Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft
File:                     A1mTnOHGqpvru2WA4VbuvYcd87I.mft (raw, json)
Hash identifier:          4OkBtSuuHGqLly/bGo0pzmF91kSqF8DF8kf5Cslcc9o=
Subject key identifier:   FC:64:98:61:4D:F1:9B:AC:AE:31:66:02:4C:28:01:AF:F5:5E:22:D6
Authority key identifier: 03:59:93:9C:E1:C6:AA:9B:EB:BB:65:80:E1:56:EE:BD:87:1D:F3:B2
Certificate issuer:       /CN=0359939ce1c6aa9bebbb6580e156eebd871df3b2
Certificate serial:       019F17C27D6B79B4126000A817CDB9171C94
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A1mTnOHGqpvru2WA4VbuvYcd87I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft
Manifest number:          07DE
Signing time:             Tue 30 Jun 2026 09:00:49 +0000
Manifest this update:     Tue 30 Jun 2026 09:00:49 +0000
Manifest next update:     Wed 01 Jul 2026 09:00:49 +0000
Files and hashes:         1: A1mTnOHGqpvru2WA4VbuvYcd87I.crl (hash: +z+wCsbIG0CY1RD23n6bf8w16vTTriF02I2oQRWqe6E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A1mTnOHGqpvru2WA4VbuvYcd87I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 09:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:c2:7d:6b:79:b4:12:60:00:a8:17:cd:b9:17:1c:94
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0359939ce1c6aa9bebbb6580e156eebd871df3b2
        Validity
            Not Before: Jun 30 09:00:49 2026 GMT
            Not After : Jul  1 09:00:49 2026 GMT
        Subject: CN=fc6498614df19bacae3166024c2801aff55e22d6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:7e:51:27:46:81:bd:a0:0a:f0:e4:99:ba:a0:
                    f5:48:44:69:df:23:5d:b6:c9:a8:1c:90:25:64:c0:
                    83:a5:d1:6d:f6:58:f7:53:60:32:46:64:02:6a:02:
                    1c:40:8f:ec:81:8a:fb:94:b4:a4:83:e6:5e:2b:42:
                    3d:d6:e3:73:5a:ee:8e:ba:20:88:b0:6b:41:a7:bd:
                    96:15:78:31:f2:53:4c:63:50:2c:23:90:9f:05:14:
                    e5:ad:1b:72:52:d6:01:f3:02:cd:7a:e6:26:b9:c5:
                    08:bc:bc:f2:0f:18:c4:1c:85:8b:ef:a6:69:4a:f0:
                    e6:70:f2:65:34:f4:9c:f9:ab:53:c8:6b:10:23:5e:
                    8f:64:71:0e:29:6f:d8:db:a6:60:9f:76:6e:7f:d5:
                    ec:3a:c6:16:56:a7:17:f3:47:7d:b0:e5:dd:3e:f2:
                    01:74:37:b5:8c:da:39:b9:7c:61:43:bf:bf:9d:cf:
                    f6:bd:fc:98:f3:b8:d5:91:45:66:43:41:15:34:7a:
                    ea:2a:10:d1:78:8d:31:d1:b3:61:3e:24:5f:e2:25:
                    0f:95:39:b0:88:11:5b:d6:ba:81:30:b6:06:ca:4a:
                    02:d5:fe:ce:fb:2b:fb:31:38:65:54:09:e2:6c:14:
                    f9:77:37:3e:1f:12:6f:6b:70:27:47:7b:fe:90:eb:
                    69:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:64:98:61:4D:F1:9B:AC:AE:31:66:02:4C:28:01:AF:F5:5E:22:D6
            X509v3 Authority Key Identifier:
                keyid:03:59:93:9C:E1:C6:AA:9B:EB:BB:65:80:E1:56:EE:BD:87:1D:F3:B2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1mTnOHGqpvru2WA4VbuvYcd87I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:58:6b:5c:4a:7f:8d:7d:c5:2b:ea:f6:b8:cb:dc:64:1a:8e:
         f1:da:c6:18:cd:46:92:57:33:81:9f:79:d0:83:52:ce:1f:10:
         eb:79:ea:48:92:c8:3e:f3:69:53:5d:58:51:d3:df:33:65:94:
         df:cd:75:76:8b:bd:fd:42:34:e1:3b:c1:d4:55:32:ef:7b:d8:
         0b:cb:5f:ce:e9:bd:ba:9e:b2:0c:92:0c:e0:16:8b:b6:ce:f7:
         dc:21:54:81:0c:a7:bd:e1:0d:02:72:45:71:1e:f6:b2:19:50:
         0e:fe:a8:e1:19:0a:22:b8:e0:cb:bf:74:28:a6:b0:33:e0:f5:
         56:7d:20:2b:46:99:36:a6:33:62:f2:2b:e0:a1:3e:93:0f:52:
         df:a7:cd:34:da:14:62:aa:d6:fc:3e:14:d5:b6:85:96:2c:4a:
         3f:38:8a:6f:34:aa:bf:0f:96:ac:d3:5a:18:25:0a:96:13:1a:
         c5:ae:00:f0:4e:4e:d1:a1:b2:e1:b3:e6:bf:75:d4:64:74:ce:
         f6:3d:d7:59:b0:6e:4b:cd:80:62:1b:63:a7:a9:f3:15:a0:40:
         ad:a4:c9:76:c7:ee:aa:f2:e4:f2:05:41:30:d7:be:00:76:df:
         fb:4c:6b:76:ec:db:bc:24:4d:ff:b7:7e:64:da:b2:57:15:31:
         fd:3b:80:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----