Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft
File:                     98_k1DTTh2RAV9JB6sb2nT7oHBI.mft (raw, json)
Hash identifier:          PiDAor+Ch+KBxl0fkVpoY9KuMQqWovP8mr9xg5umzUs=
Subject key identifier:   70:60:92:4C:16:7F:DA:C7:FC:6D:F2:5C:0B:7E:8F:1D:6A:8A:05:74
Authority key identifier: F7:CF:E4:D4:34:D3:87:64:40:57:D2:41:EA:C6:F6:9D:3E:E8:1C:12
Certificate issuer:       /CN=f7cfe4d434d387644057d241eac6f69d3ee81c12
Certificate serial:       019E30727914FAD5EE73A9331923A5933219
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/98_k1DTTh2RAV9JB6sb2nT7oHBI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft
Manifest number:          0B35
Signing time:             Sat 16 May 2026 11:01:08 +0000
Manifest this update:     Sat 16 May 2026 11:01:08 +0000
Manifest next update:     Sun 17 May 2026 11:01:08 +0000
Files and hashes:         1: 98_k1DTTh2RAV9JB6sb2nT7oHBI.crl (hash: 2U7Ue2cao78tSiNrKkZ8UFyLotZUeKvqEj4SRTIl8FM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/98_k1DTTh2RAV9JB6sb2nT7oHBI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 11:01:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:72:79:14:fa:d5:ee:73:a9:33:19:23:a5:93:32:19
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f7cfe4d434d387644057d241eac6f69d3ee81c12
        Validity
            Not Before: May 16 11:01:08 2026 GMT
            Not After : May 17 11:01:08 2026 GMT
        Subject: CN=7060924c167fdac7fc6df25c0b7e8f1d6a8a0574
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:dd:f0:3c:bb:4e:d0:26:73:10:11:af:ad:91:
                    99:5a:18:04:2f:7a:c9:05:a8:c0:56:13:b3:99:cd:
                    7b:9f:ee:04:30:dc:bb:72:9e:d4:72:43:41:7d:bb:
                    5a:9a:fc:27:de:f2:29:7e:00:b3:3a:e5:d3:73:c0:
                    46:84:2d:e5:3e:bf:86:34:ce:2e:0c:c8:4e:57:40:
                    aa:02:40:73:f4:13:bd:d8:75:5b:49:bf:b5:eb:56:
                    b0:2a:78:b7:0a:82:4b:de:9c:2c:75:3f:32:59:e4:
                    cc:23:b4:dc:27:d9:c1:f4:75:52:8b:bc:e2:34:9c:
                    52:5a:59:42:bb:b1:fe:e5:f6:c6:4a:97:08:8e:1f:
                    bd:4a:5f:26:08:0a:0f:5d:f6:50:9f:54:58:1a:71:
                    12:e3:20:fc:cf:b5:80:c2:13:ee:a3:f2:3f:66:85:
                    46:fb:01:17:32:e7:40:be:fd:40:43:ed:cf:37:59:
                    64:d7:f5:33:a3:ec:a6:e4:18:61:f1:51:5b:0a:03:
                    f2:e2:ea:19:b0:78:f7:cd:a7:ca:3e:5e:c2:7d:ec:
                    c5:68:3d:6c:de:40:81:81:0d:56:c8:ba:97:8e:cc:
                    f0:77:96:c6:f3:7d:ce:13:80:28:4c:e8:5c:b1:92:
                    cc:08:6b:c6:69:cf:d7:68:37:5d:21:85:f2:54:4f:
                    72:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                70:60:92:4C:16:7F:DA:C7:FC:6D:F2:5C:0B:7E:8F:1D:6A:8A:05:74
            X509v3 Authority Key Identifier:
                keyid:F7:CF:E4:D4:34:D3:87:64:40:57:D2:41:EA:C6:F6:9D:3E:E8:1C:12

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98_k1DTTh2RAV9JB6sb2nT7oHBI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0c8008-8a52-4176-b693-c40544281eb0/1/98_k1DTTh2RAV9JB6sb2nT7oHBI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:ac:b9:7c:b9:48:2e:af:85:e6:69:93:f1:3d:76:3a:de:39:
         65:a6:4b:93:02:0b:af:81:c5:fe:b7:60:8c:84:c2:36:fd:1e:
         2f:31:7e:ae:4f:a2:d9:95:57:77:25:9b:13:1c:49:20:a2:c1:
         e6:e3:21:8f:f5:83:41:68:4d:e1:ef:fc:47:a4:f3:fa:7e:d5:
         de:28:b9:40:d8:be:81:42:51:7c:8a:53:52:bf:71:a3:b2:8d:
         f5:08:5e:0d:ab:ff:0d:95:90:d2:cd:8d:11:92:1a:c1:d1:dd:
         2a:0e:ec:64:84:bc:72:0d:5a:df:b4:3d:4b:24:fc:d2:b6:d0:
         d4:8b:33:63:61:0f:57:d7:ac:dd:61:d8:f4:00:d9:eb:20:db:
         ad:17:24:78:1a:77:40:e4:84:30:52:0b:69:89:4e:83:eb:16:
         d5:6d:06:b7:45:14:08:5d:91:b2:97:22:4a:50:9b:b9:bb:f3:
         28:00:26:d9:18:da:4a:91:5b:8f:bf:8e:2c:a6:79:03:51:18:
         cd:00:2f:71:c4:b6:e0:2e:15:2a:90:d1:13:07:c5:64:ce:06:
         af:ab:1a:92:d1:7c:6d:47:ba:d8:96:a9:12:f0:56:3a:e5:6c:
         b8:09:0b:d1:37:95:d8:16:f9:5d:59:02:80:ae:bc:60:4e:db:
         e9:94:72:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----