Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/13c33a-a46f-4889-b809-57303aa45cbb/1/lIHpRs_I4ZwWZ683XRCh5AQvDrk.mft
File:                     lIHpRs_I4ZwWZ683XRCh5AQvDrk.mft (raw, json)
Hash identifier:          94KqiRZAywPBpOA6uTEGFKYkWZ/1E4oC1urqiiUV428=
Subject key identifier:   E2:BF:73:50:31:2E:DF:36:D3:19:5F:4E:5B:E6:FF:B3:02:42:96:4B
Authority key identifier: 94:81:E9:46:CF:C8:E1:9C:16:67:AF:37:5D:10:A1:E4:04:2F:0E:B9
Certificate issuer:       /CN=9481e946cfc8e19c1667af375d10a1e4042f0eb9
Certificate serial:       019D3909E3D4B89E6E8BBB6D00F495A7AC2E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lIHpRs_I4ZwWZ683XRCh5AQvDrk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/13c33a-a46f-4889-b809-57303aa45cbb/1/lIHpRs_I4ZwWZ683XRCh5AQvDrk.mft
Manifest number:          07A6
Signing time:             Sun 29 Mar 2026 10:00:42 +0000
Manifest this update:     Sun 29 Mar 2026 10:00:42 +0000
Manifest next update:     Mon 30 Mar 2026 10:00:42 +0000
Files and hashes:         1: lIHpRs_I4ZwWZ683XRCh5AQvDrk.crl (hash: J/gV/3XMx6In4F+6PPBPN0qLLPAkbgWUkx1erhmFoUI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/13c33a-a46f-4889-b809-57303aa45cbb/1/lIHpRs_I4ZwWZ683XRCh5AQvDrk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/13c33a-a46f-4889-b809-57303aa45cbb/1/lIHpRs_I4ZwWZ683XRCh5AQvDrk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lIHpRs_I4ZwWZ683XRCh5AQvDrk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:39:09:e3:d4:b8:9e:6e:8b:bb:6d:00:f4:95:a7:ac:2e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9481e946cfc8e19c1667af375d10a1e4042f0eb9
        Validity
            Not Before: Mar 29 10:00:42 2026 GMT
            Not After : Mar 30 10:00:42 2026 GMT
        Subject: CN=e2bf7350312edf36d3195f4e5be6ffb30242964b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:46:5f:ad:b8:70:f4:e2:2e:83:9a:3c:c1:d3:
                    fd:dd:5c:92:15:ea:06:e3:db:97:4d:f0:cc:d6:c7:
                    b7:50:e8:5c:b4:b1:65:d1:11:e9:b1:4f:b9:d1:07:
                    45:62:d3:cb:e4:08:34:69:e3:20:9d:80:c6:a3:d7:
                    61:6b:a5:6e:6c:cb:4d:21:9d:86:c2:40:a6:c4:80:
                    39:bf:2d:0b:7d:2d:5e:7c:4b:de:7f:0f:df:94:6c:
                    9a:a6:68:99:c7:d1:0a:86:cc:d0:46:8e:c2:4a:6a:
                    a3:a7:95:cc:a2:8c:b6:b8:f0:35:04:fd:cc:98:d2:
                    2f:c7:97:74:7d:e6:78:97:be:f4:12:6a:53:cc:db:
                    5d:d0:92:9e:86:38:c7:f4:ed:96:ed:dc:64:a0:d8:
                    52:ff:27:59:e5:17:92:a2:90:fd:14:6c:80:10:06:
                    19:74:a6:ec:eb:de:7e:1b:f1:4b:2f:c3:2f:f7:e6:
                    e5:f5:a3:0d:16:f9:22:4b:26:99:c2:5b:57:e3:de:
                    15:f8:3d:87:bb:fe:6e:7f:0d:73:af:12:e2:91:bb:
                    ce:09:d2:04:2a:87:68:9c:18:e4:ce:83:5c:87:38:
                    33:45:48:e8:d9:95:d8:5c:7a:5d:b3:27:e6:2d:3e:
                    ae:cb:a8:8c:37:0a:1c:81:3a:99:68:c1:76:83:ba:
                    70:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:BF:73:50:31:2E:DF:36:D3:19:5F:4E:5B:E6:FF:B3:02:42:96:4B
            X509v3 Authority Key Identifier:
                keyid:94:81:E9:46:CF:C8:E1:9C:16:67:AF:37:5D:10:A1:E4:04:2F:0E:B9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lIHpRs_I4ZwWZ683XRCh5AQvDrk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/13c33a-a46f-4889-b809-57303aa45cbb/1/lIHpRs_I4ZwWZ683XRCh5AQvDrk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/13c33a-a46f-4889-b809-57303aa45cbb/1/lIHpRs_I4ZwWZ683XRCh5AQvDrk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:fa:89:75:74:a6:d3:49:55:34:cf:a1:14:8c:64:63:33:47:
         42:d3:2d:55:23:7b:8c:aa:78:ac:12:4d:c1:55:bb:83:5c:66:
         01:71:d2:21:46:1a:d3:a9:ad:bc:75:86:6c:6a:4f:07:eb:33:
         f8:47:11:9c:1a:de:9d:0e:3a:ff:ce:61:6d:fb:15:33:e5:86:
         73:08:67:fb:17:39:2b:06:4f:81:2e:8b:9f:54:ec:11:a8:4d:
         76:be:ac:e4:b5:36:ce:0a:df:ed:ff:e7:a3:37:86:67:69:3b:
         a6:39:ab:89:12:12:7a:3c:47:e5:44:f9:e1:01:d7:d1:22:9b:
         c6:55:27:0a:27:01:88:9c:ef:d2:f2:6f:4d:51:e0:be:4c:1e:
         07:c5:2f:64:49:87:3e:32:fe:de:fa:a4:26:9c:cd:3d:89:da:
         da:59:7c:87:19:4c:e5:a9:aa:c5:e0:f8:b6:fc:7c:96:c0:f9:
         b1:9a:59:36:e9:5b:6b:36:bf:38:30:55:36:e6:1c:0b:82:f6:
         23:3d:29:d8:b4:12:56:26:61:d1:e2:fa:ec:2e:10:c7:a1:d8:
         8e:70:4b:b1:f7:82:43:43:0c:25:83:fd:65:4f:e9:5e:66:e6:
         c4:92:50:ca:fc:65:25:94:cf:59:01:98:57:29:a0:32:68:69:
         f6:38:17:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05CePUuJ5ui7ttAPSVp6wuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0ODFlOTQ2Y2ZjOGUxOWMxNjY3YWYzNzVkMTBhMWU0MDQy
ZjBlYjkwHhcNMjYwMzI5MTAwMDQyWhcNMjYwMzMwMTAwMDQyWjAzMTEwLwYDVQQD
EyhlMmJmNzM1MDMxMmVkZjM2ZDMxOTVmNGU1YmU2ZmZiMzAyNDI5NjRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUZfrbhw9OIug5o8wdP93VySFeoG
49uXTfDM1se3UOhctLFl0RHpsU+50QdFYtPL5Ag0aeMgnYDGo9dha6VubMtNIZ2G
wkCmxIA5vy0LfS1efEvefw/flGyapmiZx9EKhszQRo7CSmqjp5XMooy2uPA1BP3M
mNIvx5d0feZ4l770EmpTzNtd0JKehjjH9O2W7dxkoNhS/ydZ5ReSopD9FGyAEAYZ
dKbs695+G/FLL8Mv9+bl9aMNFvkiSyaZwltX494V+D2Hu/5ufw1zrxLikbvOCdIE
KodonBjkzoNchzgzRUjo2ZXYXHpdsyfmLT6uy6iMNwocgTqZaMF2g7pwiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOK/c1AxLt820xlfTlvm/7MCQpZLMB8GA1UdIwQY
MBaAFJSB6UbPyOGcFmevN10QoeQELw65MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbElIcFJzX0k0WndXWjY4M1hSQ2g1QVF2RHJrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xM2MzM2EtYTQ2Zi00ODg5LWI4MDkt
NTczMDNhYTQ1Y2JiLzEvbElIcFJzX0k0WndXWjY4M1hSQ2g1QVF2RHJrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xM2MzM2EtYTQ2Zi00ODg5LWI4MDktNTczMDNhYTQ1Y2Ji
LzEvbElIcFJzX0k0WndXWjY4M1hSQ2g1QVF2RHJrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkPqJdXSm
00lVNM+hFIxkYzNHQtMtVSN7jKp4rBJNwVW7g1xmAXHSIUYa06mtvHWGbGpPB+sz
+EcRnBrenQ46/85hbfsVM+WGcwhn+xc5KwZPgS6Ln1TsEahNdr6s5LU2zgrf7f/n
ozeGZ2k7pjmriRISejxH5UT54QHX0SKbxlUnCicBiJzv0vJvTVHgvkweB8UvZEmH
PjL+3vqkJpzNPYna2ll8hxlM5amqxeD4tvx8lsD5sZpZNulbaza/ODBVNuYcC4L2
Iz0p2LQSViZh0eL67C4Qx6HYjnBLsfeCQ0MMJYP9ZU/pXmbmxJJQyvxlJZTPWQGY
VymgMmhp9jgXQQ==
-----END CERTIFICATE-----