Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft
File:                     rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft (raw, json)
Hash identifier:          IIGfbeblv3DC4e378sBkFgbeB6s/eLtoaFhImFKNPZY=
Subject key identifier:   6F:51:99:C1:4F:25:CB:B4:47:A6:75:B5:0C:B2:9F:96:17:4E:3B:82
Authority key identifier: AD:30:FB:43:88:EE:67:14:4A:E0:4D:DC:86:81:2D:63:E0:28:F4:78
Certificate issuer:       /CN=ad30fb4388ee67144ae04ddc86812d63e028f478
Certificate serial:       019D3A53A235F8C5C75B1BA2C36EDCBBC692
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft
Manifest number:          188C
Signing time:             Sun 29 Mar 2026 16:00:52 +0000
Manifest this update:     Sun 29 Mar 2026 16:00:52 +0000
Manifest next update:     Mon 30 Mar 2026 16:00:52 +0000
Files and hashes:         1: rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl (hash: ziH16CzbHtofVKs8PhE48aObt91Jm9/9ROy/JN05eI4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 08:48:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:3a:53:a2:35:f8:c5:c7:5b:1b:a2:c3:6e:dc:bb:c6:92
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ad30fb4388ee67144ae04ddc86812d63e028f478
        Validity
            Not Before: Mar 29 16:00:52 2026 GMT
            Not After : Mar 30 16:00:52 2026 GMT
        Subject: CN=6f5199c14f25cbb447a675b50cb29f96174e3b82
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:eb:d8:99:69:9d:32:f4:d2:ca:47:63:22:f1:
                    77:e8:65:9b:ae:36:40:16:bb:2e:9a:71:01:01:0b:
                    33:38:df:64:6f:5b:3c:79:a2:c2:e7:f5:b4:67:a8:
                    79:57:f6:6b:0a:f4:b1:35:22:cf:2d:a4:56:17:16:
                    21:21:1e:bb:b6:36:71:62:66:a2:8f:5b:68:bb:68:
                    df:88:1e:49:0e:be:91:c4:5f:00:51:30:4e:1d:63:
                    c7:dd:73:49:64:2a:dd:47:10:16:4e:3a:c2:33:e0:
                    99:6b:77:f7:74:5a:31:d4:2d:92:a9:bf:d6:d1:76:
                    6f:61:c9:8e:5f:49:e4:21:a6:9a:f5:2c:97:b8:fc:
                    d1:9f:1d:44:71:f8:ea:50:08:9f:e1:3c:e3:a4:75:
                    bd:3a:52:5c:f2:f2:a3:24:1b:f1:c0:c5:88:26:ed:
                    a0:fc:cc:ae:27:0d:cb:d2:23:67:34:59:ba:63:f1:
                    5c:eb:62:be:6b:ee:fd:8f:aa:ed:5e:91:66:8c:23:
                    2c:eb:9c:32:48:a5:d0:81:bc:a4:74:f2:99:4e:47:
                    62:b5:52:b0:06:a1:32:3c:9c:05:3d:8a:a2:ec:af:
                    a5:34:33:19:c3:c6:22:24:47:00:b7:bc:8c:94:cc:
                    18:1a:d9:46:40:f7:bb:b6:5f:2f:2c:e8:56:94:d7:
                    00:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:51:99:C1:4F:25:CB:B4:47:A6:75:B5:0C:B2:9F:96:17:4E:3B:82
            X509v3 Authority Key Identifier:
                keyid:AD:30:FB:43:88:EE:67:14:4A:E0:4D:DC:86:81:2D:63:E0:28:F4:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:c3:16:93:ef:e8:d9:e4:35:a8:e8:8c:46:af:0c:62:96:de:
         f1:2e:b1:b1:bd:c6:78:33:8d:bd:d4:d9:34:a1:9d:72:2d:30:
         7d:85:bd:57:16:9b:b0:b8:1f:ae:1e:32:2a:fc:b1:a7:f2:f9:
         df:b0:4c:6d:bb:35:37:fc:85:ab:7b:8c:1e:26:4f:38:56:46:
         17:c5:b5:c8:6e:ff:99:c5:15:eb:79:f0:78:b9:0e:ed:9b:86:
         f8:01:8d:4c:9b:db:39:e9:4e:27:1f:d4:5c:79:55:86:62:35:
         fb:ab:cd:cf:18:8b:99:72:36:b1:1c:2d:d0:81:57:e9:7e:a7:
         96:72:f6:cf:19:97:db:f6:b5:70:81:e6:56:a6:0d:9e:5c:71:
         bf:f4:38:c1:bf:cc:45:31:82:bc:69:22:d8:24:fb:24:aa:93:
         76:2a:ab:8a:2c:d2:4d:91:f0:5c:4a:30:fa:63:b3:b7:0d:23:
         20:c4:ac:93:fe:fb:39:8f:14:e8:e0:e0:ee:54:61:60:21:0a:
         41:d9:95:e7:01:b1:e6:bd:fd:f8:bf:9d:3c:8c:7d:8f:80:9d:
         d8:ba:b8:bb:47:b1:48:f5:b3:c9:f5:1d:2d:4a:9e:30:a1:b6:
         f5:17:2d:62:bc:cc:8f:7a:5e:f1:8f:3b:ff:34:ff:ed:dc:23:
         60:96:89:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----