Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
File:                     Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft (raw, json)
Hash identifier:          MaOdhEiJllDs0OP93UGFHIDAmDnYQt4pqkjUyLdtwn8=
Subject key identifier:   AF:81:59:2E:69:DA:DD:27:27:DF:11:69:F1:17:D4:2A:6F:E1:58:1C
Authority key identifier: 4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF
Certificate issuer:       /CN=4aefbcfa7f059ff10727ea619e59139da37418ef
Certificate serial:       019D38655061F19AC5EBD8484016AB18E66A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
Manifest number:          188B
Signing time:             Sun 29 Mar 2026 07:00:56 +0000
Manifest this update:     Sun 29 Mar 2026 07:00:56 +0000
Manifest next update:     Mon 30 Mar 2026 07:00:56 +0000
Files and hashes:         1: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl (hash: 34d7g1tiGstUh3Z1Sz0DfxYm2lL2iwZuc7Xiy54XUcI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:65:50:61:f1:9a:c5:eb:d8:48:40:16:ab:18:e6:6a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4aefbcfa7f059ff10727ea619e59139da37418ef
        Validity
            Not Before: Mar 29 07:00:56 2026 GMT
            Not After : Mar 30 07:00:56 2026 GMT
        Subject: CN=af81592e69dadd2727df1169f117d42a6fe1581c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:0e:ac:11:c2:45:fb:8e:13:34:08:1f:0a:44:
                    c6:f2:7f:53:91:4a:a0:bb:e9:13:53:4c:57:94:c0:
                    7d:45:bc:af:30:51:d7:7a:c0:77:a6:2e:b6:13:b1:
                    76:0b:08:39:66:16:a6:43:57:f1:e9:5b:02:99:2a:
                    de:ef:2d:44:77:cf:07:b6:d9:ac:33:94:11:70:83:
                    b9:94:6b:87:cc:f5:99:71:34:50:10:ff:93:40:85:
                    db:c7:e0:e8:65:b9:2d:7e:37:32:e9:d7:50:d1:ee:
                    4d:33:f6:8b:9d:2c:fc:29:ac:a0:68:5a:19:fb:f4:
                    65:74:e7:c8:68:e4:b4:a2:8c:f4:49:aa:71:4d:10:
                    d1:c4:43:2f:56:a9:a1:a4:ef:81:bc:5d:52:f6:b8:
                    3e:0c:2f:29:89:9e:99:a3:50:7f:b3:d3:c8:f6:83:
                    ce:51:32:51:a7:13:24:90:d7:72:20:c8:f9:11:9d:
                    98:16:16:fd:5f:88:ef:36:17:8e:b1:ba:63:5a:8c:
                    b4:29:ad:e1:b5:f4:a7:96:a5:a6:2a:f2:64:dc:52:
                    26:5e:60:ae:2f:d6:30:22:58:7d:17:15:25:46:1f:
                    11:ae:f2:2a:d1:da:db:4d:bd:a6:44:a3:98:5b:5d:
                    10:fd:01:65:2b:a7:7f:a4:ff:3d:a1:d6:a0:cb:c5:
                    d4:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AF:81:59:2E:69:DA:DD:27:27:DF:11:69:F1:17:D4:2A:6F:E1:58:1C
            X509v3 Authority Key Identifier:
                keyid:4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cd:e0:3a:ed:30:b5:f4:36:cb:2f:23:90:bc:f2:5c:ff:34:d3:
         f1:6f:a0:48:62:54:bf:85:89:89:c3:dd:00:a6:dd:1d:88:2a:
         ff:94:af:53:93:18:cc:c1:68:69:b1:64:6d:4c:b8:d7:42:f8:
         51:8b:92:48:37:96:4b:63:fd:60:49:cb:66:8b:99:31:d3:f7:
         37:33:35:e1:c5:9f:80:7f:c5:8e:b7:16:79:ea:aa:6a:4f:f5:
         5e:9c:b6:23:25:83:07:82:34:c7:0b:de:b7:ee:3e:41:b3:1b:
         ae:91:bf:55:78:b6:2a:e1:fb:c4:b2:49:e6:1b:ea:8f:7c:a2:
         25:5c:86:36:b3:db:1d:fe:b5:ef:0b:d2:2b:86:fb:9b:3e:e1:
         a6:26:34:32:ed:be:22:97:1e:ed:67:c1:17:22:d8:db:b5:94:
         25:50:32:34:ed:66:db:ba:34:d3:70:8a:07:3e:fa:f9:30:3b:
         74:44:49:b0:bd:85:bc:c8:b4:66:c9:de:24:83:ff:05:af:f9:
         55:3f:73:37:61:a3:87:16:05:0e:cf:18:99:a3:48:0f:61:86:
         d3:d6:d7:78:a3:4d:52:fc:f3:72:bc:63:a3:62:80:7c:d0:0c:
         17:87:1e:96:c7:5f:9a:6d:71:c5:0d:14:93:c1:62:68:63:1c:
         0d:9b:9b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----