Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
File:                     eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft (raw, json)
Hash identifier:          4lOytH2/ot4B3SIF6v4v+2Mi0KZMw9WCeADBdBeo3kc=
Subject key identifier:   F8:FB:FB:17:D3:D7:71:39:99:F7:D6:52:C4:CA:9A:18:22:04:78:A2
Authority key identifier: 78:59:66:9C:2B:7C:0B:25:C0:7E:79:32:B8:A1:F9:8B:0B:BE:DC:4C
Certificate issuer:       /CN=7859669c2b7c0b25c07e7932b8a1f98b0bbedc4c
Certificate serial:       019D38662D87B159AEE60460450069D91F09
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
Manifest number:          188D
Signing time:             Sun 29 Mar 2026 07:01:53 +0000
Manifest this update:     Sun 29 Mar 2026 07:01:53 +0000
Manifest next update:     Mon 30 Mar 2026 07:01:53 +0000
Files and hashes:         1: eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl (hash: cyFzpdsROcRzgxEsSaSDFqXcLQF3tWpf4dsAUzdeQGg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:66:2d:87:b1:59:ae:e6:04:60:45:00:69:d9:1f:09
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7859669c2b7c0b25c07e7932b8a1f98b0bbedc4c
        Validity
            Not Before: Mar 29 07:01:53 2026 GMT
            Not After : Mar 30 07:01:53 2026 GMT
        Subject: CN=f8fbfb17d3d7713999f7d652c4ca9a18220478a2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:2a:ee:1e:82:e8:dc:3f:a2:92:5b:b8:48:7b:
                    30:65:ab:d7:5c:6f:ee:47:ce:46:ee:ff:09:94:91:
                    05:9d:b6:3a:0b:ff:1c:4e:ff:52:dd:0a:2b:fe:78:
                    7d:83:00:39:54:62:58:bc:d0:ef:97:b2:d3:f3:7a:
                    bf:90:a7:0f:3d:97:9a:1b:a3:bc:57:e1:5b:51:f8:
                    f7:ea:60:ba:bb:52:d0:5d:54:12:de:13:42:12:b7:
                    cd:7d:85:bc:60:89:52:1f:29:6f:65:7d:b4:dc:3d:
                    dd:3e:61:a9:5a:99:cb:07:b4:2d:a5:0b:92:72:4a:
                    69:f0:a7:98:56:4a:cc:ac:74:73:0e:ab:d2:02:0a:
                    a8:8f:a2:ec:35:9d:07:7c:0d:2e:1b:9b:35:26:66:
                    51:59:b0:ea:44:dd:70:4f:1b:3d:ca:ef:c2:b6:b0:
                    b7:7e:ee:bd:6e:8e:7e:54:a1:8c:b1:27:e2:c2:3f:
                    65:0f:7b:fa:a6:66:70:41:05:2c:3c:9c:e7:36:dd:
                    37:8e:89:1b:d0:b1:cd:89:e3:25:82:27:27:c3:16:
                    2b:ed:4e:7f:ad:58:af:65:19:0e:3e:c1:5f:41:6a:
                    09:f7:b9:06:61:49:cb:9e:ca:97:fe:39:ef:c4:29:
                    58:d7:1d:3e:1a:7e:07:27:21:8a:3f:3d:86:44:fe:
                    45:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F8:FB:FB:17:D3:D7:71:39:99:F7:D6:52:C4:CA:9A:18:22:04:78:A2
            X509v3 Authority Key Identifier:
                keyid:78:59:66:9C:2B:7C:0B:25:C0:7E:79:32:B8:A1:F9:8B:0B:BE:DC:4C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b4:83:74:d3:15:d4:b1:cb:38:4a:d8:25:ed:77:28:83:9c:f6:
         f4:b8:9e:2f:3d:88:cb:2f:8f:95:6c:e7:94:b1:0c:f2:c4:a6:
         2c:36:b7:ea:4b:2e:92:a6:58:33:02:1b:31:f5:65:5e:6f:41:
         4d:4c:2b:8c:8d:d6:ed:95:98:af:8b:d5:23:b1:16:34:51:2a:
         7f:71:b0:0d:c6:31:bd:29:09:79:fe:64:f2:8f:e7:86:f0:e8:
         39:6a:5c:16:a7:19:3c:64:07:ac:40:61:11:c2:33:5e:20:3f:
         69:54:3c:3b:3e:bb:19:67:d1:b9:d0:9e:01:29:44:2a:a0:c0:
         73:aa:29:11:c4:6f:d0:b6:ac:aa:6f:bc:74:58:06:b9:66:15:
         da:19:22:cc:e7:4a:6b:4a:64:6f:e8:c9:31:37:3b:61:78:75:
         75:e7:72:6b:53:84:85:62:24:29:6f:44:74:22:cd:b2:ea:c5:
         79:76:0b:28:3f:87:48:81:17:9f:f9:7e:a8:cb:0e:1c:5e:ca:
         e2:3f:82:30:4b:8e:1a:7c:4e:78:c6:25:55:43:e1:d4:92:59:
         04:bb:46:48:33:55:cc:71:0a:68:c0:f4:37:07:9c:52:41:b9:
         37:03:32:ce:0e:db:bc:df:22:b1:67:cd:26:fc:bc:48:e0:ef:
         58:75:8f:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04Zi2HsVmu5gRgRQBp2R8JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4NTk2NjljMmI3YzBiMjVjMDdlNzkzMmI4YTFmOThiMGJi
ZWRjNGMwHhcNMjYwMzI5MDcwMTUzWhcNMjYwMzMwMDcwMTUzWjAzMTEwLwYDVQQD
EyhmOGZiZmIxN2QzZDc3MTM5OTlmN2Q2NTJjNGNhOWExODIyMDQ3OGEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyiruHoLo3D+iklu4SHswZavXXG/u
R85G7v8JlJEFnbY6C/8cTv9S3Qor/nh9gwA5VGJYvNDvl7LT83q/kKcPPZeaG6O8
V+FbUfj36mC6u1LQXVQS3hNCErfNfYW8YIlSHylvZX203D3dPmGpWpnLB7QtpQuS
ckpp8KeYVkrMrHRzDqvSAgqoj6LsNZ0HfA0uG5s1JmZRWbDqRN1wTxs9yu/CtrC3
fu69bo5+VKGMsSfiwj9lD3v6pmZwQQUsPJznNt03jokb0LHNieMlgicnwxYr7U5/
rVivZRkOPsFfQWoJ97kGYUnLnsqX/jnvxClY1x0+Gn4HJyGKPz2GRP5FbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPj7+xfT13E5mffWUsTKmhgiBHiiMB8GA1UdIwQY
MBaAFHhZZpwrfAslwH55Mrih+YsLvtxMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUZsbW5DdDhDeVhBZm5reXVLSDVpd3UtM0V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS80YjU0OTUtMTA3Mi00ZWYzLTg2Njkt
ZmMzNTU5Njk2MjQ2LzEvZUZsbW5DdDhDeVhBZm5reXVLSDVpd3UtM0V3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS80YjU0OTUtMTA3Mi00ZWYzLTg2NjktZmMzNTU5Njk2MjQ2
LzEvZUZsbW5DdDhDeVhBZm5reXVLSDVpd3UtM0V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtIN00xXU
scs4Stgl7Xcog5z29LieLz2Iyy+PlWznlLEM8sSmLDa36ksukqZYMwIbMfVlXm9B
TUwrjI3W7ZWYr4vVI7EWNFEqf3GwDcYxvSkJef5k8o/nhvDoOWpcFqcZPGQHrEBh
EcIzXiA/aVQ8Oz67GWfRudCeASlEKqDAc6opEcRv0Lasqm+8dFgGuWYV2hkizOdK
a0pkb+jJMTc7YXh1dedya1OEhWIkKW9EdCLNsurFeXYLKD+HSIEXn/l+qMsOHF7K
4j+CMEuOGnxOeMYlVUPh1JJZBLtGSDNVzHEKaMD0NwecUkG5NwMyzg7bvN8isWfN
Jvy8SODvWHWPjg==
-----END CERTIFICATE-----