Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft
File:                     04G3AXBRkLnOnRsYRTU4TnHKMWU.mft (raw, json)
Hash identifier:          nqMdq3PR4qMr8J01YKFU2b8JzX95Y+qz/TEWv5g7VkU=
Subject key identifier:   1B:05:FA:A3:FF:31:73:60:1A:46:FB:59:A6:1D:4A:F4:D8:59:80:58
Authority key identifier: D3:81:B7:01:70:51:90:B9:CE:9D:1B:18:45:35:38:4E:71:CA:31:65
Certificate issuer:       /CN=d381b701705190b9ce9d1b184535384e71ca3165
Certificate serial:       019E31853463FD245F744BE531C11266B6FA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/04G3AXBRkLnOnRsYRTU4TnHKMWU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft
Manifest number:          190E
Signing time:             Sat 16 May 2026 16:01:13 +0000
Manifest this update:     Sat 16 May 2026 16:01:13 +0000
Manifest next update:     Sun 17 May 2026 16:01:13 +0000
Files and hashes:         1: 04G3AXBRkLnOnRsYRTU4TnHKMWU.crl (hash: CX1W63/B1PRi5vYOZdj6x/V0JlhMAZDXe5OmuJRCGys=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/04G3AXBRkLnOnRsYRTU4TnHKMWU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:31:85:34:63:fd:24:5f:74:4b:e5:31:c1:12:66:b6:fa
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d381b701705190b9ce9d1b184535384e71ca3165
        Validity
            Not Before: May 16 16:01:13 2026 GMT
            Not After : May 17 16:01:13 2026 GMT
        Subject: CN=1b05faa3ff3173601a46fb59a61d4af4d8598058
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:1b:b5:96:cf:5c:63:34:ba:2c:5e:df:a2:5d:
                    5a:d0:b8:a6:50:1c:12:c6:7f:2e:f0:9d:ff:87:2e:
                    11:d2:66:a8:ad:29:d4:5f:26:9f:0e:8e:22:5a:f3:
                    0a:c1:62:5d:63:a1:4e:53:aa:40:c6:f9:22:aa:fa:
                    c1:ae:ad:02:14:4f:bd:7f:c5:cd:bf:d4:47:7e:15:
                    e9:57:1b:0b:39:ae:d3:16:93:3c:73:fc:06:ad:39:
                    b8:72:28:45:24:67:64:b2:16:39:b0:4f:aa:da:c5:
                    c7:da:47:86:4d:f0:5f:f9:3e:69:20:41:42:8c:4a:
                    68:f0:b9:b3:df:b3:4d:34:c8:c8:b4:5e:74:70:de:
                    e5:c3:79:4f:7c:a9:e3:d1:77:e3:bd:e5:2c:22:71:
                    ca:50:ec:91:3f:ff:e0:3d:ec:16:1c:c2:05:51:37:
                    6f:84:7b:14:37:b1:02:03:9a:bb:5f:0c:dd:fe:06:
                    52:66:f6:d2:5d:d3:7f:79:51:84:f7:52:5f:70:d5:
                    16:89:f7:c4:6a:0c:8a:4d:c7:90:9d:82:a0:b3:d6:
                    9f:6d:7d:7c:79:fd:e0:5f:00:9d:67:5e:44:fd:74:
                    3e:1a:96:b2:f6:1e:cf:2b:6d:e4:c0:0b:62:74:91:
                    eb:e7:88:e8:7c:ce:1b:72:f6:24:4e:e8:e3:82:de:
                    80:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:05:FA:A3:FF:31:73:60:1A:46:FB:59:A6:1D:4A:F4:D8:59:80:58
            X509v3 Authority Key Identifier:
                keyid:D3:81:B7:01:70:51:90:B9:CE:9D:1B:18:45:35:38:4E:71:CA:31:65

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04G3AXBRkLnOnRsYRTU4TnHKMWU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/603c58-1002-4069-8917-7054eb2c4c00/1/04G3AXBRkLnOnRsYRTU4TnHKMWU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:a1:94:6d:e4:20:39:97:d0:da:51:d6:f3:c4:8a:7f:e2:ab:
         4f:a4:01:2e:ed:1f:60:fe:80:25:74:4d:f7:43:ce:47:b0:12:
         b9:ac:32:a0:ec:55:10:b3:eb:7c:74:46:92:2b:2e:66:b2:cb:
         87:4d:b6:21:69:b1:73:d7:18:6b:06:1c:73:3b:49:9a:cc:9c:
         46:7f:f0:bf:7b:57:8d:5e:99:5a:66:70:80:40:d3:b5:e9:d0:
         e2:64:13:46:8f:a5:b2:90:c3:2f:f1:2c:35:2b:cc:ae:5e:d3:
         91:e2:e0:5f:02:7a:e1:d6:86:f1:3c:fa:de:46:3c:fe:c2:05:
         ea:50:ef:f9:69:b4:fc:c5:e4:d8:7d:1b:21:16:3b:5e:02:6a:
         f1:85:bd:ea:7a:8a:2e:0f:06:23:87:ad:7d:04:f6:f3:83:a3:
         27:e1:3d:97:2b:30:5e:ce:87:8a:1d:44:6e:1d:3f:3f:70:9b:
         c8:c5:fd:83:31:fb:85:72:d5:4a:eb:39:7a:fc:5a:43:68:d5:
         dd:2e:69:fc:c6:b1:77:51:76:f3:21:bf:3e:68:82:5a:69:7d:
         01:5a:01:5d:e9:75:1e:2a:63:c7:b5:11:3f:cb:1a:a5:b4:8e:
         59:38:83:3a:ac:ee:53:cf:84:a8:07:47:db:61:38:1f:97:d3:
         24:75:af:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----