Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft
File:                     9bMQ6dROhHDWzYAJWQZssA8pHvo.mft (raw, json)
Hash identifier:          76D6BZBBuaAcDC6EoiedX10Q1E0fN64NqOQv5vqiBgo=
Subject key identifier:   43:51:CD:22:56:00:69:8C:0D:2B:F3:0A:DD:11:33:4A:3D:D8:6E:76
Authority key identifier: F5:B3:10:E9:D4:4E:84:70:D6:CD:80:09:59:06:6C:B0:0F:29:1E:FA
Certificate issuer:       /CN=f5b310e9d44e8470d6cd800959066cb00f291efa
Certificate serial:       019E2F966B137BDF7B2CC5183682FA5F2F5D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9bMQ6dROhHDWzYAJWQZssA8pHvo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft
Manifest number:          1373
Signing time:             Sat 16 May 2026 07:00:47 +0000
Manifest this update:     Sat 16 May 2026 07:00:47 +0000
Manifest next update:     Sun 17 May 2026 07:00:47 +0000
Files and hashes:         1: 9bMQ6dROhHDWzYAJWQZssA8pHvo.crl (hash: pwNux8QPQW/IeHyYmn369NI18wrg1/aFiAXm7h5Llko=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9bMQ6dROhHDWzYAJWQZssA8pHvo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:00:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:96:6b:13:7b:df:7b:2c:c5:18:36:82:fa:5f:2f:5d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f5b310e9d44e8470d6cd800959066cb00f291efa
        Validity
            Not Before: May 16 07:00:47 2026 GMT
            Not After : May 17 07:00:47 2026 GMT
        Subject: CN=4351cd225600698c0d2bf30add11334a3dd86e76
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:19:e4:a3:54:f9:35:0f:b0:7c:cd:40:6a:b0:
                    d6:45:82:2c:8a:b6:8f:24:d1:89:81:d0:d5:b5:e2:
                    26:96:7c:33:35:ff:ee:d9:c0:fb:06:03:d0:40:f0:
                    79:60:da:0e:20:70:ce:13:40:e7:4c:4c:a5:4f:bc:
                    70:8d:80:1a:cf:22:46:2a:b6:a5:c4:ee:38:4b:1c:
                    90:52:60:c3:db:46:7d:80:cd:3d:6e:01:26:c9:fa:
                    a3:29:ed:e0:ae:5c:06:53:43:4d:fa:dd:ca:ff:1e:
                    19:5a:f8:fd:23:0d:c4:e6:69:34:b5:41:50:0d:2e:
                    ea:13:f1:c9:48:2f:9d:0f:56:aa:9f:22:72:ce:53:
                    bf:e9:7c:e3:aa:5d:95:17:84:d9:69:a9:31:56:a3:
                    55:f1:45:d9:0e:5c:89:a3:4c:96:d5:28:89:8e:e5:
                    df:cf:b4:2b:40:47:ba:ab:0a:82:a9:c4:b3:87:72:
                    35:a5:0c:75:33:bd:60:79:14:fd:8d:45:3e:02:b0:
                    12:c1:bf:1a:a4:a9:cf:ca:29:aa:9c:70:3c:a9:a5:
                    5e:a1:fe:c2:1f:ca:c6:f1:c5:9e:ac:3a:0d:fc:b3:
                    53:44:04:21:cd:d3:ec:4f:67:5e:91:12:f9:84:2b:
                    46:1f:bc:d1:6e:ba:a5:11:80:fa:fc:44:20:e4:4b:
                    d7:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:51:CD:22:56:00:69:8C:0D:2B:F3:0A:DD:11:33:4A:3D:D8:6E:76
            X509v3 Authority Key Identifier:
                keyid:F5:B3:10:E9:D4:4E:84:70:D6:CD:80:09:59:06:6C:B0:0F:29:1E:FA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9bMQ6dROhHDWzYAJWQZssA8pHvo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:1e:29:0b:02:87:0c:01:c5:a4:03:be:00:d2:1b:e8:61:73:
         87:c6:d6:de:4e:29:7a:09:92:2c:7a:5b:1e:4a:d9:ce:70:ed:
         7f:f4:b0:4b:68:e9:a2:6d:91:44:7e:aa:8c:43:c4:a5:c4:a9:
         fc:1a:67:79:f5:3a:01:b4:ed:ff:e1:99:08:b0:54:a5:5c:5e:
         8c:c0:e0:3a:9b:c9:09:a9:fd:2e:fc:24:3d:71:35:57:04:b1:
         22:75:45:bd:2c:33:41:0c:74:8e:1c:be:f2:82:4c:90:a7:5e:
         d7:a1:11:0d:66:7d:c7:5d:4c:99:2b:0c:43:0c:e8:9b:07:84:
         e5:01:d6:aa:f9:23:4c:85:2f:46:73:ed:91:2f:66:6f:ff:6d:
         2a:8b:3e:77:dc:4d:77:50:f2:2b:1e:f2:23:bc:8a:61:d5:87:
         3a:d9:8a:e1:8d:54:61:d1:f7:d7:84:25:24:2a:09:87:b7:30:
         93:b5:98:f1:ad:b3:c7:c0:1a:a9:95:81:d3:99:3d:3b:09:13:
         42:b0:d4:e4:b2:7b:8a:35:b6:7a:42:df:8b:04:0a:65:33:82:
         51:17:16:c1:08:d6:a5:41:c3:32:c0:10:bd:2e:c6:84:7a:e2:
         fd:23:df:44:bd:33:86:a2:b3:bf:f8:bd:0d:d2:29:e0:f1:b7:
         1a:33:6b:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----