Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft
File:                     4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft (raw, json)
Hash identifier:          Y7e65BzRYAFSbPcI6jSdzO2yxdjwRkPXK5Zbcuc04dY=
Subject key identifier:   5F:9F:9A:08:EF:E0:AC:4C:D5:5E:33:FA:12:7F:30:E3:9B:6E:B7:59
Authority key identifier: E0:C4:3C:A4:C4:9C:F6:52:D6:0C:CD:F3:66:E6:01:15:0D:0F:00:B9
Certificate issuer:       /CN=e0c43ca4c49cf652d60ccdf366e601150d0f00b9
Certificate serial:       019E311750479582E35C7CAD984EA04AB0DF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft
Manifest number:          07E9
Signing time:             Sat 16 May 2026 14:01:11 +0000
Manifest this update:     Sat 16 May 2026 14:01:11 +0000
Manifest next update:     Sun 17 May 2026 14:01:11 +0000
Files and hashes:         1: 4MQ8pMSc9lLWDM3zZuYBFQ0PALk.crl (hash: cIZ061teYawq/CQC8/BLL9oaq6Z6WzW6GHfGhf9x3OU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:31:17:50:47:95:82:e3:5c:7c:ad:98:4e:a0:4a:b0:df
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e0c43ca4c49cf652d60ccdf366e601150d0f00b9
        Validity
            Not Before: May 16 14:01:11 2026 GMT
            Not After : May 17 14:01:11 2026 GMT
        Subject: CN=5f9f9a08efe0ac4cd55e33fa127f30e39b6eb759
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:e2:5c:19:60:1b:bd:18:e5:8e:c7:59:1a:c6:
                    ad:ae:2c:36:58:ba:cc:d7:8d:a4:81:e1:4f:11:83:
                    43:76:ec:67:94:a9:c8:be:b0:aa:d8:21:20:40:50:
                    d5:ae:a5:ba:66:a1:84:47:af:c1:79:5f:1b:24:87:
                    14:c0:c3:ab:bc:f2:dd:c9:fe:d4:ff:07:05:f1:46:
                    87:b0:fc:c9:bb:0c:91:2e:96:3b:9f:09:cc:1a:41:
                    c6:40:9c:32:a0:0b:a2:c8:e0:35:77:6f:82:12:16:
                    b7:c4:e8:69:52:1d:b2:ba:d5:c9:41:e0:3b:39:3e:
                    86:37:8e:eb:b8:93:dc:87:ac:e5:b0:99:eb:b3:ce:
                    38:b1:d5:ea:ff:08:f7:36:3b:5e:e8:10:7c:90:f0:
                    2f:0a:75:dc:8e:13:da:45:cb:f5:d4:c2:e8:25:58:
                    cf:b0:4d:dc:cb:48:aa:71:55:a3:62:45:05:12:c7:
                    f1:a6:4e:66:aa:b5:17:11:6d:9f:e1:21:3d:b1:1b:
                    5f:f8:9d:68:fb:92:77:cc:47:22:7a:7b:1a:31:a6:
                    07:16:1a:9a:61:59:64:f0:d3:8f:b5:bb:7d:95:94:
                    cf:4a:8e:45:72:1f:bd:82:9b:18:9b:53:5e:1d:d9:
                    4e:43:7e:bc:a2:70:57:51:2f:7a:81:7f:67:0d:c2:
                    e1:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:9F:9A:08:EF:E0:AC:4C:D5:5E:33:FA:12:7F:30:E3:9B:6E:B7:59
            X509v3 Authority Key Identifier:
                keyid:E0:C4:3C:A4:C4:9C:F6:52:D6:0C:CD:F3:66:E6:01:15:0D:0F:00:B9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/27/e81f8f-6dff-497f-8125-05fa4918c410/1/4MQ8pMSc9lLWDM3zZuYBFQ0PALk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:6e:7d:00:1d:85:f2:40:e3:ea:c1:e7:fd:d0:5d:ec:76:40:
         97:8f:1d:64:8d:53:0e:4d:f1:a6:ef:bc:e8:08:db:dc:ce:43:
         64:5f:13:5f:e4:a7:56:ed:7e:74:bf:69:e7:8f:64:dd:7c:9c:
         f3:9e:df:48:90:e2:d7:7e:58:eb:d2:5d:9b:a9:fe:8a:fb:99:
         f1:c1:b1:54:0e:df:6d:c7:b0:cb:48:eb:49:3b:69:67:e2:77:
         97:b5:5b:59:d4:1b:38:b8:88:17:2e:59:87:2c:33:d0:f5:98:
         f5:af:3a:4f:a5:07:e5:65:cc:7c:67:fb:74:71:86:75:c0:45:
         c0:09:65:88:45:dc:67:c5:46:ab:7f:2e:b9:39:b5:b6:0c:80:
         2a:32:c5:c0:15:38:87:dc:6d:00:fc:21:1e:05:41:87:a9:fa:
         01:ef:bb:70:78:62:e1:04:1f:10:79:42:fc:a4:8e:26:29:e0:
         87:39:e7:c0:44:e7:7d:cb:14:86:78:a0:73:d0:13:f9:39:99:
         fe:53:77:14:b4:f6:21:bc:a7:48:c2:3b:3a:e9:9d:a9:31:52:
         22:30:08:bf:63:6b:e2:44:0f:44:07:eb:80:b5:87:cd:ef:ca:
         44:cb:21:ae:b0:2a:47:c9:3e:c4:fb:e8:57:ec:9c:c3:15:3e:
         1e:f9:df:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----