Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft
File:                     jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft (raw, json)
Hash identifier:          V9stCFHvXRN6FNmJ3TkswYhmIwYcZjE3qU+zeHPqLUk=
Subject key identifier:   BD:84:D9:99:77:E6:34:81:21:94:EC:5F:23:A2:B4:16:01:95:C7:D0
Authority key identifier: 8C:43:78:B5:71:68:2D:34:77:3B:46:37:52:70:1C:94:05:FB:ED:78
Certificate issuer:       /CN=8c4378b571682d34773b463752701c9405fbed78
Certificate serial:       019D3865E59A74E435A7C9D7FFA27CDF19EC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jEN4tXFoLTR3O0Y3UnAclAX77Xg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft
Manifest number:          0785
Signing time:             Sun 29 Mar 2026 07:01:35 +0000
Manifest this update:     Sun 29 Mar 2026 07:01:35 +0000
Manifest next update:     Mon 30 Mar 2026 07:01:35 +0000
Files and hashes:         1: jEN4tXFoLTR3O0Y3UnAclAX77Xg.crl (hash: oaqgAxlVtp58y6QpfdvK2k26VYXd22s655Gqst6qNAM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jEN4tXFoLTR3O0Y3UnAclAX77Xg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:65:e5:9a:74:e4:35:a7:c9:d7:ff:a2:7c:df:19:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8c4378b571682d34773b463752701c9405fbed78
        Validity
            Not Before: Mar 29 07:01:35 2026 GMT
            Not After : Mar 30 07:01:35 2026 GMT
        Subject: CN=bd84d99977e634812194ec5f23a2b4160195c7d0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:e5:13:5c:f7:94:f1:6e:68:eb:e8:96:d7:23:
                    a8:22:c9:31:50:5f:b6:af:2e:b0:d2:f1:88:76:2c:
                    36:e7:7c:f9:3c:1f:5b:4e:9d:52:e6:b6:ab:ca:4c:
                    ce:7e:22:1d:77:41:17:f1:57:ba:62:3b:b1:e1:4f:
                    ce:9d:be:48:2a:62:4f:90:53:d5:ef:f8:9c:fa:07:
                    26:26:16:61:6a:40:db:07:00:99:23:f6:7b:3b:d2:
                    6f:99:69:7f:8b:fa:17:90:50:7f:39:ad:ef:83:71:
                    f6:1e:bd:b4:d8:4c:d4:c6:e2:f1:e2:53:1a:43:63:
                    61:85:a9:40:1e:ec:97:1e:2a:dd:99:e0:1e:7e:ed:
                    dc:ef:3f:27:72:25:14:dd:79:68:ec:2f:52:0b:54:
                    e6:9a:a3:cb:ae:25:fb:6d:8d:85:48:e6:13:ef:57:
                    f1:6f:71:62:d3:eb:57:51:8e:92:f4:d3:db:ac:60:
                    93:a7:cc:d1:9e:2f:e1:10:dd:3f:55:97:8a:9e:8f:
                    2c:32:20:af:73:c7:cb:a3:49:2a:dd:f3:ed:06:74:
                    d0:eb:c9:47:fb:f8:ed:6c:5c:54:fb:b7:65:9d:01:
                    62:01:69:d0:39:7d:b8:9c:fe:c0:e6:f1:f2:21:57:
                    28:38:b1:78:81:f1:1b:ac:42:bd:7b:96:11:58:c2:
                    4b:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:84:D9:99:77:E6:34:81:21:94:EC:5F:23:A2:B4:16:01:95:C7:D0
            X509v3 Authority Key Identifier:
                keyid:8C:43:78:B5:71:68:2D:34:77:3B:46:37:52:70:1C:94:05:FB:ED:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jEN4tXFoLTR3O0Y3UnAclAX77Xg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:80:75:c3:2e:8e:35:55:99:c8:38:a7:a6:01:85:a6:ec:7e:
         e5:d8:16:37:c2:3c:64:10:77:45:ca:19:25:f0:f1:2a:c5:2c:
         9d:a5:f1:60:ec:23:ff:e7:52:70:68:5c:9c:b8:40:5a:f0:91:
         ad:65:1d:06:db:7f:f1:12:5e:46:22:3c:e7:13:65:aa:c5:74:
         61:bc:b6:29:5f:df:43:94:49:92:19:8f:d0:58:19:73:31:27:
         be:c1:aa:1c:da:52:86:62:2b:61:a1:f9:3a:35:de:9f:15:fd:
         83:7e:41:f7:11:75:ee:2e:a9:46:cf:49:2d:02:54:92:a9:c5:
         c5:4e:ea:55:f0:02:27:f5:0e:75:bb:fe:68:e2:2e:6f:96:54:
         5e:b5:77:5b:0c:95:66:60:3d:a8:ca:c0:84:60:2b:e7:40:e2:
         43:da:67:e9:9b:61:e2:98:82:d8:e3:5f:df:02:02:d3:eb:11:
         63:52:ce:35:0f:82:44:88:9f:b8:da:c3:6e:5e:ff:1c:8b:ae:
         5f:74:dc:d0:43:50:90:52:5d:e6:c9:dd:3e:ef:2f:75:25:c7:
         8c:2d:79:1d:32:54:8c:c6:18:d7:d2:58:6f:6d:3e:2c:c9:7b:
         80:dc:b1:0b:22:b9:9c:68:59:44:4c:35:e6:b9:c1:19:76:9d:
         e4:a9:89:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZeWadOQ1p8nX/6J83xnsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjNDM3OGI1NzE2ODJkMzQ3NzNiNDYzNzUyNzAxYzk0MDVm
YmVkNzgwHhcNMjYwMzI5MDcwMTM1WhcNMjYwMzMwMDcwMTM1WjAzMTEwLwYDVQQD
EyhiZDg0ZDk5OTc3ZTYzNDgxMjE5NGVjNWYyM2EyYjQxNjAxOTVjN2QwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnuUTXPeU8W5o6+iW1yOoIskxUF+2
ry6w0vGIdiw253z5PB9bTp1S5rarykzOfiIdd0EX8Ve6Yjux4U/Onb5IKmJPkFPV
7/ic+gcmJhZhakDbBwCZI/Z7O9JvmWl/i/oXkFB/Oa3vg3H2Hr202EzUxuLx4lMa
Q2NhhalAHuyXHirdmeAefu3c7z8nciUU3Xlo7C9SC1TmmqPLriX7bY2FSOYT71fx
b3Fi0+tXUY6S9NPbrGCTp8zRni/hEN0/VZeKno8sMiCvc8fLo0kq3fPtBnTQ68lH
+/jtbFxU+7dlnQFiAWnQOX24nP7A5vHyIVcoOLF4gfEbrEK9e5YRWMJLdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL2E2Zl35jSBIZTsXyOitBYBlcfQMB8GA1UdIwQY
MBaAFIxDeLVxaC00dztGN1JwHJQF++14MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvakVONHRYRm9MVFIzTzBZM1VuQWNsQVg3N1hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny83NmI0NDUtMzQ2MS00ZjRmLTliNDIt
NzRmMDFiMjU4NmY1LzEvakVONHRYRm9MVFIzTzBZM1VuQWNsQVg3N1hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny83NmI0NDUtMzQ2MS00ZjRmLTliNDItNzRmMDFiMjU4NmY1
LzEvakVONHRYRm9MVFIzTzBZM1VuQWNsQVg3N1hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAYB1wy6O
NVWZyDinpgGFpux+5dgWN8I8ZBB3RcoZJfDxKsUsnaXxYOwj/+dScGhcnLhAWvCR
rWUdBtt/8RJeRiI85xNlqsV0Yby2KV/fQ5RJkhmP0FgZczEnvsGqHNpShmIrYaH5
OjXenxX9g35B9xF17i6pRs9JLQJUkqnFxU7qVfACJ/UOdbv+aOIub5ZUXrV3WwyV
ZmA9qMrAhGAr50DiQ9pn6Zth4piC2ONf3wIC0+sRY1LONQ+CRIifuNrDbl7/HIuu
X3Tc0ENQkFJd5sndPu8vdSXHjC15HTJUjMYY19JYb20+LMl7gNyxCyK5nGhZREw1
5rnBGXad5KmJ8A==
-----END CERTIFICATE-----