Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft
File:                     0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft (raw, json)
Hash identifier:          sLuVVcCa33J3SoQyveIqWJhHKGrhwtNRjQXE37BG6/I=
Subject key identifier:   85:6C:E8:1E:9E:B5:F7:24:E4:A0:BF:8E:46:28:86:20:03:F9:58:88
Authority key identifier: D2:26:1D:EE:6D:54:DD:53:6E:F7:00:F2:D9:D8:19:7C:86:09:39:66
Certificate issuer:       /CN=d2261dee6d54dd536ef700f2d9d8197c86093966
Certificate serial:       019F1944238A810C2F9CCF748A76E44677C1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0iYd7m1U3VNu9wDy2dgZfIYJOWY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft
Manifest number:          1917
Signing time:             Tue 30 Jun 2026 16:02:03 +0000
Manifest this update:     Tue 30 Jun 2026 16:02:03 +0000
Manifest next update:     Wed 01 Jul 2026 16:02:03 +0000
Files and hashes:         1: 0iYd7m1U3VNu9wDy2dgZfIYJOWY.crl (hash: hhgvkkJXv0hfjQm0yVnky/PG6UUnXeeI4avMhGmq8hw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0iYd7m1U3VNu9wDy2dgZfIYJOWY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:44:23:8a:81:0c:2f:9c:cf:74:8a:76:e4:46:77:c1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d2261dee6d54dd536ef700f2d9d8197c86093966
        Validity
            Not Before: Jun 30 16:02:03 2026 GMT
            Not After : Jul  1 16:02:03 2026 GMT
        Subject: CN=856ce81e9eb5f724e4a0bf8e4628862003f95888
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:80:0e:ca:76:f3:58:8c:e8:ae:d5:13:ee:65:
                    d4:2f:b0:bc:8b:0c:6e:be:e1:ca:2c:25:89:81:10:
                    e4:c9:38:8d:81:a6:47:5d:ec:8c:80:e5:cc:29:85:
                    5d:4b:0a:75:61:ab:3c:1c:52:e4:f4:5d:62:89:92:
                    10:0d:ef:fa:56:3b:c2:8f:99:3c:fd:cc:01:b7:e0:
                    13:ea:20:2f:32:4b:25:fd:62:3c:70:a0:6f:ad:f5:
                    c4:0a:d4:59:15:ac:a3:c5:c8:2b:34:df:64:7b:b1:
                    41:45:fc:15:ba:ca:bd:09:77:e1:97:39:e7:d8:21:
                    8b:fa:fb:9c:44:8b:1f:06:7d:88:ae:ca:7e:cc:c8:
                    f1:bf:08:50:33:52:c0:a3:b0:2e:e8:2b:2a:a8:ff:
                    6f:d0:c4:1b:8b:1a:0f:ce:e4:3e:fc:73:1f:b8:e4:
                    4d:5e:27:97:44:4a:97:cc:a3:3e:5e:d9:79:43:27:
                    62:77:31:4c:85:be:57:45:bc:6b:b9:61:df:21:bf:
                    6e:3e:48:39:ca:db:dd:35:2e:33:7f:1e:c0:05:22:
                    c2:aa:0f:36:6c:61:1b:df:fa:2f:7d:ef:55:ab:dc:
                    83:c8:1f:88:73:08:95:88:36:f2:7f:31:ea:81:1f:
                    25:f7:79:c8:b8:f1:95:f9:01:fb:75:d8:e6:d6:8f:
                    6c:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:6C:E8:1E:9E:B5:F7:24:E4:A0:BF:8E:46:28:86:20:03:F9:58:88
            X509v3 Authority Key Identifier:
                keyid:D2:26:1D:EE:6D:54:DD:53:6E:F7:00:F2:D9:D8:19:7C:86:09:39:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0iYd7m1U3VNu9wDy2dgZfIYJOWY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:76:81:d5:82:77:e3:ee:33:29:6c:76:fa:d9:c4:82:e3:44:
         3f:00:74:fe:9f:9f:2f:c8:9f:6a:3a:d9:b1:b0:d2:68:d7:8e:
         7a:a8:d2:9b:9f:d7:d7:c3:5b:f4:35:4c:c8:a0:20:ed:63:5d:
         c7:05:8c:8c:08:70:4c:96:59:41:62:03:99:a9:5e:c6:35:b5:
         6b:de:c6:0a:d5:71:f2:14:ac:15:9d:6e:cb:e4:a7:66:5a:73:
         9b:87:43:61:e1:76:4f:ce:8b:83:e0:c8:14:9b:dc:96:dc:74:
         c9:58:34:d0:07:46:77:31:9c:20:e1:c4:9b:2e:61:c6:04:3c:
         48:fa:28:9b:b3:e6:77:fe:d4:58:d0:ee:68:92:3b:bb:49:4a:
         b8:b2:96:6a:88:60:ff:67:d4:41:f5:0f:3b:ba:cc:b5:40:12:
         dd:87:cf:04:e3:d5:30:9e:1c:73:5b:07:ab:8c:a8:fe:17:02:
         10:86:df:6d:ef:5f:9f:44:9a:49:d9:34:d9:87:79:80:32:31:
         91:01:2a:b4:ed:93:99:b5:71:b2:38:37:31:37:bd:d8:cc:cb:
         5d:7c:ff:cc:30:7a:72:1e:c5:2f:f4:c0:cc:98:6d:f8:f2:8a:
         f2:20:03:24:95:a9:7e:ff:dc:07:0c:c2:e0:17:26:ee:a8:d5:
         75:7e:33:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZRCOKgQwvnM90inbkRnfBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyMjYxZGVlNmQ1NGRkNTM2ZWY3MDBmMmQ5ZDgxOTdjODYw
OTM5NjYwHhcNMjYwNjMwMTYwMjAzWhcNMjYwNzAxMTYwMjAzWjAzMTEwLwYDVQQD
Eyg4NTZjZTgxZTllYjVmNzI0ZTRhMGJmOGU0NjI4ODYyMDAzZjk1ODg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw4AOynbzWIzortUT7mXUL7C8iwxu
vuHKLCWJgRDkyTiNgaZHXeyMgOXMKYVdSwp1Yas8HFLk9F1iiZIQDe/6VjvCj5k8
/cwBt+AT6iAvMksl/WI8cKBvrfXECtRZFayjxcgrNN9ke7FBRfwVusq9CXfhlznn
2CGL+vucRIsfBn2Irsp+zMjxvwhQM1LAo7Au6CsqqP9v0MQbixoPzuQ+/HMfuORN
XieXREqXzKM+Xtl5QydidzFMhb5XRbxruWHfIb9uPkg5ytvdNS4zfx7ABSLCqg82
bGEb3/ovfe9Vq9yDyB+IcwiViDbyfzHqgR8l93nIuPGV+QH7ddjm1o9srwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIVs6B6etfck5KC/jkYohiAD+ViIMB8GA1UdIwQY
MBaAFNImHe5tVN1TbvcA8tnYGXyGCTlmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGlZZDdtMVUzVk51OXdEeTJkZ1pmSVlKT1dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9iYWNlYzMtNDkxYi00NDBiLThiNDgt
NmYwZjQ2ZjRkNGI0LzEvMGlZZDdtMVUzVk51OXdEeTJkZ1pmSVlKT1dZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy9iYWNlYzMtNDkxYi00NDBiLThiNDgtNmYwZjQ2ZjRkNGI0
LzEvMGlZZDdtMVUzVk51OXdEeTJkZ1pmSVlKT1dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAInaB1YJ3
4+4zKWx2+tnEguNEPwB0/p+fL8ifajrZsbDSaNeOeqjSm5/X18Nb9DVMyKAg7WNd
xwWMjAhwTJZZQWIDmalexjW1a97GCtVx8hSsFZ1uy+SnZlpzm4dDYeF2T86Lg+DI
FJvcltx0yVg00AdGdzGcIOHEmy5hxgQ8SPoom7Pmd/7UWNDuaJI7u0lKuLKWaohg
/2fUQfUPO7rMtUAS3YfPBOPVMJ4cc1sHq4yo/hcCEIbfbe9fn0SaSdk02Yd5gDIx
kQEqtO2TmbVxsjg3MTe92MzLXXz/zDB6ch7FL/TAzJht+PKK8iADJJWpfv/cBwzC
4Bcm7qjVdX4zLg==
-----END CERTIFICATE-----