Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
File:                     6kHoOY_3zvtSIWNusighJuv-O3g.mft (raw, json)
Hash identifier:          v32qJmlJKAnWUvysh+eKQCFtN7RmQctkIzKUqrCsR/8=
Subject key identifier:   C2:75:BA:D2:C5:5E:A1:A5:16:A0:5A:77:AA:D5:58:B6:C9:66:B8:20
Authority key identifier: EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78
Certificate issuer:       /CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
Certificate serial:       019F194320CE56BB5910A75758299F79B674
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
Manifest number:          05D7
Signing time:             Tue 30 Jun 2026 16:00:57 +0000
Manifest this update:     Tue 30 Jun 2026 16:00:57 +0000
Manifest next update:     Wed 01 Jul 2026 16:00:57 +0000
Files and hashes:         1: 6kHoOY_3zvtSIWNusighJuv-O3g.crl (hash: elj4BfWZw1NP8ibLqOkVxQS9Z4bELzTZkqwY7bE+CUQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:43:20:ce:56:bb:59:10:a7:57:58:29:9f:79:b6:74
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
        Validity
            Not Before: Jun 30 16:00:57 2026 GMT
            Not After : Jul  1 16:00:57 2026 GMT
        Subject: CN=c275bad2c55ea1a516a05a77aad558b6c966b820
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:c2:31:31:b7:09:3e:c1:7c:c7:a3:b6:cd:4e:
                    61:99:e6:c4:a7:bf:1c:28:79:f2:b1:ee:7c:4a:f2:
                    e9:a8:08:b3:2b:bf:56:a4:61:bb:89:8d:f3:7b:2f:
                    2f:85:63:93:2a:f8:0c:a0:6a:c5:79:97:79:3e:33:
                    47:93:91:56:7d:cb:98:49:c5:08:63:f5:7c:04:35:
                    17:fb:f8:87:2a:c7:20:7e:bf:1b:db:86:da:54:ea:
                    c6:9c:cb:4f:0b:e2:0b:dc:25:50:8a:23:3c:2c:a1:
                    5e:82:35:6d:2c:7f:03:32:23:55:cb:96:76:45:05:
                    d0:0a:9c:2b:f3:18:ee:a3:77:02:5a:88:70:e7:ef:
                    76:46:ff:bb:0e:66:13:19:1b:e0:f3:40:61:81:78:
                    75:51:84:11:4f:75:33:d2:60:af:68:f7:31:c2:d7:
                    f0:db:e3:9e:dd:04:0c:a6:bb:fb:be:79:15:94:d4:
                    05:97:0c:3f:dd:93:fd:e2:65:a9:ea:f4:69:99:40:
                    9b:19:87:c4:d7:f4:00:d3:01:e8:c2:42:49:41:f1:
                    4e:cb:85:6a:4d:5d:5a:02:fe:4c:71:d0:a1:d0:d2:
                    4e:dd:9e:af:8f:09:96:ae:7f:e2:87:7a:7f:68:32:
                    7c:16:da:94:1b:c7:aa:82:cd:bb:0c:74:b3:41:83:
                    10:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:75:BA:D2:C5:5E:A1:A5:16:A0:5A:77:AA:D5:58:B6:C9:66:B8:20
            X509v3 Authority Key Identifier:
                keyid:EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bd:70:d1:33:a8:37:90:8c:13:d7:35:50:d2:63:75:df:a8:c4:
         74:41:f5:0e:d0:2b:2a:4b:1b:3f:a0:a2:3e:77:27:17:7f:66:
         d5:06:75:a8:d0:b7:6a:61:ff:11:47:d2:56:43:48:ec:b7:5f:
         d8:78:45:71:d9:bf:54:f4:06:b9:68:3c:fb:79:8a:bb:d5:c2:
         3e:4f:fc:e7:74:f4:0f:9e:b4:20:68:05:f5:21:2d:ec:a9:2a:
         9d:df:a3:ed:97:b3:1e:d5:44:a2:15:f1:d2:a5:2b:a7:b0:42:
         82:36:f0:74:c3:8c:7c:5b:28:c4:c9:07:79:6f:ee:83:77:78:
         cf:22:da:f3:50:31:1d:14:e8:07:e9:68:14:96:30:72:85:5a:
         15:fa:58:a4:35:6e:2e:62:66:70:48:af:59:04:d9:53:4b:1c:
         8b:bf:dd:24:cf:dd:00:91:e2:1f:b2:c8:fd:6e:13:96:ac:c9:
         d2:31:18:7a:7d:e5:6b:fc:f5:0f:7c:d7:7e:8b:d7:6d:b3:4d:
         24:f7:e7:3e:4f:b9:06:8b:51:e3:10:ce:34:4e:41:ab:6a:b3:
         dd:37:c9:ed:c6:61:33:92:5f:22:32:fd:0f:b4:93:2e:c5:25:
         c8:ea:d0:dc:0d:76:f6:8e:f5:0f:ec:ff:e7:43:fc:f0:d2:9f:
         3f:c3:aa:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----