Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
File:                     9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft (raw, json)
Hash identifier:          T6CcNPk2/lIgSOzchGAjHqxJdpNJyfH/2t73o9rUR60=
Subject key identifier:   81:E3:32:73:6E:D2:67:8D:2E:B9:39:DE:95:FB:18:3C:55:E1:50:97
Authority key identifier: F6:56:FA:18:B1:19:C3:A4:9C:BB:CC:56:A6:04:57:43:9A:44:92:CE
Certificate issuer:       /CN=f656fa18b119c3a49cbbcc56a60457439a4492ce
Certificate serial:       019D38D33837B12739854063D1ADC93B4AC3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
Manifest number:          181B
Signing time:             Sun 29 Mar 2026 09:00:59 +0000
Manifest this update:     Sun 29 Mar 2026 09:00:59 +0000
Manifest next update:     Mon 30 Mar 2026 09:00:59 +0000
Files and hashes:         1: 9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl (hash: tOsISQ978bleAgMkC8J7kJF5TpmH6zTCw8ApWMhYlDk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:d3:38:37:b1:27:39:85:40:63:d1:ad:c9:3b:4a:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f656fa18b119c3a49cbbcc56a60457439a4492ce
        Validity
            Not Before: Mar 29 09:00:59 2026 GMT
            Not After : Mar 30 09:00:59 2026 GMT
        Subject: CN=81e332736ed2678d2eb939de95fb183c55e15097
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:e5:1d:f4:97:98:86:cc:56:cb:6e:d0:94:4a:
                    f5:c3:4c:ad:12:54:b5:fe:26:a4:39:2a:e6:dc:e4:
                    ba:2f:c3:ee:55:f3:4d:d0:6b:b3:95:bc:24:de:c2:
                    3f:31:11:d8:38:cd:09:a3:fc:ac:b2:5b:1c:5f:a9:
                    21:6d:d7:08:89:65:5f:b1:1e:51:b7:0c:3b:ba:8a:
                    b4:e0:ea:34:42:b5:d0:4d:6a:2b:b6:b1:95:30:2f:
                    8f:d2:ac:74:bf:27:18:00:4d:fa:c3:4f:df:66:66:
                    ce:6a:83:2b:ef:4c:34:12:0f:3c:3f:b9:3b:08:93:
                    7d:bd:6b:72:01:50:8a:fc:62:10:32:34:9e:99:ba:
                    de:ad:db:ef:6b:75:9e:d9:64:87:11:9f:34:e3:63:
                    a9:60:26:f3:37:dd:78:b1:15:5e:ac:33:7b:96:7f:
                    31:2f:df:4c:bf:f2:0a:ec:29:40:77:de:8d:a8:24:
                    5f:e2:46:76:a5:0b:a0:93:4e:a4:1c:d5:48:6c:ae:
                    ca:72:02:8b:3e:25:ce:65:22:b3:82:eb:9d:b2:ed:
                    04:43:a2:c1:41:3f:d3:25:86:59:1d:c0:4c:92:1a:
                    a2:3c:2f:a8:9f:6f:44:f3:57:50:13:65:ec:76:12:
                    50:8c:e8:ce:8f:72:65:c2:a1:1d:15:24:9f:af:f9:
                    27:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:E3:32:73:6E:D2:67:8D:2E:B9:39:DE:95:FB:18:3C:55:E1:50:97
            X509v3 Authority Key Identifier:
                keyid:F6:56:FA:18:B1:19:C3:A4:9C:BB:CC:56:A6:04:57:43:9A:44:92:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:4c:f9:f3:ea:f0:5b:47:c5:58:6d:81:a2:98:e6:f1:19:e2:
         82:a7:4e:de:e6:06:a6:cb:e4:c4:13:a9:a2:ee:35:12:97:53:
         c6:71:5d:40:57:40:8b:4f:e8:2a:49:13:d8:ef:bb:fb:34:2b:
         c4:5d:25:22:43:fc:7b:86:f3:59:96:2c:30:73:a8:9d:78:fc:
         8b:85:1e:cd:aa:16:67:9c:d6:56:1c:4a:10:a8:cd:5d:56:73:
         ff:72:ae:75:ef:ed:25:b8:07:57:5c:65:ec:18:6e:0a:6d:12:
         cb:e9:8f:0a:6d:a4:84:8f:00:b0:f5:99:9d:41:77:72:4a:ef:
         30:8d:f4:c2:7a:4e:7b:ed:28:75:3a:9f:72:d7:65:7d:01:e1:
         8c:2f:d2:59:1a:3c:f2:40:68:41:b4:ce:c5:40:c0:13:0a:61:
         63:53:d2:ae:55:5d:19:4a:81:6f:f5:c5:7d:e1:40:3a:2f:92:
         2b:46:ee:e5:01:af:9f:dc:1f:76:da:1b:1f:8c:a8:ba:4d:68:
         b5:3b:21:7a:03:e2:80:8d:26:0a:47:8f:48:55:e3:0a:ba:64:
         df:92:3e:a1:a7:50:5f:02:d7:68:3e:88:d8:b7:ab:2f:13:7f:
         13:b7:2d:fc:2f:5d:88:2a:b8:ff:e6:18:9e:83:ca:f1:f4:af:
         fb:45:c4:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----