Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/15fb8a-9261-462d-a5ac-d5a1ea9edb08/1/0IpNevM5v1JVcjk3VdHPszzdta0.mft
File:                     0IpNevM5v1JVcjk3VdHPszzdta0.mft (raw, json)
Hash identifier:          FqLZmDffDuxT/s8aTOuWuJ2hzIE60svz2dVg9hrrPq0=
Subject key identifier:   41:3B:E3:CE:1A:26:63:FA:33:EA:9B:C8:8C:77:32:7E:BC:16:E0:7A
Authority key identifier: D0:8A:4D:7A:F3:39:BF:52:55:72:39:37:55:D1:CF:B3:3C:DD:B5:AD
Certificate issuer:       /CN=d08a4d7af339bf525572393755d1cfb33cddb5ad
Certificate serial:       019E30E03086C8D08D1BEA0496F1CFA995B9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0IpNevM5v1JVcjk3VdHPszzdta0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/15fb8a-9261-462d-a5ac-d5a1ea9edb08/1/0IpNevM5v1JVcjk3VdHPszzdta0.mft
Manifest number:          190C
Signing time:             Sat 16 May 2026 13:00:59 +0000
Manifest this update:     Sat 16 May 2026 13:00:59 +0000
Manifest next update:     Sun 17 May 2026 13:00:59 +0000
Files and hashes:         1: 0IpNevM5v1JVcjk3VdHPszzdta0.crl (hash: iJc9u8rRP3JmGNZCmAwGFsWr+JHfV5ggZzgvaohs0io=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/15fb8a-9261-462d-a5ac-d5a1ea9edb08/1/0IpNevM5v1JVcjk3VdHPszzdta0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/15fb8a-9261-462d-a5ac-d5a1ea9edb08/1/0IpNevM5v1JVcjk3VdHPszzdta0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0IpNevM5v1JVcjk3VdHPszzdta0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:e0:30:86:c8:d0:8d:1b:ea:04:96:f1:cf:a9:95:b9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d08a4d7af339bf525572393755d1cfb33cddb5ad
        Validity
            Not Before: May 16 13:00:59 2026 GMT
            Not After : May 17 13:00:59 2026 GMT
        Subject: CN=413be3ce1a2663fa33ea9bc88c77327ebc16e07a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f2:44:ef:7d:32:33:b2:65:45:8a:a8:48:cc:2a:
                    b3:5c:c9:f2:f9:62:b8:f5:c0:55:5b:cd:b9:b3:b3:
                    53:1f:77:50:4c:90:53:ee:5c:81:cb:65:08:f0:34:
                    2d:9a:a6:ad:21:f6:07:55:8b:ea:cd:e3:b6:7d:b2:
                    96:85:f3:a8:63:c7:1e:14:6a:aa:fa:f4:93:ce:4e:
                    e9:04:b4:f3:37:c2:93:f7:89:9b:d2:92:a0:a9:7b:
                    4b:7a:13:16:b2:3c:42:e1:62:5f:5f:0a:b2:3b:8a:
                    20:ea:ce:7d:c8:95:18:4a:e8:2f:b4:6e:cf:31:18:
                    2f:6f:29:3b:9d:8a:8f:0d:1c:94:ce:c3:04:2c:53:
                    3a:e0:18:34:7a:7e:36:47:d2:d2:70:db:dd:09:58:
                    d4:21:51:4d:32:1a:84:a3:b6:30:ca:26:c5:f4:c4:
                    75:36:51:1a:8a:e3:48:63:fb:8e:6b:21:b3:4a:ec:
                    f3:47:19:e1:1c:16:28:cd:32:26:01:d6:af:9b:97:
                    15:62:e5:98:1a:1e:66:83:2e:bb:c8:bb:c0:4f:a3:
                    66:a3:e9:93:e4:36:f0:e3:75:0d:2c:1f:d0:e8:e6:
                    42:f1:dd:8e:11:be:35:36:6a:a5:ee:68:06:40:73:
                    ff:ac:44:f6:25:af:56:06:3f:44:49:97:25:62:d5:
                    a1:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:3B:E3:CE:1A:26:63:FA:33:EA:9B:C8:8C:77:32:7E:BC:16:E0:7A
            X509v3 Authority Key Identifier:
                keyid:D0:8A:4D:7A:F3:39:BF:52:55:72:39:37:55:D1:CF:B3:3C:DD:B5:AD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0IpNevM5v1JVcjk3VdHPszzdta0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/15fb8a-9261-462d-a5ac-d5a1ea9edb08/1/0IpNevM5v1JVcjk3VdHPszzdta0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/15fb8a-9261-462d-a5ac-d5a1ea9edb08/1/0IpNevM5v1JVcjk3VdHPszzdta0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:65:e9:c5:c8:86:74:7e:63:c8:72:55:de:aa:e6:73:25:ae:
         7d:0f:e6:aa:fd:03:30:cc:ce:3a:5f:5c:25:24:88:f5:d3:cd:
         c0:ee:1c:7e:8d:5a:3b:e0:c0:20:0a:3e:07:b4:4e:c1:6c:d2:
         72:a7:99:ff:fd:20:bf:fe:3e:38:3c:1a:74:55:32:d7:28:a6:
         22:73:80:fc:23:18:41:1e:66:c7:7f:d2:a9:d0:5a:b7:dd:ef:
         8f:72:47:8b:4e:3a:2c:c3:8e:d4:50:ae:f0:3f:4f:ea:02:d6:
         6a:8e:78:08:c4:7b:f4:0e:1f:91:dc:19:1e:03:c4:b9:f3:c2:
         c0:18:00:32:bb:4f:80:d2:23:d3:2a:2c:81:3c:3a:c7:58:71:
         5e:19:f0:68:5b:b6:50:48:b9:ae:5e:8d:e0:97:06:8e:06:a4:
         cb:fc:1f:ed:85:66:48:b3:7d:4d:ec:7a:77:30:00:c0:4b:04:
         0f:9d:61:ca:32:ae:45:97:2e:df:9d:3d:88:f1:05:43:9f:79:
         e9:23:d0:d8:85:86:d5:a9:ca:0c:84:37:d7:fa:71:6b:0a:32:
         73:cc:7a:44:5f:1d:fe:52:1f:c2:41:b5:01:14:8e:82:3d:6d:
         2a:95:2d:3b:3d:7a:de:7e:ae:66:2f:63:00:c6:f2:d4:b4:52:
         90:44:04:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----