Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
File:                     UJSiarpxAHYh_VmdU3u3rqreizM.mft (raw, json)
Hash identifier:          ZEljsnZzfX5MdXPN6hRRujYeHP9qqLN8O44WCqnQI+Y=
Subject key identifier:   18:10:19:5F:B8:40:9B:9E:C5:F9:C1:CC:26:F8:5F:97:8B:B5:BB:7A
Authority key identifier: 50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33
Certificate issuer:       /CN=5094a26aba71007621fd599d537bb7aeaade8b33
Certificate serial:       019CCB9AF7CA2E8FD0153032B2189BDA556A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
Manifest number:          185B
Signing time:             Sun 08 Mar 2026 04:00:56 +0000
Manifest this update:     Sun 08 Mar 2026 04:00:56 +0000
Manifest next update:     Mon 09 Mar 2026 04:00:56 +0000
Files and hashes:         1: UJSiarpxAHYh_VmdU3u3rqreizM.crl (hash: FoRsw8PH/PTA4Rt361mJP/Pb8aaJALIVZmkyfaz09lA=)
                          2: dvjppw9s6JficbBL1JualOvAVhI.roa (hash: cPS5/nVNCYfyW3AOLG3yzdZLV0ipLTe96hQ2jMLs1Gw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Mar 2026 22:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:cb:9a:f7:ca:2e:8f:d0:15:30:32:b2:18:9b:da:55:6a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5094a26aba71007621fd599d537bb7aeaade8b33
        Validity
            Not Before: Mar  8 04:00:56 2026 GMT
            Not After : Mar  9 04:00:56 2026 GMT
        Subject: CN=1810195fb8409b9ec5f9c1cc26f85f978bb5bb7a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:78:8f:f4:e6:07:a4:d9:60:a0:94:96:76:11:
                    07:65:1d:32:a0:55:64:a9:1b:b8:b1:47:4f:91:2e:
                    4c:fc:bd:97:9d:9b:91:2f:01:15:8d:a1:0a:e5:7c:
                    db:5a:da:ce:8f:c7:2e:98:74:50:5d:e0:ee:56:13:
                    ac:c0:ca:a6:5b:49:75:d1:98:1d:85:af:58:77:b4:
                    d0:30:0c:59:f4:32:da:b7:4f:d1:ea:08:13:77:ee:
                    6a:b4:4a:38:71:00:4f:b4:6c:88:db:b4:3f:c4:f5:
                    65:ef:96:39:1d:8d:c5:f0:dd:73:95:fb:1e:20:78:
                    3d:f0:fb:12:d1:ad:6c:02:7f:a1:99:55:51:b4:47:
                    40:58:1a:06:0b:b8:e1:fc:c3:b2:05:7c:ed:be:3e:
                    4d:ef:0d:c9:f7:79:36:7c:f7:b7:26:3f:4e:6f:6b:
                    4c:ef:cd:9a:bc:a1:8a:b3:6b:13:56:2d:ae:68:dc:
                    65:33:67:51:6a:75:1e:ea:43:7d:5b:60:5e:11:99:
                    c1:f4:d2:d8:19:d2:85:d1:e5:b2:68:c3:90:a5:f1:
                    1f:e4:12:f7:25:f2:6a:be:45:b5:bd:76:0b:16:eb:
                    6b:12:4c:fc:87:3a:a5:58:38:97:52:df:fb:36:0b:
                    10:b1:c1:87:b5:f8:8e:ac:c4:c9:05:7e:de:cc:28:
                    63:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:10:19:5F:B8:40:9B:9E:C5:F9:C1:CC:26:F8:5F:97:8B:B5:BB:7A
            X509v3 Authority Key Identifier:
                keyid:50:94:A2:6A:BA:71:00:76:21:FD:59:9D:53:7B:B7:AE:AA:DE:8B:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJSiarpxAHYh_VmdU3u3rqreizM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/9fce78-4f9d-4847-b759-b451e477b9c2/1/UJSiarpxAHYh_VmdU3u3rqreizM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:bc:33:58:b7:5c:86:4b:97:f8:6d:2f:e7:15:eb:f1:b8:75:
         ea:86:d4:d1:71:ae:c8:72:32:fb:9d:5b:84:6f:3c:db:16:5d:
         4e:09:61:4d:67:ca:f5:1b:06:b7:59:18:9e:90:c3:59:8b:aa:
         0e:e4:fb:a5:e4:af:99:79:c2:8c:1d:a8:b6:a7:e3:42:cf:ee:
         7a:97:f2:4c:60:59:d1:4a:a7:a0:cb:bb:9f:15:59:96:ec:de:
         23:93:56:dd:35:bf:4e:24:49:8d:0a:9d:77:19:bd:ef:29:dc:
         38:ae:d5:58:28:ea:75:a9:98:93:0a:7d:ae:ab:35:d0:0f:43:
         c5:58:1f:4c:05:d5:36:6b:df:8c:39:1c:f3:17:c6:8f:f0:0f:
         99:59:21:c3:68:2a:ef:b9:fd:2d:1e:67:19:2a:7d:a4:74:33:
         ff:bd:e1:82:ab:9c:a0:bc:36:a2:82:1f:5c:56:83:bb:2f:6a:
         4f:0b:d7:ae:9d:62:13:01:f4:28:5c:53:d1:ee:39:9e:7a:7a:
         65:fd:ab:55:03:52:81:79:dd:00:ee:73:ea:67:99:b0:c7:a4:
         d4:2c:56:09:6e:46:41:56:f4:5c:44:38:24:c5:81:0d:9e:f9:
         87:cd:ef:f7:c9:04:7b:7b:9f:c4:bd:8c:95:65:0c:cf:d5:10:
         0c:27:8f:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 8 07:37:48 2026 by rpki-client