Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
File:                     TkMMADsADTVe0WnlXYzPOTg34go.mft (raw, json)
Hash identifier:          8ruQMvtJWOK6rPt7gFvUosLk5j2q5RMRm8I9ZAZhBNc=
Subject key identifier:   61:00:A9:7B:D1:B2:56:08:C4:1F:ED:67:28:2A:D5:F6:AA:EB:46:FD
Authority key identifier: 4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A
Certificate issuer:       /CN=4e430c003b000d355ed169e55d8ccf393837e20a
Certificate serial:       019D38D328DB68FB19E58AD7205DFC88897C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
Manifest number:          1013
Signing time:             Sun 29 Mar 2026 09:00:55 +0000
Manifest this update:     Sun 29 Mar 2026 09:00:55 +0000
Manifest next update:     Mon 30 Mar 2026 09:00:55 +0000
Files and hashes:         1: TkMMADsADTVe0WnlXYzPOTg34go.crl (hash: SHvxI6F6N90trXyo4Kwlc4KsO3fwojoKTEl5YJDRgOg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:d3:28:db:68:fb:19:e5:8a:d7:20:5d:fc:88:89:7c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e430c003b000d355ed169e55d8ccf393837e20a
        Validity
            Not Before: Mar 29 09:00:55 2026 GMT
            Not After : Mar 30 09:00:55 2026 GMT
        Subject: CN=6100a97bd1b25608c41fed67282ad5f6aaeb46fd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:85:98:f5:c2:51:f2:40:03:45:ba:ac:3b:e0:b0:
                    51:66:24:87:99:73:d8:bc:fe:cb:00:1c:89:65:73:
                    ee:58:41:d7:76:86:53:da:1c:64:e8:59:18:e7:77:
                    6f:b8:75:1c:1f:d1:fe:c9:0a:84:00:1b:5e:a8:41:
                    41:71:38:90:c6:9e:71:3e:3a:c6:41:5f:e0:80:97:
                    ea:95:0b:97:dc:62:37:ef:cf:c6:19:ee:73:72:46:
                    ce:2e:34:89:b2:10:45:7e:d6:a5:1b:9f:28:22:a3:
                    36:be:20:a5:c2:cc:42:f2:c6:0a:2a:72:8f:45:13:
                    9d:37:99:f4:7a:91:89:af:fd:27:ba:8d:38:f1:6b:
                    a6:11:71:2f:d4:7e:f9:c3:c8:bd:e8:4d:69:0e:d4:
                    8f:79:ad:fe:36:c1:0e:e0:eb:d5:1c:a9:df:8f:79:
                    93:78:bb:34:c1:ec:4b:c5:9a:7b:13:ca:21:e9:83:
                    3d:0c:e2:67:29:24:02:99:8c:6a:2c:6d:c4:79:fa:
                    70:19:c3:7d:ee:b3:a3:89:5f:5f:8c:39:27:91:c8:
                    a2:70:ba:cf:14:fe:44:b6:16:f0:15:ed:fe:51:f7:
                    66:32:52:52:e1:f5:c1:c1:86:7e:cf:81:85:a5:97:
                    ef:8f:38:37:63:8f:43:f7:b4:2f:e5:3f:97:c0:75:
                    2d:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:00:A9:7B:D1:B2:56:08:C4:1F:ED:67:28:2A:D5:F6:AA:EB:46:FD
            X509v3 Authority Key Identifier:
                keyid:4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:0c:de:e9:44:9d:2a:a2:e1:ec:b7:93:91:31:e6:45:5b:92:
         67:98:f4:f7:5a:c8:04:1e:ed:23:b8:8a:c7:07:54:e7:5c:a4:
         24:12:68:7b:e8:93:fa:c2:ca:ef:b6:52:4d:25:5d:87:79:64:
         6b:fa:a0:75:b4:8e:6b:e7:0c:84:a9:49:fe:4c:ce:21:8f:26:
         9a:9a:ea:69:b4:aa:8a:46:d1:13:8d:c4:0e:61:02:40:89:e2:
         f4:d3:d7:b1:b2:2a:9d:60:85:29:c3:92:26:43:71:ef:f3:2d:
         51:71:b6:59:4c:ee:22:2c:f9:a6:51:0c:f1:16:55:51:09:ca:
         d5:cf:95:aa:e7:d2:44:f7:99:65:bc:e3:52:b7:35:69:6f:4d:
         35:37:ab:b0:a7:8d:1f:d3:b0:0b:3c:d4:4c:75:43:0d:78:b7:
         4d:3d:07:1a:85:9c:c1:c4:0e:39:a6:89:a1:77:76:67:2c:52:
         10:2c:7c:cf:d4:fb:f5:be:f4:81:82:58:d3:01:95:59:b2:f3:
         bb:06:d0:e6:5c:a2:d3:80:b8:3e:f4:ec:f3:89:84:cc:b1:d9:
         47:95:a2:ba:77:b1:5c:4f:f2:ec:bd:75:ef:bf:51:bb:cd:83:
         90:08:e1:16:9e:33:db:2b:03:91:53:64:97:21:05:17:be:3c:
         24:54:d7:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----