Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/d31eab-31e1-4964-962e-e15bc9650aab/1/8UVKs8Pgm2VctHJVOf9uaZMcRrA.mft
File:                     8UVKs8Pgm2VctHJVOf9uaZMcRrA.mft (raw, json)
Hash identifier:          CY1K0NIHiUxHMAE2Q2drSyOW1VbHST0EAhn8rOqgrRs=
Subject key identifier:   D3:0A:E1:0D:63:AD:7A:F7:25:09:6E:BE:25:21:84:74:54:77:7B:D7
Authority key identifier: F1:45:4A:B3:C3:E0:9B:65:5C:B4:72:55:39:FF:6E:69:93:1C:46:B0
Certificate issuer:       /CN=f1454ab3c3e09b655cb4725539ff6e69931c46b0
Certificate serial:       019D39AEB11FDA402282A390D0AD66F14573
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8UVKs8Pgm2VctHJVOf9uaZMcRrA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/31/d31eab-31e1-4964-962e-e15bc9650aab/1/8UVKs8Pgm2VctHJVOf9uaZMcRrA.mft
Manifest number:          188D
Signing time:             Sun 29 Mar 2026 13:00:43 +0000
Manifest this update:     Sun 29 Mar 2026 13:00:43 +0000
Manifest next update:     Mon 30 Mar 2026 13:00:43 +0000
Files and hashes:         1: 8UVKs8Pgm2VctHJVOf9uaZMcRrA.crl (hash: rD6vvsE4DRtZS6X4VxOYtffH9laD0Ae0FxvmRlEGSxM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/31/d31eab-31e1-4964-962e-e15bc9650aab/1/8UVKs8Pgm2VctHJVOf9uaZMcRrA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/31/d31eab-31e1-4964-962e-e15bc9650aab/1/8UVKs8Pgm2VctHJVOf9uaZMcRrA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8UVKs8Pgm2VctHJVOf9uaZMcRrA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 13:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:39:ae:b1:1f:da:40:22:82:a3:90:d0:ad:66:f1:45:73
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f1454ab3c3e09b655cb4725539ff6e69931c46b0
        Validity
            Not Before: Mar 29 13:00:43 2026 GMT
            Not After : Mar 30 13:00:43 2026 GMT
        Subject: CN=d30ae10d63ad7af725096ebe2521847454777bd7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:d4:7e:ff:7b:41:7d:4a:8b:50:0b:55:f0:f2:
                    d4:41:91:f8:b5:26:35:36:cf:11:c0:3c:73:0d:b4:
                    82:1a:d1:19:5a:ab:ad:61:30:8b:dd:eb:32:00:07:
                    38:92:06:9a:8b:1f:8c:1b:96:be:8a:e4:da:ac:11:
                    3e:31:2f:22:b8:85:2d:58:32:a4:0d:2f:ad:3c:dc:
                    73:8f:aa:4a:3b:a9:40:9d:f4:1f:e1:eb:d0:0e:a8:
                    d8:8a:09:80:ca:1b:7f:25:63:28:a7:7e:2e:7f:c1:
                    9f:8d:c7:6a:fa:44:71:0d:17:40:2e:65:5b:b9:3b:
                    d0:0b:3f:6e:92:ea:23:30:9e:27:4f:08:25:5a:4f:
                    1a:c5:65:ad:b5:da:09:99:79:7b:2c:ca:fc:c3:99:
                    f0:65:b7:57:e9:29:35:79:3d:cf:5d:e4:84:81:70:
                    88:f9:08:66:c8:5c:50:12:0c:25:dd:3b:73:ea:4c:
                    70:d0:0b:6d:45:ab:77:02:75:83:4a:07:e1:6e:23:
                    5c:d2:b1:32:6c:d2:2f:10:41:e7:64:af:fc:f8:ec:
                    bd:3d:29:fd:1a:f2:56:70:04:23:06:ff:f5:28:22:
                    1e:93:01:f5:51:61:85:75:55:ff:7a:c1:c1:ac:df:
                    1f:87:4a:ef:52:cc:21:c6:b8:e1:95:c9:f4:ad:54:
                    5b:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:0A:E1:0D:63:AD:7A:F7:25:09:6E:BE:25:21:84:74:54:77:7B:D7
            X509v3 Authority Key Identifier:
                keyid:F1:45:4A:B3:C3:E0:9B:65:5C:B4:72:55:39:FF:6E:69:93:1C:46:B0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8UVKs8Pgm2VctHJVOf9uaZMcRrA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/d31eab-31e1-4964-962e-e15bc9650aab/1/8UVKs8Pgm2VctHJVOf9uaZMcRrA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/31/d31eab-31e1-4964-962e-e15bc9650aab/1/8UVKs8Pgm2VctHJVOf9uaZMcRrA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         be:f7:26:e8:a6:bd:f9:0d:46:8b:72:11:55:27:9b:ef:87:65:
         2e:31:eb:8c:c3:ad:62:6e:01:ac:10:f7:c4:3c:6b:70:31:ed:
         7e:42:08:f3:1f:95:05:27:d5:fd:9a:c0:35:dc:68:60:63:c9:
         62:83:6f:95:f0:73:12:44:f3:a2:67:4d:71:79:9a:cf:f6:f3:
         40:36:07:22:b5:37:bf:76:40:9d:9a:08:fb:6c:cb:cb:ad:4b:
         52:50:65:ad:77:64:5b:ef:55:82:41:2b:51:26:5f:62:3a:07:
         5f:f4:fb:f7:ee:f1:e0:6e:74:8d:98:02:d4:ec:cf:75:73:ae:
         af:4a:cc:52:2d:38:ed:3f:79:18:b7:7e:9a:d1:e6:2d:f0:90:
         e7:de:4b:67:f5:a9:a3:c3:ba:02:91:67:be:8d:9e:52:32:89:
         89:98:56:af:52:49:e1:e3:0a:e5:c5:ef:4f:d4:52:0b:7a:96:
         e8:68:61:56:8f:a9:66:96:bd:e5:dc:73:eb:35:a1:90:35:15:
         6f:0f:b3:40:37:9b:f4:96:45:19:1b:93:72:0a:68:b4:df:0f:
         9d:1d:52:0d:4a:58:10:85:2e:8c:56:86:69:23:58:39:cf:da:
         7d:a2:f2:f5:10:da:72:a8:60:a7:77:76:ef:6b:fe:b1:c3:e5:
         ce:fc:6a:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----