Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
File:                     31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft (raw, json)
Hash identifier:          0Lz48qpZqlQAghdEpryf1C2qyUpKQdf6QBm6jK+qwRo=
Subject key identifier:   AB:02:36:7A:4E:5D:B1:4C:03:B9:70:0D:06:92:EC:C1:A0:42:47:F7
Authority key identifier: DF:52:52:6F:3D:28:27:65:32:5C:15:A6:E5:76:5D:7C:D7:F1:F8:9E
Certificate issuer:       /CN=df52526f3d282765325c15a6e5765d7cd7f1f89e
Certificate serial:       019E303B8F2B0CC09921813458D3F876B567
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
Manifest number:          1077
Signing time:             Sat 16 May 2026 10:01:09 +0000
Manifest this update:     Sat 16 May 2026 10:01:09 +0000
Manifest next update:     Sun 17 May 2026 10:01:09 +0000
Files and hashes:         1: 31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl (hash: a+TI7ZD1D4eV/g8kDe7wU46pWaB8Df1P9yyGYdMC9+M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 10:01:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:3b:8f:2b:0c:c0:99:21:81:34:58:d3:f8:76:b5:67
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df52526f3d282765325c15a6e5765d7cd7f1f89e
        Validity
            Not Before: May 16 10:01:09 2026 GMT
            Not After : May 17 10:01:09 2026 GMT
        Subject: CN=ab02367a4e5db14c03b9700d0692ecc1a04247f7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:74:4f:e0:e6:f7:c5:13:b3:39:c8:37:93:f8:
                    26:38:1a:0a:26:e9:eb:75:3e:1f:cf:3f:59:ee:66:
                    98:d7:e4:1a:7f:9a:03:dd:1e:13:0b:bd:f8:74:bf:
                    6d:a5:f7:21:cd:cc:7c:89:92:c4:bf:bf:60:7b:f2:
                    8b:49:1b:f9:cd:8e:b9:8f:4f:dd:83:a8:7f:d8:e5:
                    c4:be:10:85:e2:0b:66:48:42:3c:80:1f:8d:2d:d4:
                    d9:c5:d2:21:2a:6b:20:55:55:f1:5c:8c:b7:77:74:
                    9f:a7:21:fa:a7:42:94:9c:76:25:37:3f:3f:27:b1:
                    4f:19:1b:d2:4e:72:9e:3f:d7:5e:0a:d2:00:e4:b1:
                    13:e4:4e:96:87:dd:d8:68:47:e0:ac:c5:d4:eb:6c:
                    f3:a0:fb:aa:fd:a2:fd:4c:73:0d:f9:87:8c:94:dc:
                    df:ad:a1:e2:1e:f5:3a:fd:09:ed:e5:85:5e:4f:cd:
                    45:0d:39:b2:75:a3:be:42:6d:39:1a:ce:a8:cb:6a:
                    c8:7f:30:ea:59:6a:60:72:4f:78:5f:65:a1:67:d0:
                    c7:74:b7:ad:22:68:90:5c:6b:82:7a:3f:50:77:96:
                    c3:0c:49:e2:cb:97:24:f6:bf:2b:d7:db:7d:bf:b5:
                    02:da:d9:22:0a:6c:c3:02:9d:81:eb:84:e1:d5:91:
                    ee:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:02:36:7A:4E:5D:B1:4C:03:B9:70:0D:06:92:EC:C1:A0:42:47:F7
            X509v3 Authority Key Identifier:
                keyid:DF:52:52:6F:3D:28:27:65:32:5C:15:A6:E5:76:5D:7C:D7:F1:F8:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:f3:92:ff:04:be:47:c6:de:88:43:e9:7d:ba:7f:fd:ee:c8:
         67:e9:f3:6f:ee:cf:fb:e1:75:4f:4a:46:de:bd:98:a4:db:9a:
         8f:3d:e8:28:c1:76:c6:cc:ef:04:53:55:0f:88:25:db:f5:81:
         a6:be:4c:e5:e1:bb:fc:f3:db:37:a9:8e:e1:a5:51:10:1a:8f:
         c2:36:ef:5c:92:05:0f:f7:c0:10:d3:08:55:ca:80:e0:87:e1:
         3a:97:fa:4f:4f:6a:79:bc:d7:c3:9f:b3:72:c3:43:b6:e7:96:
         ba:db:49:9b:63:a3:76:77:72:55:42:da:6a:11:f2:2b:b6:0e:
         22:4b:22:62:63:2b:e7:17:2d:33:25:c4:3e:ea:94:d0:99:ff:
         b6:8e:9c:d3:2c:6c:45:99:24:12:03:ad:f7:5d:95:9e:dd:e4:
         64:1c:24:c8:81:73:34:c6:72:9b:17:ef:3f:88:c9:1a:c4:06:
         84:03:70:a9:a4:46:6f:eb:a4:92:12:b1:6e:43:14:39:76:07:
         dd:80:2a:90:68:28:81:82:d5:d7:a8:4c:36:3d:44:a0:8c:ec:
         4f:68:1f:31:9c:98:b3:7c:d4:2e:01:fb:35:ba:f9:83:14:73:
         27:83:4d:ba:80:14:50:d1:3e:55:a5:60:c4:2d:12:04:86:1e:
         67:ae:ef:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----