Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft
File:                     uzYogf_jYlMUAGCLYyi7Et-hYIE.mft (raw, json)
Hash identifier:          8XwzLm1Bcf72UXkQPWrFErPBTeheJZeds7I7lRG2BWs=
Subject key identifier:   08:64:27:7E:92:2A:41:58:E1:DC:92:0C:A3:6B:93:EF:86:39:99:A2
Authority key identifier: BB:36:28:81:FF:E3:62:53:14:00:60:8B:63:28:BB:12:DF:A1:60:81
Certificate issuer:       /CN=bb362881ffe362531400608b6328bb12dfa16081
Certificate serial:       019D3865BDEE4549DDCB5EC1261603E63145
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uzYogf_jYlMUAGCLYyi7Et-hYIE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft
Manifest number:          0F94
Signing time:             Sun 29 Mar 2026 07:01:24 +0000
Manifest this update:     Sun 29 Mar 2026 07:01:24 +0000
Manifest next update:     Mon 30 Mar 2026 07:01:24 +0000
Files and hashes:         1: uzYogf_jYlMUAGCLYyi7Et-hYIE.crl (hash: oxWFqr8Bp6OoGtwcX1HHMEKhUN13lg1nBfD5KczETLc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uzYogf_jYlMUAGCLYyi7Et-hYIE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:65:bd:ee:45:49:dd:cb:5e:c1:26:16:03:e6:31:45
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bb362881ffe362531400608b6328bb12dfa16081
        Validity
            Not Before: Mar 29 07:01:24 2026 GMT
            Not After : Mar 30 07:01:24 2026 GMT
        Subject: CN=0864277e922a4158e1dc920ca36b93ef863999a2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:51:4f:c2:0e:42:fd:1b:1a:e0:c5:26:2f:bd:
                    a3:50:8b:2b:8e:53:d0:ad:a5:08:cc:f4:47:6c:1a:
                    e4:08:5d:f1:7e:62:c9:c3:9b:74:31:3b:97:9c:58:
                    2c:8f:eb:1a:f7:25:de:f6:89:63:92:0e:08:5e:98:
                    66:e6:ca:bd:59:e6:c3:2e:14:78:fe:ca:30:64:7c:
                    9e:13:24:29:52:60:a9:bf:bf:b9:b0:75:7d:33:c2:
                    c2:15:ea:33:20:29:3a:dc:d6:e9:50:65:0c:77:e7:
                    7f:df:f3:90:98:fb:0a:a9:39:c4:11:a1:32:02:c7:
                    54:3d:4e:70:a5:f5:ea:9b:15:48:95:ab:37:b8:e6:
                    d5:e7:e0:11:3b:1f:9e:35:2a:51:31:28:2c:dc:36:
                    f9:b8:9f:7d:5f:c6:10:0a:7b:f5:d3:7b:05:88:3d:
                    d0:ab:14:4c:9e:01:8c:f4:37:64:f2:f9:64:bb:5a:
                    83:5e:4d:76:1c:59:2f:eb:33:5e:92:f8:be:b4:bd:
                    cb:41:05:72:d3:ef:18:3e:14:ef:47:51:c6:ab:67:
                    11:cb:86:63:c7:f4:fd:85:55:14:3c:31:e7:38:7e:
                    30:db:50:75:f8:09:cb:49:12:9b:e1:3b:c7:a4:15:
                    44:8d:1f:8a:79:28:3f:7c:03:ea:2b:87:3b:bf:10:
                    12:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                08:64:27:7E:92:2A:41:58:E1:DC:92:0C:A3:6B:93:EF:86:39:99:A2
            X509v3 Authority Key Identifier:
                keyid:BB:36:28:81:FF:E3:62:53:14:00:60:8B:63:28:BB:12:DF:A1:60:81

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uzYogf_jYlMUAGCLYyi7Et-hYIE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d4683e-15bf-428b-89b3-6d87d465b9e1/1/uzYogf_jYlMUAGCLYyi7Et-hYIE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:21:87:42:b8:34:ff:8c:71:f5:a0:ef:3c:da:c4:84:35:3c:
         43:e4:a0:f6:5b:0c:b0:00:42:a6:e6:64:07:83:f8:53:44:6b:
         af:a1:97:6d:29:0b:70:71:bf:19:41:22:64:bb:a8:c6:80:61:
         cd:07:0a:67:1e:b5:65:f0:d9:ff:8d:df:45:0c:a8:0e:a5:c0:
         b1:c1:10:fd:57:0f:15:ca:02:13:79:9c:33:41:c4:10:32:e3:
         ca:53:5d:73:d9:67:4b:12:66:e2:22:ff:fb:de:3e:12:5c:29:
         a1:90:7f:5e:2f:bc:e6:a5:2c:b6:2d:c0:ce:82:44:53:a7:08:
         9d:7c:4f:a2:d5:5d:31:0e:4f:6b:b8:a2:e0:e6:da:76:1a:a8:
         30:18:2d:09:37:5c:a0:c8:96:1f:8a:06:ce:38:09:a2:63:9f:
         47:af:c3:13:0a:67:38:31:68:aa:e9:4e:d4:4f:52:fc:48:6c:
         ad:19:38:cd:d6:13:d3:ae:79:75:f6:09:2f:68:49:af:06:e2:
         da:ff:32:28:f8:2c:f4:d8:2b:22:b2:85:38:67:eb:e8:40:dd:
         13:db:ca:f4:6a:8c:63:50:98:f6:20:43:ae:f8:cd:a4:6b:0b:
         03:13:43:03:d5:f7:68:3e:6b:78:6c:ad:0d:a2:dd:19:ee:17:
         d0:fb:a5:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----