Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
File:                     2Hwy4kled0lvwgKzAxZLpAjl0SI.mft (raw, json)
Hash identifier:          XtIEIWJxJ+HKwmJ9gQlGB/jA3VjMzMvbYoFW63qwuqI=
Subject key identifier:   D0:70:CB:4C:F3:8B:41:91:B0:06:C2:6B:3E:DB:56:08:4D:83:5B:5D
Authority key identifier: D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22
Certificate issuer:       /CN=d87c32e2495e77496fc202b303164ba408e5d122
Certificate serial:       019F194393239CC97F4745B10041A1F0DC66
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
Manifest number:          1883
Signing time:             Tue 30 Jun 2026 16:01:26 +0000
Manifest this update:     Tue 30 Jun 2026 16:01:26 +0000
Manifest next update:     Wed 01 Jul 2026 16:01:26 +0000
Files and hashes:         1: 2Hwy4kled0lvwgKzAxZLpAjl0SI.crl (hash: By+kHksNuLCaKnq9tHteU0sPtUI6Dy3/Et4tFCLunw8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:43:93:23:9c:c9:7f:47:45:b1:00:41:a1:f0:dc:66
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d87c32e2495e77496fc202b303164ba408e5d122
        Validity
            Not Before: Jun 30 16:01:26 2026 GMT
            Not After : Jul  1 16:01:26 2026 GMT
        Subject: CN=d070cb4cf38b4191b006c26b3edb56084d835b5d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:f7:a4:74:60:17:38:7b:d3:57:ae:3b:61:5f:
                    18:79:d0:7e:7e:ca:34:03:bb:86:1f:ff:aa:45:82:
                    29:ee:bb:e7:0a:1a:16:b2:54:62:ae:4e:ec:4e:7e:
                    c6:55:9a:05:d7:dc:dd:7f:42:46:06:f5:90:2e:0a:
                    a0:66:7e:d9:b7:fa:a8:cb:b6:35:41:7b:df:86:60:
                    6d:e8:0b:ce:ae:38:dc:02:b8:f9:bd:f3:b0:2d:a5:
                    92:d5:e9:af:7f:16:22:c4:5f:ce:df:0f:3f:1a:7d:
                    00:2e:98:2b:6b:fb:05:d9:7b:ed:e7:ac:eb:7e:a7:
                    af:b3:7e:f5:2e:97:c0:69:5b:c4:75:15:6e:d3:6f:
                    69:a8:fe:13:ac:96:d2:25:3a:5f:41:bc:7f:96:6e:
                    c9:5e:53:f7:b6:f0:0c:58:a9:40:22:3d:03:a8:90:
                    fb:0c:9d:5f:83:db:56:7e:76:15:20:0c:45:41:ad:
                    dc:a6:c4:84:ae:35:56:64:b4:4b:50:04:54:9b:bd:
                    b8:0c:2d:71:09:fd:f2:5e:cc:a8:a5:b8:9a:00:dc:
                    4d:cb:29:15:99:46:8d:b5:9b:d3:41:ce:d5:eb:e2:
                    f8:36:f8:bd:a7:ba:2b:c9:20:2b:71:35:47:39:50:
                    4e:06:24:bb:74:04:53:cd:bb:9e:a2:6e:c3:28:ff:
                    0a:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:70:CB:4C:F3:8B:41:91:B0:06:C2:6B:3E:DB:56:08:4D:83:5B:5D
            X509v3 Authority Key Identifier:
                keyid:D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:ae:26:e3:57:cd:21:5d:9a:c4:b3:47:dd:99:b6:53:35:b9:
         1c:a9:e7:c6:31:53:0d:0a:1e:72:88:76:36:f7:a1:1c:3e:11:
         c1:5f:60:38:30:16:0f:31:b0:c4:21:06:47:a4:7c:5c:1e:94:
         7e:5a:2e:5f:4d:48:ed:b8:11:d0:76:05:7a:cd:f9:c3:65:47:
         c7:7f:e3:68:ec:c4:10:c3:e8:75:be:d6:a1:73:01:37:21:8a:
         10:61:e8:ae:ef:75:f4:d7:7b:3b:36:78:f8:c6:b8:3e:be:c5:
         c7:87:fd:77:f6:e6:86:73:4f:c7:c5:06:c7:c9:66:fc:10:ad:
         fa:ea:5d:55:dc:ce:85:d0:96:47:a9:cd:bc:2b:45:35:58:21:
         7c:94:79:a9:6c:4d:c0:80:83:1a:26:2d:83:45:21:4a:03:66:
         38:88:98:e9:d4:9e:f0:3c:5c:34:c1:7e:1f:5b:2e:9b:e5:8e:
         99:14:92:65:8c:bb:dd:bf:db:7f:90:34:de:1d:e1:c0:1c:1f:
         df:f7:f1:7d:ca:81:27:ca:81:2c:6a:d1:11:da:2b:40:4c:9c:
         a3:62:16:d2:63:fc:82:a6:5c:b8:a1:88:4f:09:c1:1e:59:fe:
         97:cd:8d:70:50:85:d0:12:9f:03:d9:00:e2:d3:ee:ba:da:ed:
         7e:e4:e2:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZQ5MjnMl/R0WxAEGh8NxmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4N2MzMmUyNDk1ZTc3NDk2ZmMyMDJiMzAzMTY0YmE0MDhl
NWQxMjIwHhcNMjYwNjMwMTYwMTI2WhcNMjYwNzAxMTYwMTI2WjAzMTEwLwYDVQQD
EyhkMDcwY2I0Y2YzOGI0MTkxYjAwNmMyNmIzZWRiNTYwODRkODM1YjVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApfekdGAXOHvTV647YV8YedB+fso0
A7uGH/+qRYIp7rvnChoWslRirk7sTn7GVZoF19zdf0JGBvWQLgqgZn7Zt/qoy7Y1
QXvfhmBt6AvOrjjcArj5vfOwLaWS1emvfxYixF/O3w8/Gn0ALpgra/sF2Xvt56zr
fqevs371LpfAaVvEdRVu029pqP4TrJbSJTpfQbx/lm7JXlP3tvAMWKlAIj0DqJD7
DJ1fg9tWfnYVIAxFQa3cpsSErjVWZLRLUARUm724DC1xCf3yXsyopbiaANxNyykV
mUaNtZvTQc7V6+L4Nvi9p7orySArcTVHOVBOBiS7dARTzbueom7DKP8KnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNBwy0zzi0GRsAbCaz7bVghNg1tdMB8GA1UdIwQY
MBaAFNh8MuJJXndJb8ICswMWS6QI5dEiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkh3eTRrbGVkMGx2d2dLekF4WkxwQWpsMFNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8xZTE5MWUtMTEzYy00NDMzLWFlZjAt
NzI0M2I5ODRhNjE1LzEvMkh3eTRrbGVkMGx2d2dLekF4WkxwQWpsMFNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy8xZTE5MWUtMTEzYy00NDMzLWFlZjAtNzI0M2I5ODRhNjE1
LzEvMkh3eTRrbGVkMGx2d2dLekF4WkxwQWpsMFNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp64m41fN
IV2axLNH3Zm2UzW5HKnnxjFTDQoecoh2NvehHD4RwV9gODAWDzGwxCEGR6R8XB6U
flouX01I7bgR0HYFes35w2VHx3/jaOzEEMPodb7WoXMBNyGKEGHoru919Nd7OzZ4
+Ma4Pr7Fx4f9d/bmhnNPx8UGx8lm/BCt+updVdzOhdCWR6nNvCtFNVghfJR5qWxN
wICDGiYtg0UhSgNmOIiY6dSe8DxcNMF+H1sum+WOmRSSZYy73b/bf5A03h3hwBwf
3/fxfcqBJ8qBLGrREdorQEyco2IW0mP8gqZcuKGITwnBHln+l82NcFCF0BKfA9kA
4tPuutrtfuTimw==
-----END CERTIFICATE-----