Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft
File:                     rIpdP4uUYpQnOEoSDHdHYFY611o.mft (raw, json)
Hash identifier:          yhZrEMEsKQEATTlwsSL7stCg67N6qKMvvBpJDP7eDwM=
Subject key identifier:   B2:35:25:B7:D9:E2:F1:4C:C1:A9:DD:3E:A5:CF:B9:08:DE:8B:CD:86
Authority key identifier: AC:8A:5D:3F:8B:94:62:94:27:38:4A:12:0C:77:47:60:56:3A:D7:5A
Certificate issuer:       /CN=ac8a5d3f8b94629427384a120c774760563ad75a
Certificate serial:       019EB87C8BA8C4C8768E8BAC4D29B038B9D7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rIpdP4uUYpQnOEoSDHdHYFY611o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft
Manifest number:          1333
Signing time:             Thu 11 Jun 2026 21:00:30 +0000
Manifest this update:     Thu 11 Jun 2026 21:00:30 +0000
Manifest next update:     Fri 12 Jun 2026 21:00:30 +0000
Files and hashes:         1: rIpdP4uUYpQnOEoSDHdHYFY611o.crl (hash: QnBiPBSe02/7/PPg6WoU4ufR8XAiiTQuTPHjaUOHlik=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rIpdP4uUYpQnOEoSDHdHYFY611o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 12 Jun 2026 20:26:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:b8:7c:8b:a8:c4:c8:76:8e:8b:ac:4d:29:b0:38:b9:d7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ac8a5d3f8b94629427384a120c774760563ad75a
        Validity
            Not Before: Jun 11 21:00:30 2026 GMT
            Not After : Jun 12 21:00:30 2026 GMT
        Subject: CN=b23525b7d9e2f14cc1a9dd3ea5cfb908de8bcd86
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:77:91:a3:cb:b6:d9:ff:48:13:ce:67:37:28:
                    de:0f:20:c4:30:c0:47:40:41:00:ca:26:e1:e6:be:
                    aa:37:8b:1f:68:53:f0:d6:6b:96:12:8d:86:4f:4b:
                    c6:01:99:25:5b:a0:21:7c:82:b1:a0:3f:67:35:4e:
                    6c:1b:86:c7:84:9f:b1:33:71:b1:18:de:6f:60:8c:
                    23:02:9d:4d:08:94:25:75:7a:09:50:79:af:ff:2e:
                    05:a9:ed:45:58:71:8f:55:8a:3d:62:95:a7:88:5f:
                    fb:cf:e6:f6:9b:a6:65:4e:bc:91:72:59:92:0b:13:
                    07:b3:c8:84:56:97:3e:72:9c:17:07:9a:0c:bc:a4:
                    83:e4:b6:c2:42:61:37:33:83:69:88:c7:66:37:dc:
                    ba:db:2f:0e:ed:1f:3d:b6:79:d5:59:83:dd:d1:2f:
                    c2:e8:31:ea:e0:87:da:04:09:97:f0:37:e9:19:09:
                    8d:39:e4:5b:c3:cf:ef:b4:82:5c:7c:3c:9b:02:e2:
                    63:e5:73:47:c9:aa:ff:74:bf:13:49:2e:fb:cb:c6:
                    0f:90:c8:b3:bc:48:95:50:55:82:81:5a:57:66:3a:
                    e3:2d:9b:90:55:6e:cd:0a:e6:c4:3f:91:28:93:c2:
                    ce:52:a9:99:19:93:e2:34:dc:5c:cb:e9:9d:c6:09:
                    6c:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:35:25:B7:D9:E2:F1:4C:C1:A9:DD:3E:A5:CF:B9:08:DE:8B:CD:86
            X509v3 Authority Key Identifier:
                keyid:AC:8A:5D:3F:8B:94:62:94:27:38:4A:12:0C:77:47:60:56:3A:D7:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIpdP4uUYpQnOEoSDHdHYFY611o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:f5:3f:57:d9:64:22:6d:8d:ac:4d:56:1b:bd:98:d2:51:b2:
         77:9e:30:60:04:b6:45:1b:b6:3f:f1:60:64:4b:65:f4:15:6b:
         2c:ce:91:be:fb:b0:00:3e:83:71:14:78:0a:89:20:a1:44:76:
         7b:80:2d:da:11:2b:48:54:7e:d6:26:42:e6:05:7a:68:5b:5f:
         fe:7b:9e:0a:3f:30:9c:1a:a9:10:cb:b0:33:58:ea:5f:62:f1:
         c3:d4:8c:8a:10:77:af:e6:89:b7:30:bb:5d:9e:ae:7d:6a:bc:
         e6:5e:26:9e:a3:2a:00:9f:f3:61:58:4a:d0:07:d2:65:00:b2:
         72:cd:31:7f:1c:68:fe:ff:1b:99:43:53:9e:23:6c:e6:0f:3e:
         a5:8b:18:31:5d:53:cf:85:5f:84:12:3b:f4:fa:b7:ab:10:50:
         51:28:3e:40:d1:07:49:e7:77:a8:2d:00:29:69:c0:a0:77:d4:
         a9:bc:4d:7d:34:6d:c4:cc:8a:d0:ef:cf:5f:fd:06:13:bd:98:
         28:f2:40:e1:16:34:f9:03:33:03:86:d3:9a:cf:33:f9:f7:a9:
         59:ef:65:cc:13:42:45:7a:38:7d:aa:dc:28:e0:9d:44:c9:aa:
         6d:7f:c1:92:59:d4:67:cd:e7:e9:45:b3:11:02:b7:62:1b:76:
         7f:81:cf:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----