaZdgR7N9kOks5H24Nk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 09:01:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:c2:e1:a8:63:19:60:bf:81:40:db:b4:61:8f:3b:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c
        Validity
            Not Before: Jun 30 09:01:15 2026 GMT
            Not After : Jul  1 09:01:15 2026 GMT
        Subject: CN=3da83bbfabd928f9d35f95cb9fb595a01360e739
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:74:04:de:91:43:51:bc:71:6e:af:28:a9:17:
                    62:88:52:6e:1e:21:bf:b2:87:7e:40:21:81:0c:6e:
                    e2:b4:e0:2b:7c:f3:3a:60:1f:db:ee:9d:b3:4a:6b:
                    e5:ea:b1:d6:cf:74:f8:81:60:75:99:95:6b:27:05:
                    4b:62:f9:c4:2e:5a:87:fc:09:0c:a1:bb:04:44:5a:
                    fd:0c:c0:dc:cc:39:2c:a5:c1:48:84:be:ba:1e:a2:
                    a4:3a:39:a1:7d:06:41:9f:0b:05:91:63:35:53:7e:
                    94:5d:a7:38:73:4c:2f:8f:9b:91:6a:fb:d5:3e:47:
                    e7:e7:b0:fa:3e:9a:c3:01:33:e9:3b:c3:4c:50:5f:
                    84:ce:47:5d:25:65:19:24:1f:4e:c5:b8:4b:7f:b5:
                    40:57:b0:6f:17:67:bb:b2:85:55:52:ac:d5:dc:a5:
                    77:d4:d0:a7:1c:5f:ca:f7:5f:86:a3:33:49:e4:16:
                    aa:b7:92:c8:85:b7:0f:31:e6:22:c3:c9:37:e7:31:
                    45:f4:dd:37:98:7b:99:e2:de:62:62:25:3e:b3:e8:
                    4c:ce:2d:35:5e:81:98:45:d5:62:48:cc:5d:66:e4:
                    d4:8d:65:3d:04:da:6f:b5:19:7f:5d:a8:b5:90:b2:
                    ea:f1:f6:eb:c7:a8:d1:fb:7c:03:55:3d:a0:78:9f:
                    93:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:A8:3B:BF:AB:D9:28:F9:D3:5F:95:CB:9F:B5:95:A0:13:60:E7:39
            X509v3 Authority Key Identifier:
                keyid:10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:be:2f:dc:28:81:e3:b0:99:a2:65:2a:c7:c4:39:de:a5:f7:
         bb:cc:d6:82:0d:5e:ca:2a:9b:b3:d3:3a:40:61:8d:3b:33:81:
         e7:22:c0:86:60:76:f6:1f:c4:9e:d7:6e:54:9e:81:92:01:ba:
         9f:18:9f:4f:34:03:8d:c3:6a:85:13:e5:77:31:00:92:39:b6:
         64:94:ec:50:38:48:44:18:33:a6:d5:90:69:2b:ff:c6:9b:51:
         2b:89:76:7d:c0:dc:8a:59:ce:e0:07:24:5f:bc:a5:b4:51:e4:
         e7:96:c4:2d:77:20:36:2c:67:12:7b:50:e1:aa:5d:de:8e:6c:
         bb:44:0e:b1:69:e7:eb:ff:c0:35:95:c1:47:de:8a:80:7e:71:
         09:3c:88:c2:26:e3:fe:82:6e:dd:87:30:c6:25:f5:8f:55:bf:
         c7:42:4e:85:8f:f1:e7:7d:69:18:54:87:e4:f2:99:34:f2:ad:
         b8:89:8f:c1:ca:d3:26:ae:51:9d:8d:a5:c6:77:66:fa:de:75:
         30:da:4e:cc:57:30:fb:c3:59:9d:1d:47:4a:6f:e9:c5:e1:4c:
         c7:00:06:af:ec:d4:59:18:e2:44:63:94:c5:5b:43:d0:7e:03:
         e1:fe:34:19:36:e6:9a:8d:98:c1:d0:76:09:38:10:d3:be:0f:
         ff:c1:ec:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----