Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.mft
File:                     4PcIYcfPbv530i_HBJvpbGdopQA.mft (raw, json)
Hash identifier:          n6iIum0T2rW1QfjpUb859z8bo2jzA738Pl+JyQyvQH0=
Subject key identifier:   4F:68:DA:93:48:73:79:00:48:E1:AA:25:AA:AD:DC:1A:5B:84:E5:E1
Authority key identifier: E0:F7:08:61:C7:CF:6E:FE:77:D2:2F:C7:04:9B:E9:6C:67:68:A5:00
Certificate issuer:       /CN=e0f70861c7cf6efe77d22fc7049be96c6768a500
Certificate serial:       019E30E02F5328F7911C9CEAE482BD082411
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4PcIYcfPbv530i_HBJvpbGdopQA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.mft
Manifest number:          08D3
Signing time:             Sat 16 May 2026 13:00:58 +0000
Manifest this update:     Sat 16 May 2026 13:00:58 +0000
Manifest next update:     Sun 17 May 2026 13:00:58 +0000
Files and hashes:         1: 4PcIYcfPbv530i_HBJvpbGdopQA.crl (hash: 5hh0oty6tWD1HsrHWQZynGpffpNc03nw5hc07IGv+iE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4PcIYcfPbv530i_HBJvpbGdopQA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 05:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:e0:2f:53:28:f7:91:1c:9c:ea:e4:82:bd:08:24:11
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e0f70861c7cf6efe77d22fc7049be96c6768a500
        Validity
            Not Before: May 16 13:00:58 2026 GMT
            Not After : May 17 13:00:58 2026 GMT
        Subject: CN=4f68da934873790048e1aa25aaaddc1a5b84e5e1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:0b:c5:64:f1:7f:a9:50:ed:57:1a:cd:5a:13:
                    68:35:18:69:b6:6b:32:67:37:59:46:38:05:79:98:
                    c0:c8:c1:fd:9a:f3:5e:32:78:d2:5b:ff:9a:71:1b:
                    b6:ef:65:30:00:40:45:1c:aa:52:31:09:ff:d8:19:
                    03:e9:3f:5e:90:9f:44:80:2f:be:90:fd:62:f2:12:
                    8d:b8:fb:27:1f:d8:c6:0d:32:e5:73:9e:0d:6a:be:
                    19:e6:da:34:7a:0e:de:a1:fa:a4:0b:b1:e4:cd:8a:
                    e7:20:f5:a3:2d:76:e8:2f:c8:27:fe:6b:87:d7:a5:
                    91:8c:fd:05:c3:70:c3:2d:0c:0e:87:ea:33:30:29:
                    51:f7:67:5a:c1:75:aa:4f:57:f4:75:77:16:73:df:
                    ee:a5:a7:f3:77:22:05:e0:3f:a1:da:78:b2:37:60:
                    68:a2:f2:61:65:fc:b9:9e:97:34:2c:62:70:e4:f3:
                    73:ec:5d:31:c4:3b:f4:81:ac:82:a3:1c:f9:25:2b:
                    3e:ad:11:e4:f5:f9:2a:d2:a3:ed:da:85:f2:fe:68:
                    a0:67:44:b4:10:1b:53:33:74:46:79:91:2a:1f:7d:
                    63:d7:5b:0f:38:fa:d3:6e:60:f9:6d:9c:2c:cc:a6:
                    82:cc:b8:6c:eb:5c:08:57:7d:2a:5f:0e:55:30:f5:
                    b8:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4F:68:DA:93:48:73:79:00:48:E1:AA:25:AA:AD:DC:1A:5B:84:E5:E1
            X509v3 Authority Key Identifier:
                keyid:E0:F7:08:61:C7:CF:6E:FE:77:D2:2F:C7:04:9B:E9:6C:67:68:A5:00

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4PcIYcfPbv530i_HBJvpbGdopQA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:4f:5f:e1:e2:40:6e:ab:f5:b8:1e:30:3b:0b:70:27:f3:5c:
         9b:60:62:f8:14:0d:22:7e:90:6b:59:0a:34:70:3c:22:ca:26:
         a9:e0:1a:5b:9e:90:e6:5b:34:cd:45:dd:85:dd:28:69:97:b4:
         ce:03:46:a9:5b:31:04:86:e4:16:cc:63:9b:e6:a6:94:be:f2:
         95:81:05:47:16:08:cd:b5:f6:3c:77:6d:53:f2:bd:c0:9c:07:
         fa:c4:c3:c3:e9:1e:bb:10:f0:58:b6:fd:64:80:f7:23:49:ba:
         b9:fc:9c:d7:89:84:81:68:e8:dd:e1:00:5d:52:0e:1c:0f:7e:
         8c:16:91:d1:57:e9:1e:e3:5d:2c:72:a8:08:bd:68:25:f9:6c:
         a1:78:b8:45:73:4c:c2:92:bd:91:46:74:e8:16:8b:c0:12:c2:
         41:21:c6:f3:21:8a:5d:d8:e2:31:d7:85:ad:f0:1d:3c:00:37:
         09:87:39:5e:8f:24:6f:12:b2:35:48:72:74:82:ea:6a:af:72:
         0d:a7:64:65:0d:97:63:69:e9:f5:34:70:ab:a6:6c:88:06:72:
         ee:e1:21:93:53:80:f0:fe:a1:ab:7b:c1:cb:26:02:6e:70:92:
         a5:3f:a6:5e:e8:a0:23:7b:97:19:64:88:1e:7a:9c:28:ff:99:
         d8:a8:09:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----