Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft
File:                     BsL3NfcUX3DScCYC7oyBVknrLkU.mft (raw, json)
Hash identifier:          N5sdfMLLX2ttg1G18/rEETeDZjWgpxNPFvjok6Vaa7k=
Subject key identifier:   D7:2B:17:AE:7E:E2:F4:97:CA:5C:CB:37:5B:60:67:BE:59:D6:23:D0
Authority key identifier: 06:C2:F7:35:F7:14:5F:70:D2:70:26:02:EE:8C:81:56:49:EB:2E:45
Certificate issuer:       /CN=06c2f735f7145f70d2702602ee8c815649eb2e45
Certificate serial:       019F1944426FEFB949B8A36096F2833FA868
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BsL3NfcUX3DScCYC7oyBVknrLkU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft
Manifest number:          13BC
Signing time:             Tue 30 Jun 2026 16:02:11 +0000
Manifest this update:     Tue 30 Jun 2026 16:02:11 +0000
Manifest next update:     Wed 01 Jul 2026 16:02:11 +0000
Files and hashes:         1: BsL3NfcUX3DScCYC7oyBVknrLkU.crl (hash: W8Qvea2TDmRe6LfYgDk6bLZHH2NT8GQeg9gRZg+ed+4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BsL3NfcUX3DScCYC7oyBVknrLkU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:44:42:6f:ef:b9:49:b8:a3:60:96:f2:83:3f:a8:68
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=06c2f735f7145f70d2702602ee8c815649eb2e45
        Validity
            Not Before: Jun 30 16:02:11 2026 GMT
            Not After : Jul  1 16:02:11 2026 GMT
        Subject: CN=d72b17ae7ee2f497ca5ccb375b6067be59d623d0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:eb:b5:b6:5b:6a:58:99:6d:d1:ac:08:1c:69:
                    dc:71:43:10:d1:43:85:60:d9:0d:5c:36:54:66:97:
                    0a:6e:9d:c7:a4:8e:69:65:c5:2c:8d:9c:51:19:b9:
                    34:ed:0c:fd:15:ac:af:82:98:09:b9:7a:a4:eb:99:
                    52:40:cb:aa:ad:bb:13:ab:74:02:f9:db:ba:82:28:
                    eb:f6:2c:7e:0e:55:e0:f9:86:be:98:59:13:07:dc:
                    5f:ac:4a:84:94:3b:c1:39:b7:69:20:ba:27:d1:f0:
                    b0:5d:db:63:23:d9:ad:c2:89:04:6c:61:51:f4:a7:
                    5f:61:dc:5a:8e:3b:8f:76:5f:28:21:73:49:47:51:
                    e7:a4:84:b5:64:ae:87:c8:cd:f3:0e:84:11:32:71:
                    a7:00:99:a5:c4:d4:fe:12:26:eb:4e:f9:73:2b:2a:
                    94:c4:8d:dc:1f:5a:84:b1:44:f4:45:f2:49:24:c2:
                    ae:c7:00:1e:97:65:19:fb:3d:be:0b:df:34:19:ec:
                    49:d5:05:48:e3:24:37:aa:07:ec:91:2c:ea:43:49:
                    d3:6c:6a:86:68:f4:c1:56:0e:79:e7:e2:8b:21:fb:
                    9c:fc:0f:06:6d:52:d8:c8:24:09:f1:c2:89:c2:48:
                    d3:34:af:cf:89:85:10:1f:fe:cf:78:a1:00:d1:bb:
                    31:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D7:2B:17:AE:7E:E2:F4:97:CA:5C:CB:37:5B:60:67:BE:59:D6:23:D0
            X509v3 Authority Key Identifier:
                keyid:06:C2:F7:35:F7:14:5F:70:D2:70:26:02:EE:8C:81:56:49:EB:2E:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsL3NfcUX3DScCYC7oyBVknrLkU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:51:10:05:59:ae:e1:b4:cd:c9:c9:5c:13:83:64:3e:e7:2c:
         dc:21:c6:f7:b6:cb:b8:b7:c3:83:60:59:cb:41:b8:40:39:27:
         1c:27:81:d0:d1:82:68:ad:79:34:76:3b:96:68:dd:84:d1:b4:
         d0:a4:be:e7:6c:a9:e3:dd:3c:57:fb:1c:29:c0:e0:60:cb:57:
         f6:55:b9:eb:0c:e7:27:ff:f2:0e:2d:6b:a9:1e:50:1e:ce:46:
         1d:ad:51:26:2d:29:dd:63:db:3d:2a:9f:69:9e:15:51:3f:ba:
         e7:c8:2b:62:53:bf:e2:12:41:b4:89:75:ce:e8:8f:38:57:28:
         4e:9c:da:fc:49:3b:38:5e:15:25:a7:f1:52:b6:5d:35:5a:3c:
         83:f1:bf:d1:b2:29:55:fb:d5:73:24:54:98:58:70:12:5b:9c:
         ab:31:34:7d:fc:5e:8e:4b:96:22:cc:25:d9:02:24:45:a3:ee:
         ee:34:77:52:16:ba:a8:05:15:fa:19:c8:42:56:09:d9:13:f7:
         1a:33:b3:07:97:6b:96:a2:f0:b3:8a:47:87:e5:8e:8e:7b:1c:
         7b:9a:49:82:7b:00:2c:1c:a6:16:25:03:65:72:90:cc:37:ac:
         57:e4:53:01:33:07:a9:64:b0:e5:8f:a4:c5:e4:04:78:ac:e0:
         1f:5b:3b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----