Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/d808d8-03ed-44c4-9b1c-0182cb02c800/1/1OXVJHHqh0idSKBiCEem1VbxY9s.mft
File:                     1OXVJHHqh0idSKBiCEem1VbxY9s.mft (raw, json)
Hash identifier:          yOGnoYszwwL3u/WMhp/FN2nqqCQ10/5qbuswDLrAFt8=
Subject key identifier:   CA:72:2D:93:25:0F:9F:46:48:1E:A7:2B:F3:C1:77:0D:90:EF:EE:D0
Authority key identifier: D4:E5:D5:24:71:EA:87:48:9D:48:A0:62:08:47:A6:D5:56:F1:63:DB
Certificate issuer:       /CN=d4e5d52471ea87489d48a0620847a6d556f163db
Certificate serial:       019E30E0B00FB862E8139C745877E37B9770
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1OXVJHHqh0idSKBiCEem1VbxY9s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/eb/d808d8-03ed-44c4-9b1c-0182cb02c800/1/1OXVJHHqh0idSKBiCEem1VbxY9s.mft
Manifest number:          189E
Signing time:             Sat 16 May 2026 13:01:31 +0000
Manifest this update:     Sat 16 May 2026 13:01:31 +0000
Manifest next update:     Sun 17 May 2026 13:01:31 +0000
Files and hashes:         1: 1OXVJHHqh0idSKBiCEem1VbxY9s.crl (hash: T6fg68Ay9v9aOMk94Uwi8vB818+Qb+OdeNFUUo3yPQk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/eb/d808d8-03ed-44c4-9b1c-0182cb02c800/1/1OXVJHHqh0idSKBiCEem1VbxY9s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/eb/d808d8-03ed-44c4-9b1c-0182cb02c800/1/1OXVJHHqh0idSKBiCEem1VbxY9s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1OXVJHHqh0idSKBiCEem1VbxY9s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:e0:b0:0f:b8:62:e8:13:9c:74:58:77:e3:7b:97:70
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d4e5d52471ea87489d48a0620847a6d556f163db
        Validity
            Not Before: May 16 13:01:31 2026 GMT
            Not After : May 17 13:01:31 2026 GMT
        Subject: CN=ca722d93250f9f46481ea72bf3c1770d90efeed0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:54:6a:43:e8:b6:b3:c3:1b:41:4e:1c:55:35:
                    bd:2f:57:1c:3b:d2:8a:49:9f:6d:32:36:26:50:3d:
                    41:a0:d3:fb:bd:07:35:71:68:f9:16:e1:6e:c6:08:
                    eb:a2:df:dd:32:23:e2:93:28:bf:0d:2a:5f:42:a7:
                    50:59:64:7f:eb:1b:eb:93:c0:e0:3c:fb:19:f9:2e:
                    11:bf:78:32:07:e4:fe:a9:a9:ae:27:5e:6c:f6:dc:
                    ce:f4:d5:f9:bd:04:7d:8d:3d:2b:c7:81:d4:d8:8e:
                    cf:a0:4c:15:b3:e5:0f:d8:56:48:fc:e5:db:c0:82:
                    04:bf:b8:92:6a:5f:90:48:c1:75:8c:e2:db:91:13:
                    2b:d4:d1:eb:d6:1f:46:22:0b:d9:5f:dc:3d:5b:2e:
                    2d:b0:0f:8a:a9:0c:33:89:8a:2e:b9:25:11:c2:40:
                    c1:62:e2:07:b2:43:ba:0b:01:55:65:a5:c7:bb:65:
                    65:7b:2e:d1:74:10:25:4b:ad:b9:50:cd:dd:5c:28:
                    e4:a0:59:a5:45:ce:d1:1d:da:1b:d3:f5:79:a6:9f:
                    33:77:41:94:45:6f:e0:b6:18:d6:b0:d8:2d:f6:4b:
                    88:ea:05:6f:6d:61:95:c5:b4:ec:b5:1e:29:af:cd:
                    ce:8c:2f:90:00:85:a6:11:9c:21:d9:62:79:04:09:
                    a5:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CA:72:2D:93:25:0F:9F:46:48:1E:A7:2B:F3:C1:77:0D:90:EF:EE:D0
            X509v3 Authority Key Identifier:
                keyid:D4:E5:D5:24:71:EA:87:48:9D:48:A0:62:08:47:A6:D5:56:F1:63:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OXVJHHqh0idSKBiCEem1VbxY9s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d808d8-03ed-44c4-9b1c-0182cb02c800/1/1OXVJHHqh0idSKBiCEem1VbxY9s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d808d8-03ed-44c4-9b1c-0182cb02c800/1/1OXVJHHqh0idSKBiCEem1VbxY9s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:45:35:20:61:94:39:f3:3d:7e:ad:c7:79:84:3a:87:6e:36:
         4f:54:dc:39:56:d8:7f:75:fe:77:b2:86:ee:2c:c7:24:db:45:
         72:6d:b0:fd:31:1f:bc:8c:91:47:56:de:e9:44:46:4b:f4:3b:
         bd:52:0d:01:05:dc:46:c6:c2:8e:1c:73:82:c0:89:f9:96:de:
         3f:2b:58:4e:76:c9:ef:9b:b1:3e:b0:4e:fe:40:2f:14:35:ad:
         be:1b:98:f9:7f:04:f3:1b:fb:84:1f:ce:40:13:40:e3:35:19:
         4e:9b:5f:13:95:ef:5d:a5:41:af:e6:e7:0c:c7:50:cb:cd:88:
         8e:e7:7a:39:75:26:1a:79:b1:37:60:44:73:0f:23:b7:ef:66:
         7d:67:bf:d0:42:c1:27:3b:a4:77:bf:5d:e7:44:cb:ec:7c:ef:
         0b:7a:52:a4:bc:0b:6a:95:74:be:a3:c0:7e:42:d7:93:e0:12:
         6b:36:f4:9a:c6:15:04:0c:5d:88:c7:15:c0:ec:95:25:20:c8:
         c6:e0:79:ad:bb:8d:fb:af:dc:17:dd:e3:7e:15:b8:f9:8a:61:
         7b:6a:77:da:29:07:c6:36:7e:e5:a0:96:f0:d2:7c:14:0c:6a:
         8d:d7:56:a2:81:34:e5:84:80:35:a7:bd:7f:59:4d:30:bc:2a:
         4f:fe:fb:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4w4LAPuGLoE5x0WHfje5dwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ZTVkNTI0NzFlYTg3NDg5ZDQ4YTA2MjA4NDdhNmQ1NTZm
MTYzZGIwHhcNMjYwNTE2MTMwMTMxWhcNMjYwNTE3MTMwMTMxWjAzMTEwLwYDVQQD
EyhjYTcyMmQ5MzI1MGY5ZjQ2NDgxZWE3MmJmM2MxNzcwZDkwZWZlZWQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz1RqQ+i2s8MbQU4cVTW9L1ccO9KK
SZ9tMjYmUD1BoNP7vQc1cWj5FuFuxgjrot/dMiPikyi/DSpfQqdQWWR/6xvrk8Dg
PPsZ+S4Rv3gyB+T+qamuJ15s9tzO9NX5vQR9jT0rx4HU2I7PoEwVs+UP2FZI/OXb
wIIEv7iSal+QSMF1jOLbkRMr1NHr1h9GIgvZX9w9Wy4tsA+KqQwziYouuSURwkDB
YuIHskO6CwFVZaXHu2Vley7RdBAlS625UM3dXCjkoFmlRc7RHdob0/V5pp8zd0GU
RW/gthjWsNgt9kuI6gVvbWGVxbTstR4pr83OjC+QAIWmEZwh2WJ5BAmlswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMpyLZMlD59GSB6nK/PBdw2Q7+7QMB8GA1UdIwQY
MBaAFNTl1SRx6odInUigYghHptVW8WPbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMU9YVkpISHFoMGlkU0tCaUNFZW0xVmJ4WTlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9kODA4ZDgtMDNlZC00NGM0LTliMWMt
MDE4MmNiMDJjODAwLzEvMU9YVkpISHFoMGlkU0tCaUNFZW0xVmJ4WTlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9kODA4ZDgtMDNlZC00NGM0LTliMWMtMDE4MmNiMDJjODAw
LzEvMU9YVkpISHFoMGlkU0tCaUNFZW0xVmJ4WTlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnkU1IGGU
OfM9fq3HeYQ6h242T1TcOVbYf3X+d7KG7izHJNtFcm2w/TEfvIyRR1be6URGS/Q7
vVINAQXcRsbCjhxzgsCJ+ZbePytYTnbJ75uxPrBO/kAvFDWtvhuY+X8E8xv7hB/O
QBNA4zUZTptfE5XvXaVBr+bnDMdQy82Ijud6OXUmGnmxN2BEcw8jt+9mfWe/0ELB
Jzukd79d50TL7HzvC3pSpLwLapV0vqPAfkLXk+ASazb0msYVBAxdiMcVwOyVJSDI
xuB5rbuN+6/cF93jfhW4+Yphe2p32ikHxjZ+5aCW8NJ8FAxqjddWooE05YSANae9
f1lNMLwqT/77lQ==
-----END CERTIFICATE-----