Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
File:                     7bKno-y66qV0GCMdsLYkq797pkU.mft (raw, json)
Hash identifier:          Es0H1uRyHHX91Rxm5F7SAnrPbCKqXU2f40EmLk5qP9M=
Subject key identifier:   A4:78:2D:76:80:90:8A:AF:18:D1:B2:3E:4C:51:BB:21:E7:1F:5C:B3
Authority key identifier: ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45
Certificate issuer:       /CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
Certificate serial:       019E300471E2E08FB4CDCB07A7319AF0A19A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
Manifest number:          190B
Signing time:             Sat 16 May 2026 09:00:58 +0000
Manifest this update:     Sat 16 May 2026 09:00:58 +0000
Manifest next update:     Sun 17 May 2026 09:00:58 +0000
Files and hashes:         1: 7bKno-y66qV0GCMdsLYkq797pkU.crl (hash: 23/2vp/SNtSbOK7Fp8VW8zOw82hWxVTSafRHjRgOVEM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 09:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:04:71:e2:e0:8f:b4:cd:cb:07:a7:31:9a:f0:a1:9a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
        Validity
            Not Before: May 16 09:00:58 2026 GMT
            Not After : May 17 09:00:58 2026 GMT
        Subject: CN=a4782d7680908aaf18d1b23e4c51bb21e71f5cb3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:64:d2:13:0d:2c:41:7c:61:0d:bf:9b:c5:33:
                    e2:77:c6:a4:65:73:a5:8d:fc:30:34:0f:f1:13:cb:
                    cf:80:9c:e9:dd:c3:40:b1:6b:c5:dd:21:6e:6c:e4:
                    92:fd:a3:87:64:f4:e4:a3:73:e4:bf:b2:a9:c9:5f:
                    a9:97:70:f9:af:38:66:36:0d:9c:27:4a:19:11:a5:
                    a3:81:17:9f:2d:d3:2c:5c:c7:7d:bb:1f:55:ab:3c:
                    4a:f2:f5:01:ba:18:76:ca:26:0e:d5:5e:74:1f:80:
                    7e:21:c2:df:73:7d:62:e8:6a:8a:82:f6:ad:09:4c:
                    52:fa:dd:89:2d:53:9e:b7:7a:8e:53:66:f4:a1:0b:
                    20:97:03:9f:bc:92:f7:31:56:15:bd:9d:96:6d:c4:
                    28:05:94:47:1b:e0:5f:74:71:0a:b1:3e:98:ba:5c:
                    87:25:3b:e0:e3:90:44:45:a8:40:b1:b7:53:db:ac:
                    55:10:6d:42:6b:c2:d8:ef:12:32:23:24:a2:65:42:
                    af:64:51:ad:3d:b8:c7:68:56:03:79:2c:e8:22:63:
                    53:61:2b:cf:04:3b:3e:1f:7c:18:a5:f8:bd:21:98:
                    c4:d6:d2:42:f5:a7:8b:50:fe:64:1b:f6:48:14:59:
                    48:52:94:a1:a9:95:dd:48:a2:96:ce:b6:a1:0c:c3:
                    29:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:78:2D:76:80:90:8A:AF:18:D1:B2:3E:4C:51:BB:21:E7:1F:5C:B3
            X509v3 Authority Key Identifier:
                keyid:ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:db:c8:90:63:47:95:04:7a:84:72:c3:49:f9:21:3c:3d:c2:
         a5:19:12:84:a7:bd:19:3e:73:23:4f:91:47:41:b7:f0:c3:31:
         43:8b:7e:67:6f:66:97:b1:34:e4:22:be:7e:f7:b2:59:b1:ee:
         56:3c:ec:d9:37:64:f5:1b:89:95:59:a8:c8:c5:10:fe:40:13:
         e1:c1:15:2b:06:ba:93:4a:6c:d9:d8:8b:f7:e3:d3:12:a3:a8:
         ce:17:49:09:0f:66:5a:a9:6d:31:da:dc:32:28:95:6b:97:3c:
         ce:95:ca:08:f0:7b:9d:77:ab:f4:8c:df:00:02:ce:e4:4a:cc:
         d6:d3:af:8b:6f:2d:9a:ce:0f:c0:eb:4d:60:c4:5a:a9:68:b8:
         c6:89:41:d9:91:7d:dc:6a:0b:6b:63:f6:2f:7f:97:32:12:7d:
         3b:a0:e8:f7:66:78:0b:af:1c:3a:f5:15:b8:01:56:cc:96:1a:
         0b:af:03:d2:f1:47:1f:9b:fa:fa:0a:58:48:79:ae:56:e7:07:
         68:70:c2:64:bf:fa:24:d6:3e:e9:79:77:de:a4:63:b6:4a:3c:
         77:4b:b5:af:d3:47:d3:04:75:03:9f:ab:cc:ab:ad:e6:32:79:
         a5:fa:22:fa:4e:3e:d2:29:22:e6:ce:b1:04:60:3f:38:b3:d3:
         60:24:1c:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wBHHi4I+0zcsHpzGa8KGaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkYjJhN2EzZWNiYWVhYTU3NDE4MjMxZGIwYjYyNGFiYmY3
YmE2NDUwHhcNMjYwNTE2MDkwMDU4WhcNMjYwNTE3MDkwMDU4WjAzMTEwLwYDVQQD
EyhhNDc4MmQ3NjgwOTA4YWFmMThkMWIyM2U0YzUxYmIyMWU3MWY1Y2IzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5mTSEw0sQXxhDb+bxTPid8akZXOl
jfwwNA/xE8vPgJzp3cNAsWvF3SFubOSS/aOHZPTko3Pkv7KpyV+pl3D5rzhmNg2c
J0oZEaWjgRefLdMsXMd9ux9VqzxK8vUBuhh2yiYO1V50H4B+IcLfc31i6GqKgvat
CUxS+t2JLVOet3qOU2b0oQsglwOfvJL3MVYVvZ2WbcQoBZRHG+BfdHEKsT6YulyH
JTvg45BERahAsbdT26xVEG1Ca8LY7xIyIySiZUKvZFGtPbjHaFYDeSzoImNTYSvP
BDs+H3wYpfi9IZjE1tJC9aeLUP5kG/ZIFFlIUpShqZXdSKKWzrahDMMpuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKR4LXaAkIqvGNGyPkxRuyHnH1yzMB8GA1UdIwQY
MBaAFO2yp6PsuuqldBgjHbC2JKu/e6ZFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2JLbm8teTY2cVYwR0NNZHNMWWtxNzk3cGtVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS80M2VkMWMtZmY1MC00MmUwLWI3ZDQt
YWYyNTRjZTNmZTY5LzEvN2JLbm8teTY2cVYwR0NNZHNMWWtxNzk3cGtVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS80M2VkMWMtZmY1MC00MmUwLWI3ZDQtYWYyNTRjZTNmZTY5
LzEvN2JLbm8teTY2cVYwR0NNZHNMWWtxNzk3cGtVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHtvIkGNH
lQR6hHLDSfkhPD3CpRkShKe9GT5zI0+RR0G38MMxQ4t+Z29ml7E05CK+fveyWbHu
Vjzs2Tdk9RuJlVmoyMUQ/kAT4cEVKwa6k0ps2diL9+PTEqOozhdJCQ9mWqltMdrc
MiiVa5c8zpXKCPB7nXer9IzfAALO5ErM1tOvi28tms4PwOtNYMRaqWi4xolB2ZF9
3GoLa2P2L3+XMhJ9O6Do92Z4C68cOvUVuAFWzJYaC68D0vFHH5v6+gpYSHmuVucH
aHDCZL/6JNY+6Xl33qRjtko8d0u1r9NH0wR1A5+rzKut5jJ5pfoi+k4+0iki5s6x
BGA/OLPTYCQcLw==
-----END CERTIFICATE-----