Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.mft
File:                     4BpLB7xMpvoFciL96uhg9kRAR-A.mft (raw, json)
Hash identifier:          92FG409MBMmc4+8U794AqqOjgG6UQ17ubkTpRkyQtxY=
Subject key identifier:   55:61:50:6B:D9:BB:41:83:24:E3:2C:29:0A:DC:EA:5B:AB:32:10:C9
Authority key identifier: E0:1A:4B:07:BC:4C:A6:FA:05:72:22:FD:EA:E8:60:F6:44:40:47:E0
Certificate issuer:       /CN=e01a4b07bc4ca6fa057222fdeae860f6444047e0
Certificate serial:       019F18D6998527C0A4BE81819B286D54018C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4BpLB7xMpvoFciL96uhg9kRAR-A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.mft
Manifest number:          0759
Signing time:             Tue 30 Jun 2026 14:02:24 +0000
Manifest this update:     Tue 30 Jun 2026 14:02:24 +0000
Manifest next update:     Wed 01 Jul 2026 14:02:24 +0000
Files and hashes:         1: 4BpLB7xMpvoFciL96uhg9kRAR-A.crl (hash: EhnMvvQAIAmUa4mKIhbCN9QwMftzJD6Seh1wC77qPdI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4BpLB7xMpvoFciL96uhg9kRAR-A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:02:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:18:d6:99:85:27:c0:a4:be:81:81:9b:28:6d:54:01:8c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e01a4b07bc4ca6fa057222fdeae860f6444047e0
        Validity
            Not Before: Jun 30 14:02:24 2026 GMT
            Not After : Jul  1 14:02:24 2026 GMT
        Subject: CN=5561506bd9bb418324e32c290adcea5bab3210c9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:8c:25:bd:39:7e:00:10:84:24:22:61:3a:9b:
                    c0:5a:f9:15:bd:36:64:21:25:51:8a:dc:cb:ec:e3:
                    9f:2c:d8:90:ee:f8:65:1d:fc:6b:d3:27:d9:1d:eb:
                    ff:be:e4:9e:2f:be:5e:45:43:1f:cd:8b:1f:a1:4c:
                    8d:f3:d5:eb:a5:50:16:5b:9e:bb:bf:f7:a5:f0:c6:
                    33:70:9d:0d:3c:20:45:64:31:8a:f5:3b:70:0d:48:
                    8b:34:34:b5:10:47:92:82:22:73:a4:51:9f:d0:c7:
                    88:4f:ca:b7:91:59:bc:01:5e:41:f4:f8:e2:a0:48:
                    e6:d0:7d:83:3e:67:7f:a7:25:0e:a1:0b:3d:8b:40:
                    9e:35:bf:b5:e2:8f:8d:33:9e:39:25:c2:99:49:65:
                    7d:c9:dd:50:9c:6d:51:bb:fa:79:ef:cb:47:93:ee:
                    e2:5e:cf:37:e6:4e:2f:43:63:2b:3a:4e:ff:79:58:
                    76:89:70:ad:e2:97:ea:93:f4:79:55:36:65:64:ec:
                    41:5b:5b:84:5c:97:75:b2:28:8a:6a:aa:ce:e8:ea:
                    bb:aa:4d:3e:f4:94:fa:09:89:ed:45:e2:f5:b6:48:
                    09:60:15:c9:7f:f2:68:9b:85:59:07:a6:b3:c3:43:
                    e5:3f:20:2a:3f:0a:06:45:7c:31:52:e4:6c:36:b6:
                    98:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:61:50:6B:D9:BB:41:83:24:E3:2C:29:0A:DC:EA:5B:AB:32:10:C9
            X509v3 Authority Key Identifier:
                keyid:E0:1A:4B:07:BC:4C:A6:FA:05:72:22:FD:EA:E8:60:F6:44:40:47:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4BpLB7xMpvoFciL96uhg9kRAR-A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/43/944c8f-f0f8-4c71-9ede-7a3c532d3a55/1/4BpLB7xMpvoFciL96uhg9kRAR-A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:74:35:6f:95:fd:81:93:0a:ec:c5:95:99:fa:84:af:e3:91:
         30:dd:ac:a3:2d:ba:fe:83:be:07:a0:a6:23:be:4e:c2:4b:ac:
         9b:5f:c3:bd:f8:3e:7d:14:e3:e5:35:7f:ec:88:de:89:1d:a4:
         53:29:74:91:6a:0a:12:8e:80:00:10:fd:91:4d:7a:0a:98:24:
         5f:db:68:08:da:68:85:82:ad:ac:ed:40:fc:ef:10:91:54:3b:
         31:8c:4b:c1:ea:86:f5:0a:29:93:bf:3e:b4:d3:3b:4d:5a:a3:
         d9:fa:54:48:ac:11:c8:92:0a:75:92:8f:2d:1b:c6:43:be:8f:
         fb:b7:f5:d6:a0:df:58:93:b9:fa:7e:f0:d5:10:da:1d:b6:d2:
         83:77:1a:22:31:7b:b4:c3:05:f2:a2:85:56:bb:1f:a9:3e:19:
         5d:1e:25:9b:16:a8:b7:c3:aa:02:60:cb:4c:cb:9e:01:2a:1d:
         43:97:fc:85:a3:f3:b2:13:cf:c7:b5:58:3c:67:51:5a:d2:b9:
         13:40:c6:c7:a1:c0:2b:55:18:b6:b5:13:17:ef:5c:35:7b:65:
         6d:16:af:6d:dc:65:02:6f:68:1c:cf:d3:f6:2a:2e:5f:5a:83:
         55:cc:66:d3:64:00:d1:42:1b:64:8a:84:00:ff:f3:99:3b:fb:
         6e:48:ca:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----