Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
File:                     2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft (raw, json)
Hash identifier:          Pn+ifjpZfNPiIBPVq2fHVLWvnDSwLMsJvsY8cRmkZDs=
Subject key identifier:   E5:42:A0:7C:CE:29:4D:89:C0:E5:C8:4C:DD:A4:73:59:64:91:79:0C
Authority key identifier: DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F
Certificate issuer:       /CN=dae57631f60adb13f0ae368671ce0f8742f5977f
Certificate serial:       019E2FCD3E113B7DC911CF3E99EE48AB2E9E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
Manifest number:          190A
Signing time:             Sat 16 May 2026 08:00:40 +0000
Manifest this update:     Sat 16 May 2026 08:00:40 +0000
Manifest next update:     Sun 17 May 2026 08:00:40 +0000
Files and hashes:         1: 2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl (hash: EBz9sPYOvXxgPSX4jW9xTHZdB9DvsbsqbBv2C2BTX4A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 08:00:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:cd:3e:11:3b:7d:c9:11:cf:3e:99:ee:48:ab:2e:9e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dae57631f60adb13f0ae368671ce0f8742f5977f
        Validity
            Not Before: May 16 08:00:40 2026 GMT
            Not After : May 17 08:00:40 2026 GMT
        Subject: CN=e542a07cce294d89c0e5c84cdda473596491790c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:23:95:d0:21:5e:a2:5d:d4:31:a6:d2:15:38:
                    51:d5:a5:14:ab:b1:f3:4d:13:61:83:23:25:fa:2c:
                    75:6a:f3:8a:b1:81:d4:63:cb:c8:be:6f:1b:40:e5:
                    3c:e4:6e:7c:a8:e7:7e:71:46:ef:bf:ed:48:b3:6d:
                    3c:f7:8b:b0:0e:f1:0b:37:0a:4f:ca:68:b0:96:23:
                    9d:64:04:1b:25:7f:be:4c:8f:60:54:56:6a:2a:a0:
                    dd:c1:d0:5f:6b:22:9d:e0:98:67:f4:0d:7a:b0:9b:
                    20:ad:6b:9d:1a:d4:ef:13:8a:db:ee:12:ba:25:89:
                    2f:17:8f:a1:fe:42:b1:6a:0f:51:eb:7a:3b:37:d4:
                    94:6e:9b:b7:1b:27:5e:1f:31:b0:aa:a0:84:bb:6e:
                    0c:a1:60:7b:e2:52:3d:9a:69:90:e6:07:36:a7:00:
                    02:c5:12:4e:d8:24:9a:c6:80:45:e2:17:1e:05:06:
                    4d:dc:23:4e:43:6c:90:95:9a:84:91:94:cb:93:b3:
                    81:e3:89:36:54:16:25:65:27:3f:b6:79:81:9b:f6:
                    73:ed:da:ec:c8:31:02:98:47:cc:71:df:d8:7a:19:
                    e3:ab:e6:11:e6:45:86:fa:5f:22:66:1d:62:86:28:
                    61:24:10:34:82:36:e0:cb:fc:ec:88:81:6f:74:2f:
                    bf:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:42:A0:7C:CE:29:4D:89:C0:E5:C8:4C:DD:A4:73:59:64:91:79:0C
            X509v3 Authority Key Identifier:
                keyid:DA:E5:76:31:F6:0A:DB:13:F0:AE:36:86:71:CE:0F:87:42:F5:97:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2uV2MfYK2xPwrjaGcc4Ph0L1l38.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/0e825a-5bb6-4327-9a0a-439f36e1653a/1/2uV2MfYK2xPwrjaGcc4Ph0L1l38.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:33:13:e1:20:2f:4a:8a:07:70:51:04:df:a0:32:27:a1:95:
         43:0e:d4:b8:f4:fe:97:0e:1a:b1:64:8d:89:f0:44:a2:21:61:
         70:20:5c:60:b9:37:d2:a6:23:e1:8c:c5:3a:aa:a0:ca:11:62:
         db:fa:36:18:34:ef:2b:16:8d:8f:25:3d:72:e1:9a:80:75:98:
         11:51:ad:9d:69:e2:34:8e:5c:5b:e3:15:74:fc:5b:94:1e:fc:
         63:b6:31:cc:00:98:7d:bd:7f:c4:14:3e:28:4c:d7:90:6d:20:
         53:3c:44:82:fb:b6:2f:10:32:e3:f2:41:53:47:ee:32:fc:ec:
         59:b9:b8:38:63:e1:62:1c:4e:8b:8d:b2:a9:f0:f0:92:38:75:
         b2:cc:8f:b0:6d:5d:e3:64:96:3b:53:95:de:86:3c:de:4d:ba:
         0b:9e:4e:db:97:f3:5a:4e:e9:19:95:a4:2b:c7:71:3e:db:69:
         1a:57:38:94:c2:e8:2f:be:81:f3:e8:25:c4:78:11:02:65:5e:
         fb:25:a6:4a:c1:6f:1b:29:50:2e:0c:95:d7:d5:7f:7c:ca:5d:
         cb:d5:49:4c:09:4b:c4:29:49:36:9e:96:d1:4d:f6:78:8f:16:
         8e:2b:4d:2a:a3:06:d4:e0:bf:b0:bb:f8:6f:c4:33:22:f6:4d:
         bd:e6:c7:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vzT4RO33JEc8+me5Iqy6eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhZTU3NjMxZjYwYWRiMTNmMGFlMzY4NjcxY2UwZjg3NDJm
NTk3N2YwHhcNMjYwNTE2MDgwMDQwWhcNMjYwNTE3MDgwMDQwWjAzMTEwLwYDVQQD
EyhlNTQyYTA3Y2NlMjk0ZDg5YzBlNWM4NGNkZGE0NzM1OTY0OTE3OTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtiOV0CFeol3UMabSFThR1aUUq7Hz
TRNhgyMl+ix1avOKsYHUY8vIvm8bQOU85G58qOd+cUbvv+1Is20894uwDvELNwpP
ymiwliOdZAQbJX++TI9gVFZqKqDdwdBfayKd4Jhn9A16sJsgrWudGtTvE4rb7hK6
JYkvF4+h/kKxag9R63o7N9SUbpu3GydeHzGwqqCEu24MoWB74lI9mmmQ5gc2pwAC
xRJO2CSaxoBF4hceBQZN3CNOQ2yQlZqEkZTLk7OB44k2VBYlZSc/tnmBm/Zz7drs
yDECmEfMcd/Yehnjq+YR5kWG+l8iZh1ihihhJBA0gjbgy/zsiIFvdC+/PwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOVCoHzOKU2JwOXITN2kc1lkkXkMMB8GA1UdIwQY
MBaAFNrldjH2CtsT8K42hnHOD4dC9Zd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnVWMk1mWUsyeFB3cmphR2NjNFBoMEwxbDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC8wZTgyNWEtNWJiNi00MzI3LTlhMGEt
NDM5ZjM2ZTE2NTNhLzEvMnVWMk1mWUsyeFB3cmphR2NjNFBoMEwxbDM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC8wZTgyNWEtNWJiNi00MzI3LTlhMGEtNDM5ZjM2ZTE2NTNh
LzEvMnVWMk1mWUsyeFB3cmphR2NjNFBoMEwxbDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADzMT4SAv
SooHcFEE36AyJ6GVQw7UuPT+lw4asWSNifBEoiFhcCBcYLk30qYj4YzFOqqgyhFi
2/o2GDTvKxaNjyU9cuGagHWYEVGtnWniNI5cW+MVdPxblB78Y7YxzACYfb1/xBQ+
KEzXkG0gUzxEgvu2LxAy4/JBU0fuMvzsWbm4OGPhYhxOi42yqfDwkjh1ssyPsG1d
42SWO1OV3oY83k26C55O25fzWk7pGZWkK8dxPttpGlc4lMLoL76B8+glxHgRAmVe
+yWmSsFvGylQLgyV19V/fMpdy9VJTAlLxClJNp6W0U32eI8WjitNKqMG1OC/sLv4
b8QzIvZNvebHDw==
-----END CERTIFICATE-----