Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft
File:                     0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft (raw, json)
Hash identifier:          Uz/q86E/1yzhtRFplXJe9HjPDrtJStAv1s8UjcDYeYU=
Subject key identifier:   8C:98:41:39:34:52:1E:72:0D:77:A8:6C:F5:D4:9B:E6:0C:FE:C8:74
Authority key identifier: D2:26:1D:EE:6D:54:DD:53:6E:F7:00:F2:D9:D8:19:7C:86:09:39:66
Certificate issuer:       /CN=d2261dee6d54dd536ef700f2d9d8197c86093966
Certificate serial:       019D38667521CB3EFD00A7B9FF524F973201
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0iYd7m1U3VNu9wDy2dgZfIYJOWY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft
Manifest number:          181E
Signing time:             Sun 29 Mar 2026 07:02:11 +0000
Manifest this update:     Sun 29 Mar 2026 07:02:11 +0000
Manifest next update:     Mon 30 Mar 2026 07:02:11 +0000
Files and hashes:         1: 0iYd7m1U3VNu9wDy2dgZfIYJOWY.crl (hash: q9sm2HiucArm/QhP2YjVZJ57396CaGExigxNRVTx+zY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0iYd7m1U3VNu9wDy2dgZfIYJOWY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:66:75:21:cb:3e:fd:00:a7:b9:ff:52:4f:97:32:01
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d2261dee6d54dd536ef700f2d9d8197c86093966
        Validity
            Not Before: Mar 29 07:02:11 2026 GMT
            Not After : Mar 30 07:02:11 2026 GMT
        Subject: CN=8c98413934521e720d77a86cf5d49be60cfec874
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:e1:cb:4f:a1:60:36:ed:d8:fc:63:10:38:99:
                    25:6d:21:e1:95:49:5a:af:32:6b:65:a6:50:71:29:
                    58:f5:56:bd:60:ca:2d:90:69:33:a6:aa:b8:b1:20:
                    07:dd:c7:1f:83:3f:a4:d8:f8:ce:fd:dd:72:0d:75:
                    c5:3e:64:4d:99:c6:76:fe:34:f9:3d:c3:9c:8a:cf:
                    04:3f:c1:c4:48:fa:a5:c0:60:d5:49:14:ae:c2:53:
                    7a:7f:ce:db:8c:be:29:8b:40:fa:e3:34:90:a1:c6:
                    49:7f:60:0d:e1:ee:54:b9:4f:73:51:b5:7a:62:1d:
                    79:4b:bf:d8:44:6d:8b:9c:89:16:05:5a:d1:75:e1:
                    4f:df:09:4c:2d:26:10:d5:85:8e:be:d6:0c:7b:52:
                    40:0c:45:2b:58:82:bb:68:b2:7a:39:c4:b7:9b:2f:
                    d3:c9:fb:b3:79:44:bb:a7:7d:1e:6a:95:f5:4e:fc:
                    d6:6a:1b:35:39:48:a3:a0:81:f3:41:d6:69:37:40:
                    ac:d7:b9:d2:f5:48:36:e3:1e:86:0e:e6:59:e4:c0:
                    86:46:b1:21:63:82:b9:fc:04:ff:9a:44:b6:ac:b3:
                    3b:6a:4d:f8:1c:1f:d3:65:14:6a:06:07:89:e6:c4:
                    3c:f6:24:b3:5c:41:c6:3c:0c:89:10:83:d8:09:00:
                    a7:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8C:98:41:39:34:52:1E:72:0D:77:A8:6C:F5:D4:9B:E6:0C:FE:C8:74
            X509v3 Authority Key Identifier:
                keyid:D2:26:1D:EE:6D:54:DD:53:6E:F7:00:F2:D9:D8:19:7C:86:09:39:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0iYd7m1U3VNu9wDy2dgZfIYJOWY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b6:c5:5f:f0:8a:fc:b1:e5:20:f7:f5:e0:11:7e:d6:11:77:7c:
         3c:6f:76:e3:d4:58:88:60:91:dc:18:28:8b:3e:a0:7d:83:1d:
         da:cd:72:03:8f:a0:4c:af:66:ef:83:da:7e:04:7b:be:b1:7b:
         d5:5a:3d:ca:40:7f:40:d1:61:60:23:9e:8d:d1:6c:c7:ce:5c:
         9f:96:d2:9e:41:5b:67:51:2e:eb:cf:69:c8:2f:2a:4d:dd:c9:
         5f:a0:06:37:48:e8:e7:c2:36:1b:27:c5:3a:d8:5d:1a:aa:cc:
         55:b5:c9:7e:90:f4:a3:26:7f:08:d4:ef:a9:7b:60:18:25:0c:
         82:88:d6:99:f6:7d:b6:e1:b7:d6:4a:04:d2:ee:0e:1a:81:9b:
         9f:00:2c:c6:5a:0e:5e:55:38:91:d1:f8:ea:4d:7d:a1:dc:cf:
         d4:c6:a2:7d:99:09:ef:89:07:98:73:b7:b2:04:ed:5d:26:6e:
         f7:21:2b:04:65:1a:90:16:81:07:15:ba:34:56:ab:af:f0:00:
         01:1e:3a:bb:78:91:4c:5f:86:37:73:43:b2:45:75:8f:06:71:
         ad:15:76:19:86:81:dc:8e:69:f1:c5:3e:fb:f4:4a:ea:ac:93:
         15:16:4f:84:df:0c:8a:44:1f:2d:87:92:9e:6f:25:0e:11:36:
         66:29:84:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----