Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.mft
File:                     4HDNq3OhLa82gGsOFgLI2vuQk7s.mft (raw, json)
Hash identifier:          gJmotyEOqqnE/6o/y+wEwQruxef6bY/o7DvP7Oh8z84=
Subject key identifier:   C3:4A:81:D3:63:33:C2:E0:5A:CA:C1:B8:49:08:36:C6:7F:B3:3B:DC
Authority key identifier: E0:70:CD:AB:73:A1:2D:AF:36:80:6B:0E:16:02:C8:DA:FB:90:93:BB
Certificate issuer:       /CN=e070cdab73a12daf36806b0e1602c8dafb9093bb
Certificate serial:       019E2F96DD88C5F7697ECAEFD7B85D3BF6F3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4HDNq3OhLa82gGsOFgLI2vuQk7s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.mft
Manifest number:          0E59
Signing time:             Sat 16 May 2026 07:01:16 +0000
Manifest this update:     Sat 16 May 2026 07:01:16 +0000
Manifest next update:     Sun 17 May 2026 07:01:16 +0000
Files and hashes:         1: 4HDNq3OhLa82gGsOFgLI2vuQk7s.crl (hash: ympzLNnSfnyEmEdkKn88RDtKrJwNSJWe6NWTz/xzQ+E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4HDNq3OhLa82gGsOFgLI2vuQk7s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:01:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:96:dd:88:c5:f7:69:7e:ca:ef:d7:b8:5d:3b:f6:f3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e070cdab73a12daf36806b0e1602c8dafb9093bb
        Validity
            Not Before: May 16 07:01:16 2026 GMT
            Not After : May 17 07:01:16 2026 GMT
        Subject: CN=c34a81d36333c2e05acac1b8490836c67fb33bdc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:18:3c:2f:67:eb:e6:50:26:32:28:3d:58:7a:
                    70:98:9f:3f:e5:3b:af:51:ea:d0:1e:6f:5f:82:0e:
                    d5:9c:62:f7:65:dd:85:3e:09:ec:15:b8:59:44:ea:
                    43:ad:25:ba:da:cf:59:7d:39:06:e9:dc:a8:ea:eb:
                    c4:18:b4:02:d3:87:77:57:08:db:4a:86:1b:55:cd:
                    61:d3:d0:d5:6f:1e:16:6b:f1:ae:27:99:ab:aa:b5:
                    33:c4:1a:54:eb:c8:b2:ba:16:ff:13:a1:c6:c1:09:
                    90:00:a5:71:1b:59:39:9e:47:99:f0:6b:fa:21:d7:
                    4d:88:0f:db:e1:91:29:50:7d:19:52:ba:b3:f7:55:
                    c7:63:1a:82:5d:07:d7:42:36:b9:1f:ee:19:28:31:
                    76:8e:22:33:d6:85:95:14:7a:e7:3b:54:46:a8:7f:
                    19:4e:2a:52:98:a0:eb:83:32:49:bb:5e:57:bb:37:
                    03:c1:ff:6d:79:c3:07:90:b3:f5:ad:a5:53:0c:d9:
                    e2:4e:01:2e:86:c4:2b:48:29:e1:37:40:b4:40:74:
                    fd:52:9b:35:34:17:f9:76:60:e9:f6:90:fd:dd:f1:
                    44:ea:3d:3d:eb:e8:8b:18:6c:3a:06:91:d7:0e:8c:
                    e5:5c:34:06:72:e5:80:4f:97:ca:4a:8f:ee:ac:c8:
                    d7:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C3:4A:81:D3:63:33:C2:E0:5A:CA:C1:B8:49:08:36:C6:7F:B3:3B:DC
            X509v3 Authority Key Identifier:
                keyid:E0:70:CD:AB:73:A1:2D:AF:36:80:6B:0E:16:02:C8:DA:FB:90:93:BB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4HDNq3OhLa82gGsOFgLI2vuQk7s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/8e01ca-2ccf-4912-914b-9168826cd355/1/4HDNq3OhLa82gGsOFgLI2vuQk7s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:94:96:12:b8:b1:2a:2b:c4:49:f1:20:47:90:75:50:44:1a:
         16:55:96:8c:e8:de:05:5f:d7:ed:c3:ad:4b:de:49:67:ac:1b:
         f3:4e:72:c6:dd:fa:64:96:36:09:9a:12:f9:b7:3f:6c:d7:5e:
         b5:e4:0b:4b:86:a5:86:a9:7e:68:85:93:6f:0a:a2:68:fe:68:
         f2:e4:8a:c9:51:70:bf:09:79:97:fd:5e:8a:55:3b:a3:68:9b:
         3e:6b:e5:71:36:fa:c0:fd:37:e5:da:91:ce:88:e0:e4:bc:16:
         76:e8:72:23:4d:15:45:98:f2:83:6f:fa:07:5c:7f:63:fb:a1:
         7b:91:6a:44:7d:26:07:14:03:bd:b2:cf:41:b1:b2:f1:18:f8:
         8b:c1:24:ad:63:6a:4f:7b:cf:12:a3:7e:b2:83:1d:d9:16:6e:
         0a:8b:ff:1e:23:07:67:bd:02:2f:64:f8:bf:8a:71:04:15:59:
         ee:c0:e7:74:c5:25:43:d3:e9:b5:8b:9b:a2:4d:e6:16:a2:e9:
         68:8a:81:a3:54:2a:1f:87:67:3b:55:a4:5c:c1:a7:04:30:22:
         df:c8:23:c3:47:05:d9:d6:66:39:00:74:c0:7c:14:3e:4a:eb:
         40:d2:4e:1f:23:83:21:60:57:7f:da:8a:d4:64:ae:72:fa:d6:
         b0:4e:36:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vlt2Ixfdpfsrv17hdO/bzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwNzBjZGFiNzNhMTJkYWYzNjgwNmIwZTE2MDJjOGRhZmI5
MDkzYmIwHhcNMjYwNTE2MDcwMTE2WhcNMjYwNTE3MDcwMTE2WjAzMTEwLwYDVQQD
EyhjMzRhODFkMzYzMzNjMmUwNWFjYWMxYjg0OTA4MzZjNjdmYjMzYmRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Bg8L2fr5lAmMig9WHpwmJ8/5Tuv
UerQHm9fgg7VnGL3Zd2FPgnsFbhZROpDrSW62s9ZfTkG6dyo6uvEGLQC04d3Vwjb
SoYbVc1h09DVbx4Wa/GuJ5mrqrUzxBpU68iyuhb/E6HGwQmQAKVxG1k5nkeZ8Gv6
IddNiA/b4ZEpUH0ZUrqz91XHYxqCXQfXQja5H+4ZKDF2jiIz1oWVFHrnO1RGqH8Z
TipSmKDrgzJJu15XuzcDwf9tecMHkLP1raVTDNniTgEuhsQrSCnhN0C0QHT9Ups1
NBf5dmDp9pD93fFE6j096+iLGGw6BpHXDozlXDQGcuWAT5fKSo/urMjXqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMNKgdNjM8LgWsrBuEkINsZ/szvcMB8GA1UdIwQY
MBaAFOBwzatzoS2vNoBrDhYCyNr7kJO7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEhETnEzT2hMYTgyZ0dzT0ZnTEkydnVRazdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84ZTAxY2EtMmNjZi00OTEyLTkxNGIt
OTE2ODgyNmNkMzU1LzEvNEhETnEzT2hMYTgyZ0dzT0ZnTEkydnVRazdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84ZTAxY2EtMmNjZi00OTEyLTkxNGItOTE2ODgyNmNkMzU1
LzEvNEhETnEzT2hMYTgyZ0dzT0ZnTEkydnVRazdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALZSWErix
KivESfEgR5B1UEQaFlWWjOjeBV/X7cOtS95JZ6wb805yxt36ZJY2CZoS+bc/bNde
teQLS4alhql+aIWTbwqiaP5o8uSKyVFwvwl5l/1eilU7o2ibPmvlcTb6wP035dqR
zojg5LwWduhyI00VRZjyg2/6B1x/Y/uhe5FqRH0mBxQDvbLPQbGy8Rj4i8EkrWNq
T3vPEqN+soMd2RZuCov/HiMHZ70CL2T4v4pxBBVZ7sDndMUlQ9PptYubok3mFqLp
aIqBo1QqH4dnO1WkXMGnBDAi38gjw0cF2dZmOQB0wHwUPkrrQNJOHyODIWBXf9qK
1GSucvrWsE42dQ==
-----END CERTIFICATE-----