Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/2d542d-1ec5-4943-b63e-915120b63093/1/TOCCAEkieEhNbIj1OGuns5aWy5Y.mft
File:                     TOCCAEkieEhNbIj1OGuns5aWy5Y.mft (raw, json)
Hash identifier:          qKnOZOcCph3v/rAwIonbWxdpwmCBwwMxMoaaneMuoEM=
Subject key identifier:   63:95:9D:41:2D:C7:BA:9F:D3:88:23:E7:3E:53:5C:CF:7F:24:8B:A9
Authority key identifier: 4C:E0:82:00:49:22:78:48:4D:6C:88:F5:38:6B:A7:B3:96:96:CB:96
Certificate issuer:       /CN=4ce08200492278484d6c88f5386ba7b39696cb96
Certificate serial:       019D38D322AC92A282E686F50A858897718A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TOCCAEkieEhNbIj1OGuns5aWy5Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/33/2d542d-1ec5-4943-b63e-915120b63093/1/TOCCAEkieEhNbIj1OGuns5aWy5Y.mft
Manifest number:          0F62
Signing time:             Sun 29 Mar 2026 09:00:54 +0000
Manifest this update:     Sun 29 Mar 2026 09:00:54 +0000
Manifest next update:     Mon 30 Mar 2026 09:00:54 +0000
Files and hashes:         1: TOCCAEkieEhNbIj1OGuns5aWy5Y.crl (hash: fJr03AW/jcLiYh2HDBpO9GT0EwtKA17PoXdYFB9AedE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/33/2d542d-1ec5-4943-b63e-915120b63093/1/TOCCAEkieEhNbIj1OGuns5aWy5Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/33/2d542d-1ec5-4943-b63e-915120b63093/1/TOCCAEkieEhNbIj1OGuns5aWy5Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TOCCAEkieEhNbIj1OGuns5aWy5Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:d3:22:ac:92:a2:82:e6:86:f5:0a:85:88:97:71:8a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4ce08200492278484d6c88f5386ba7b39696cb96
        Validity
            Not Before: Mar 29 09:00:54 2026 GMT
            Not After : Mar 30 09:00:54 2026 GMT
        Subject: CN=63959d412dc7ba9fd38823e73e535ccf7f248ba9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:46:24:ff:c8:9d:5e:0d:72:74:c0:c5:32:a7:
                    50:02:ca:83:84:8d:76:6a:16:5b:5a:d4:af:26:77:
                    90:14:a8:fa:3c:94:4d:5f:6b:13:70:e8:62:c0:66:
                    19:f1:1e:4b:c7:dc:60:0e:37:75:af:24:c6:7c:01:
                    4f:a0:d8:4a:4d:89:43:03:f0:38:b2:bf:14:4b:6b:
                    94:28:49:62:9c:49:52:e6:fa:4f:72:4b:a9:0d:e4:
                    96:b8:03:8c:be:80:85:fa:63:7d:5a:cd:d7:eb:0b:
                    de:63:16:cb:3f:cc:67:e8:c5:5a:0a:d2:58:ab:2b:
                    37:4d:ec:ff:eb:34:4a:b2:92:2f:a7:60:7c:bc:c6:
                    9b:75:72:3e:e3:43:09:d0:2a:86:e5:8d:e8:53:d2:
                    88:53:c4:15:43:da:25:46:a3:e2:12:40:6f:e8:88:
                    6d:eb:d7:2f:1e:4b:ba:13:02:eb:55:10:a1:b3:bd:
                    dc:03:a9:c1:5b:19:b9:5d:5d:48:22:c1:6d:63:e6:
                    8a:02:3e:78:3a:de:38:fd:7e:79:8c:fb:30:33:30:
                    b1:7f:39:ea:43:97:18:c4:9e:c4:45:7e:9e:7c:6f:
                    89:d7:8d:96:50:16:d1:e6:3c:56:79:93:e6:0f:be:
                    95:2d:d6:7d:1f:40:cb:c8:17:0e:4a:39:bc:93:e2:
                    5a:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:95:9D:41:2D:C7:BA:9F:D3:88:23:E7:3E:53:5C:CF:7F:24:8B:A9
            X509v3 Authority Key Identifier:
                keyid:4C:E0:82:00:49:22:78:48:4D:6C:88:F5:38:6B:A7:B3:96:96:CB:96

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TOCCAEkieEhNbIj1OGuns5aWy5Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/2d542d-1ec5-4943-b63e-915120b63093/1/TOCCAEkieEhNbIj1OGuns5aWy5Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/33/2d542d-1ec5-4943-b63e-915120b63093/1/TOCCAEkieEhNbIj1OGuns5aWy5Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:a1:2e:b2:ab:7f:d6:71:77:39:94:8e:f6:80:a9:10:16:63:
         da:c7:83:b2:c2:3a:fd:6e:cf:fe:26:34:55:82:ca:97:ce:59:
         21:f9:70:d1:0b:c9:94:82:34:6f:7a:e9:64:d9:39:a4:f7:8e:
         de:73:7a:d4:41:53:1a:4e:6f:2f:78:d0:48:dd:ef:1e:4f:1c:
         3d:f7:33:84:bc:be:d5:b7:87:7a:55:99:1d:3e:72:25:2d:29:
         4d:2a:05:da:de:d9:4b:57:7e:89:e8:a0:98:27:3d:20:15:2a:
         a5:64:ce:9e:de:73:19:66:b7:ff:3e:db:36:ee:54:66:4c:bc:
         a7:88:18:a3:34:49:b7:83:e4:78:09:3e:0f:c3:1a:5c:42:20:
         6f:72:f7:5e:0e:be:43:a8:1e:45:f4:ce:93:a5:b5:74:8d:35:
         1b:e2:83:7d:16:c0:6b:65:e5:6e:79:4d:c5:eb:41:28:71:fd:
         06:48:2a:d9:8b:b5:37:c6:aa:17:bc:90:74:a9:0e:aa:22:bc:
         a9:40:6e:5f:53:5a:e7:bd:d5:a5:cd:cc:62:25:47:08:22:a7:
         0c:aa:0b:8b:8d:3e:56:d7:1f:18:e9:5d:de:3e:bc:34:53:bd:
         8d:de:23:7e:19:8a:9b:3a:97:a2:d1:35:74:01:3e:b1:29:49:
         18:e0:5f:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----