Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
File:                     yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft (raw, json)
Hash identifier:          pkGcgoc3iPxTnsh+TgD5bNi/PA31+qgwleX82lH4ork=
Subject key identifier:   F2:5F:8B:54:78:D0:FA:FA:3F:F8:FE:95:FF:99:28:6B:7A:2F:0A:56
Authority key identifier: CA:18:3A:66:91:30:9A:79:D6:E6:60:5B:0D:5C:11:E3:FF:7E:91:94
Certificate issuer:       /CN=ca183a6691309a79d6e6605b0d5c11e3ff7e9194
Certificate serial:       019D375217388A493DA8CEC4C4B67CD5B535
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
Manifest number:          181D
Signing time:             Sun 29 Mar 2026 02:00:19 +0000
Manifest this update:     Sun 29 Mar 2026 02:00:19 +0000
Manifest next update:     Mon 30 Mar 2026 02:00:19 +0000
Files and hashes:         1: yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.crl (hash: vTnAIRCAZ3Gffpe5WQNa6poB6s2umNb/UrhEi6EhUIk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 02:00:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:37:52:17:38:8a:49:3d:a8:ce:c4:c4:b6:7c:d5:b5:35
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ca183a6691309a79d6e6605b0d5c11e3ff7e9194
        Validity
            Not Before: Mar 29 02:00:19 2026 GMT
            Not After : Mar 30 02:00:19 2026 GMT
        Subject: CN=f25f8b5478d0fafa3ff8fe95ff99286b7a2f0a56
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:2f:14:75:0b:4c:b0:10:cd:22:d3:b9:47:05:
                    51:12:30:f0:38:84:14:4e:99:02:31:a1:c9:0d:c5:
                    17:c3:40:84:10:fd:2a:26:2b:16:c7:f9:47:ad:98:
                    08:de:59:8a:6e:7c:91:f0:0b:72:0c:df:81:52:90:
                    2c:c9:35:81:95:10:fa:79:82:7d:e1:b8:b1:32:91:
                    78:b3:b2:bb:a3:6d:2f:54:80:cd:33:f4:8c:d9:a9:
                    02:8c:e9:ad:41:0b:f8:a9:59:58:de:25:d5:bc:49:
                    f7:d8:22:ab:de:7a:54:6f:ec:3b:64:1f:73:1d:08:
                    23:68:a1:a5:f9:b8:7f:7a:e9:f6:13:67:64:57:c6:
                    80:5e:34:3b:b2:fd:bf:fa:50:09:75:90:99:8e:e0:
                    cb:ae:38:ba:28:2a:05:3c:f0:07:a2:4e:68:e8:2d:
                    63:b5:47:68:e0:68:d6:c5:e1:47:e6:75:c5:a4:79:
                    bf:53:e0:f9:6a:68:05:bb:0e:84:6b:45:e6:49:6d:
                    c9:4d:fe:d9:59:79:db:d3:26:db:ab:7d:ee:14:fa:
                    4f:49:02:5d:13:9d:b6:c1:a9:f7:11:2a:64:13:2b:
                    d4:2a:c4:49:bc:a5:6a:19:68:f1:a0:c8:22:1c:52:
                    c3:13:4e:43:0a:29:8b:b4:34:bc:24:48:8e:c6:86:
                    e0:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:5F:8B:54:78:D0:FA:FA:3F:F8:FE:95:FF:99:28:6B:7A:2F:0A:56
            X509v3 Authority Key Identifier:
                keyid:CA:18:3A:66:91:30:9A:79:D6:E6:60:5B:0D:5C:11:E3:FF:7E:91:94

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0774bb-3b0b-4f47-b151-19e708469cee/1/yhg6ZpEwmnnW5mBbDVwR4_9-kZQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:d9:2b:fb:5c:cc:62:37:28:66:a4:09:40:e9:f1:8b:39:d6:
         61:32:69:6a:62:51:9a:cf:77:1d:a4:0f:8e:38:32:04:36:45:
         5a:e6:94:ec:85:b8:b4:77:5c:58:f8:cd:85:86:72:92:4b:72:
         44:db:fa:1c:ef:e2:f0:3f:6e:99:0e:c3:44:98:d5:5f:f9:6e:
         0f:61:84:33:e2:45:7f:b4:0c:1f:33:b3:2d:92:c2:9d:d4:56:
         60:d6:cb:ac:60:c2:53:87:16:74:25:74:65:0e:e2:a4:35:c8:
         2c:ac:c0:94:6f:f2:38:cd:a6:20:6c:de:79:a8:ca:a4:0e:88:
         85:2d:5b:2e:ad:2b:e9:1c:d3:32:0a:3a:c2:8e:13:6e:1e:ef:
         98:f6:16:ae:30:22:73:08:76:81:9e:62:ef:7b:c9:36:b1:d1:
         1b:6c:5c:5a:e0:fb:4c:19:20:89:f9:c1:f0:a9:74:34:c0:1d:
         7f:89:9f:c3:e4:da:65:e3:8f:af:53:91:82:0e:54:e5:0d:ec:
         81:45:bd:e9:ad:37:1a:57:2a:9a:08:81:c5:5e:41:56:0e:bc:
         76:0b:16:fd:09:d9:58:d3:46:cb:7e:56:48:7c:f5:c4:c6:d5:
         44:c7:75:52:97:a4:18:e2:84:25:7b:26:74:71:f4:45:6b:9c:
         ef:ed:16:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----