Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft
File:                     DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft (raw, json)
Hash identifier:          AgWe7I6HIbgPVwSI1BxcsW6iYFqShnj1zY6adcbMdp8=
Subject key identifier:   C4:FE:35:81:CB:2E:E0:21:55:54:D8:08:FF:54:64:65:A6:E8:FC:B1
Authority key identifier: 0E:85:FD:3C:9F:95:58:B2:18:02:2F:F4:09:FC:55:4F:AE:E7:90:90
Certificate issuer:       /CN=0e85fd3c9f9558b218022ff409fc554faee79090
Certificate serial:       019E303B5CACD221ACBB6227658008D0F5E0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DoX9PJ-VWLIYAi_0CfxVT67nkJA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft
Manifest number:          190C
Signing time:             Sat 16 May 2026 10:00:57 +0000
Manifest this update:     Sat 16 May 2026 10:00:57 +0000
Manifest next update:     Sun 17 May 2026 10:00:57 +0000
Files and hashes:         1: DoX9PJ-VWLIYAi_0CfxVT67nkJA.crl (hash: lcgiV9PpVyY6io5Yq6u5DFY/v58cNAaHY970GNaVii0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DoX9PJ-VWLIYAi_0CfxVT67nkJA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 10:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:3b:5c:ac:d2:21:ac:bb:62:27:65:80:08:d0:f5:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0e85fd3c9f9558b218022ff409fc554faee79090
        Validity
            Not Before: May 16 10:00:57 2026 GMT
            Not After : May 17 10:00:57 2026 GMT
        Subject: CN=c4fe3581cb2ee0215554d808ff546465a6e8fcb1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:70:fd:50:5d:b7:4f:25:73:d5:9f:d1:0b:0b:
                    63:f4:ba:3c:78:7e:a9:3d:3c:d6:a0:5c:2b:56:11:
                    c6:3d:6e:5d:a9:e7:d8:1e:94:ef:d3:c6:ea:9e:91:
                    35:ce:9d:d5:60:51:ce:60:1f:2f:69:05:49:b8:fc:
                    5d:7f:59:79:c9:1c:28:fb:c9:de:43:7e:fd:8e:6e:
                    db:c1:9a:b6:6b:21:7a:21:fd:b3:ee:68:5e:c4:1a:
                    a2:6f:4e:1f:a2:c5:da:7c:2f:91:7c:cf:28:eb:9e:
                    bf:8d:f4:7a:29:91:7f:df:a5:de:db:56:6c:da:2d:
                    cc:1b:1c:37:01:ce:54:93:58:00:9e:21:fc:a6:8d:
                    89:78:db:be:d5:3b:7d:f6:cc:17:79:e3:8c:cf:4c:
                    5c:ec:d2:ae:6a:55:f1:e8:a4:5d:59:20:22:8d:2b:
                    38:35:66:24:81:97:9d:2b:55:c8:d8:1e:49:c8:a5:
                    8f:2b:97:bf:7c:64:15:60:68:88:67:9a:e7:bd:ba:
                    32:85:e6:5c:89:63:c2:f5:66:de:33:27:31:6f:72:
                    2b:db:91:fe:df:b4:c3:0a:a3:ef:b1:91:c5:76:f0:
                    1c:0c:c6:58:e7:64:60:0f:bc:99:67:1a:ff:c1:ae:
                    70:28:22:c2:55:f4:7e:5c:8f:83:8d:d9:2c:e1:ed:
                    2a:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:FE:35:81:CB:2E:E0:21:55:54:D8:08:FF:54:64:65:A6:E8:FC:B1
            X509v3 Authority Key Identifier:
                keyid:0E:85:FD:3C:9F:95:58:B2:18:02:2F:F4:09:FC:55:4F:AE:E7:90:90

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoX9PJ-VWLIYAi_0CfxVT67nkJA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/b3d3d9-7928-458d-836e-3303afe5c89b/1/DoX9PJ-VWLIYAi_0CfxVT67nkJA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:07:bd:83:e9:0e:15:9e:c1:77:13:30:a8:4c:1c:79:d4:c7:
         ee:01:f5:86:ae:5b:5e:9f:9b:be:b7:8b:69:6f:6e:4a:b8:03:
         dd:2e:da:f9:a6:06:8a:b7:52:3a:6e:f5:22:11:4b:16:88:84:
         a3:fe:63:6e:a7:cf:8d:df:cd:01:3f:59:4e:2a:16:f7:60:f5:
         ba:c7:ba:5f:72:36:be:04:85:6e:d0:2b:2a:08:b7:6f:2a:2a:
         f6:fd:1a:41:6e:36:39:87:8d:c8:71:2f:30:73:f2:20:7f:8a:
         81:51:26:c6:a0:06:11:a3:ab:d9:7d:80:28:9d:c4:b8:db:6b:
         59:82:79:2c:4b:30:ec:fe:b7:de:01:ee:0a:a5:34:a2:3f:87:
         b8:8e:4d:63:7b:8f:2e:aa:c1:54:98:84:30:b6:a3:fe:93:f7:
         08:89:94:12:5c:3b:55:8e:32:e4:34:72:f2:17:65:f6:5e:25:
         1f:28:f6:7c:12:64:51:fa:97:1c:9e:17:36:6a:8a:39:8c:5b:
         2d:2a:6d:b7:7e:bc:e0:bc:a7:4d:37:2d:e9:7e:b3:99:93:6e:
         1e:7f:2f:cb:a6:1f:a5:b4:08:3d:62:2b:f2:ce:f4:3d:fa:57:
         b0:3b:7d:f7:d6:de:47:5c:d5:8e:aa:0b:7e:81:98:b9:6c:2f:
         db:42:b5:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----