Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft
File:                     CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft (raw, json)
Hash identifier:          9x9802XXWqpZZqin8k/5V+I7/xHp+8YueqJ7xJUIANQ=
Subject key identifier:   C9:44:B3:87:01:83:F4:ED:8A:E2:2C:58:83:DF:96:53:E1:DC:89:88
Authority key identifier: 08:D2:7F:DC:90:F8:0F:80:97:2C:12:5B:D4:1E:DB:0A:E8:33:4A:A0
Certificate issuer:       /CN=08d27fdc90f80f80972c125bd41edb0ae8334aa0
Certificate serial:       019E31852BD3AB0A634ED0109765CCCA86D0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft
Manifest number:          0DA9
Signing time:             Sat 16 May 2026 16:01:11 +0000
Manifest this update:     Sat 16 May 2026 16:01:11 +0000
Manifest next update:     Sun 17 May 2026 16:01:11 +0000
Files and hashes:         1: CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl (hash: +2qYibwZNLNPKwbPCySh2wa2vYPVKH9FjQ50OQvBTK8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:31:85:2b:d3:ab:0a:63:4e:d0:10:97:65:cc:ca:86:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08d27fdc90f80f80972c125bd41edb0ae8334aa0
        Validity
            Not Before: May 16 16:01:11 2026 GMT
            Not After : May 17 16:01:11 2026 GMT
        Subject: CN=c944b3870183f4ed8ae22c5883df9653e1dc8988
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:82:78:69:d0:6c:a6:14:41:16:84:c8:cb:7c:61:
                    e2:48:8c:ae:3b:f8:17:37:58:33:9b:60:d8:43:06:
                    e9:54:f5:b7:4a:51:31:54:0e:4c:cc:28:96:fc:e4:
                    2b:46:1b:7f:36:a1:d7:12:a2:5c:ee:ba:15:3e:c5:
                    40:af:dc:24:15:a3:ce:57:ac:7b:d6:31:48:67:a3:
                    a4:4f:e7:72:55:61:e9:4a:67:35:dd:f7:e2:24:32:
                    02:cb:bd:e8:65:22:eb:ea:f2:0d:bb:71:45:5f:8f:
                    03:7e:c2:68:df:a8:a1:f3:73:e2:84:a6:02:71:0f:
                    ed:27:2d:63:9c:24:05:d0:c3:3e:4b:26:ee:0d:5e:
                    d5:b9:15:30:9d:5d:57:a8:27:42:55:c0:32:96:5e:
                    88:0b:d5:2c:cb:ce:67:ce:13:75:e2:3f:d9:33:7c:
                    89:d3:22:9c:56:fd:c9:86:da:29:07:65:40:f2:67:
                    f1:05:e2:40:11:bf:9b:1b:0b:df:65:8f:26:a0:bc:
                    9c:6a:af:5c:13:93:99:e5:e0:15:3a:03:3b:d2:5f:
                    bb:ac:f8:c3:aa:f1:72:bf:b2:a4:16:65:86:55:db:
                    05:3a:3e:82:8f:a0:6e:0c:b4:1e:f8:4c:7f:84:b4:
                    91:f5:de:c3:23:2b:6a:7f:d0:d2:db:9d:53:3a:e9:
                    e2:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:44:B3:87:01:83:F4:ED:8A:E2:2C:58:83:DF:96:53:E1:DC:89:88
            X509v3 Authority Key Identifier:
                keyid:08:D2:7F:DC:90:F8:0F:80:97:2C:12:5B:D4:1E:DB:0A:E8:33:4A:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:ec:48:a9:dd:90:fc:74:86:ba:b3:54:98:1f:6b:f6:36:38:
         49:e2:b0:e1:95:d3:cb:66:eb:65:66:59:85:2c:2a:7c:92:44:
         42:c4:91:cf:a8:99:3c:f1:71:42:ad:82:a7:3f:45:8b:5a:fb:
         bf:10:51:d7:ab:29:66:24:e1:b4:84:90:f0:53:11:a2:96:12:
         e0:2e:7d:a2:ce:f8:64:4f:ff:3f:46:3c:d9:e6:98:d7:5e:80:
         e6:59:f3:01:93:bc:8c:4e:4b:95:8e:d8:f4:a3:c8:74:39:cd:
         4d:3e:d9:f6:6b:bb:10:fc:74:57:00:54:cb:13:e0:14:af:22:
         8a:95:e7:f4:1b:0d:9b:5a:bb:ce:ec:cd:cf:aa:05:07:05:b7:
         54:e2:a5:f8:3b:d0:e6:b9:e9:cb:d5:21:3c:15:e9:92:02:42:
         80:fb:d1:4a:bd:46:a3:5c:2e:e2:35:c2:cb:6e:a3:ef:de:92:
         38:84:9f:d8:02:73:1d:61:fc:57:de:d6:67:fb:37:a5:df:94:
         08:1f:f9:20:e9:84:bc:b9:26:f0:5e:de:ff:f2:c3:d8:f1:db:
         9a:4c:9c:98:ab:21:56:45:56:0b:a0:c7:32:d5:18:14:27:54:
         af:c1:70:76:22:e5:4a:6a:b9:26:8d:c9:69:1f:fe:40:8a:c7:
         d9:13:e6:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----