Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
File:                     5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft (raw, json)
Hash identifier:          Z0I0kVM1HSs7ZxIAwhSYPpQoFuFx6wmodddOiauSsEA=
Subject key identifier:   F5:6C:66:A7:94:1A:0F:FA:84:B1:05:0A:FF:EB:56:8A:5D:6B:7C:79
Authority key identifier: E7:33:B2:EA:B7:E2:34:68:7B:E9:7F:8C:35:D6:E6:CC:3E:2D:FC:BA
Certificate issuer:       /CN=e733b2eab7e234687be97f8c35d6e6cc3e2dfcba
Certificate serial:       019D3909ADE8A2BA0328E4E8975B10193F0B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
Manifest number:          188C
Signing time:             Sun 29 Mar 2026 10:00:28 +0000
Manifest this update:     Sun 29 Mar 2026 10:00:28 +0000
Manifest next update:     Mon 30 Mar 2026 10:00:28 +0000
Files and hashes:         1: 5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl (hash: kkngjlMN5p1ppbezqZqUmmxgHdTdXKMoh68ogoEFJi8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:39:09:ad:e8:a2:ba:03:28:e4:e8:97:5b:10:19:3f:0b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e733b2eab7e234687be97f8c35d6e6cc3e2dfcba
        Validity
            Not Before: Mar 29 10:00:28 2026 GMT
            Not After : Mar 30 10:00:28 2026 GMT
        Subject: CN=f56c66a7941a0ffa84b1050affeb568a5d6b7c79
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:6c:08:3f:5a:74:a0:05:05:46:b3:2c:d1:e1:
                    8a:d6:de:d8:de:02:00:1a:82:ca:66:f2:78:69:0a:
                    ef:7a:e9:af:4a:0b:99:a4:62:ad:7a:56:2f:16:d7:
                    48:94:93:d9:be:a6:f8:a3:32:3d:a1:be:c0:0b:7d:
                    20:9b:28:d4:e9:26:79:09:47:33:6f:c8:d0:c8:d2:
                    89:45:44:b5:a3:f5:4d:84:a3:36:f9:94:ef:0c:86:
                    d5:a9:4d:19:b6:23:2e:63:2e:23:92:e6:ea:1c:21:
                    a9:9e:62:57:ad:e1:d0:70:d5:f5:e5:aa:fa:f6:fb:
                    d1:07:44:69:bb:ee:a2:92:46:03:33:15:7f:0a:e8:
                    af:2d:bb:58:77:2e:e0:71:55:06:d7:a1:9a:5e:64:
                    f4:28:23:36:8e:57:2d:d0:20:48:64:2b:90:e2:2a:
                    e1:df:62:09:e7:23:5f:40:77:19:08:11:f2:81:19:
                    f1:8f:ce:98:3e:70:df:7c:4a:be:90:6c:0d:14:3c:
                    74:c6:3b:2b:10:da:b9:67:ff:2c:8d:b3:a6:7a:d7:
                    2a:65:ae:37:26:67:cb:a7:c9:69:5e:f4:10:50:84:
                    a4:94:06:f3:63:78:e1:d1:79:3c:dc:53:c7:48:2b:
                    4d:fd:82:a3:00:7e:ae:74:d7:74:03:d3:66:42:02:
                    2b:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:6C:66:A7:94:1A:0F:FA:84:B1:05:0A:FF:EB:56:8A:5D:6B:7C:79
            X509v3 Authority Key Identifier:
                keyid:E7:33:B2:EA:B7:E2:34:68:7B:E9:7F:8C:35:D6:E6:CC:3E:2D:FC:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:81:09:52:36:83:76:d3:0c:d9:46:95:44:35:6d:5f:05:4a:
         73:bf:f3:18:34:77:46:90:b8:2a:d3:fb:ca:f0:db:d2:9f:77:
         63:e4:ef:23:7a:cf:e8:7c:4b:87:3c:ec:42:e8:c9:ec:74:02:
         fb:ed:ff:e3:ea:e9:39:19:c7:cb:81:6d:f7:61:e3:0d:07:4b:
         37:91:ea:ee:d2:c0:0e:be:93:0f:31:a9:8b:6b:eb:de:af:f6:
         34:99:6d:1c:60:44:b1:ed:0c:04:7e:96:c5:5d:7d:c3:95:dc:
         8f:76:aa:5f:00:a4:4e:49:3c:a8:4e:81:7e:bd:9f:2d:17:d8:
         b1:f7:bd:8a:ac:7e:cf:9a:9e:60:2a:9b:c3:13:2b:8e:85:bd:
         51:36:92:15:5d:b8:30:3f:d1:8e:6e:6e:2e:a4:51:4e:3f:0f:
         73:10:7f:06:c1:b6:38:1c:8b:0f:7c:6c:8a:39:dd:2d:a6:7e:
         5b:a8:e8:52:35:2c:07:51:66:62:c3:cf:d3:e8:7d:63:b0:64:
         c5:7d:23:44:81:52:86:21:bb:e8:b4:fd:f7:d3:89:af:49:10:
         a2:a0:9d:23:47:60:a2:7f:3a:2f:9b:18:3b:e2:89:c7:46:43:
         a7:65:fa:ed:eb:44:8e:0e:94:ba:98:2b:53:ff:29:88:76:60:
         9f:9c:ce:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05Ca3ooroDKOTol1sQGT8LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3MzNiMmVhYjdlMjM0Njg3YmU5N2Y4YzM1ZDZlNmNjM2Uy
ZGZjYmEwHhcNMjYwMzI5MTAwMDI4WhcNMjYwMzMwMTAwMDI4WjAzMTEwLwYDVQQD
EyhmNTZjNjZhNzk0MWEwZmZhODRiMTA1MGFmZmViNTY4YTVkNmI3Yzc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0WwIP1p0oAUFRrMs0eGK1t7Y3gIA
GoLKZvJ4aQrveumvSguZpGKtelYvFtdIlJPZvqb4ozI9ob7AC30gmyjU6SZ5CUcz
b8jQyNKJRUS1o/VNhKM2+ZTvDIbVqU0ZtiMuYy4jkubqHCGpnmJXreHQcNX15ar6
9vvRB0Rpu+6ikkYDMxV/CuivLbtYdy7gcVUG16GaXmT0KCM2jlct0CBIZCuQ4irh
32IJ5yNfQHcZCBHygRnxj86YPnDffEq+kGwNFDx0xjsrENq5Z/8sjbOmetcqZa43
JmfLp8lpXvQQUISklAbzY3jh0Xk83FPHSCtN/YKjAH6udNd0A9NmQgIrjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPVsZqeUGg/6hLEFCv/rVopda3x5MB8GA1UdIwQY
MBaAFOczsuq34jRoe+l/jDXW5sw+Lfy6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXpPeTZyZmlOR2g3NlgtTU5kYm16RDR0X0xvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS85MzYwZjUtMWRlYi00YjQzLWEzMmYt
YWM0NGJjNTY5YTc4LzEvNXpPeTZyZmlOR2g3NlgtTU5kYm16RDR0X0xvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS85MzYwZjUtMWRlYi00YjQzLWEzMmYtYWM0NGJjNTY5YTc4
LzEvNXpPeTZyZmlOR2g3NlgtTU5kYm16RDR0X0xvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdYEJUjaD
dtMM2UaVRDVtXwVKc7/zGDR3RpC4KtP7yvDb0p93Y+TvI3rP6HxLhzzsQujJ7HQC
++3/4+rpORnHy4Ft92HjDQdLN5Hq7tLADr6TDzGpi2vr3q/2NJltHGBEse0MBH6W
xV19w5Xcj3aqXwCkTkk8qE6Bfr2fLRfYsfe9iqx+z5qeYCqbwxMrjoW9UTaSFV24
MD/Rjm5uLqRRTj8PcxB/BsG2OByLD3xsijndLaZ+W6joUjUsB1FmYsPP0+h9Y7Bk
xX0jRIFShiG76LT999OJr0kQoqCdI0dgon86L5sYO+KJx0ZDp2X67etEjg6Uupgr
U/8piHZgn5zOkA==
-----END CERTIFICATE-----