Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft
File:                     CUsU8URwOb33-d7l-ik4XB3OlZ0.mft (raw, json)
Hash identifier:          NQtD+BmjLcGfmUASod4b+2x32ScGGy45pOOUChX4qYY=
Subject key identifier:   CC:FD:A0:F6:2E:B0:D5:DC:6D:E9:69:0D:2E:73:12:70:A6:BF:3F:D3
Authority key identifier: 09:4B:14:F1:44:70:39:BD:F7:F9:DE:E5:FA:29:38:5C:1D:CE:95:9D
Certificate issuer:       /CN=094b14f1447039bdf7f9dee5fa29385c1dce959d
Certificate serial:       019E2F9770368A2223CF614B5AF0A9E392A8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft
Manifest number:          189E
Signing time:             Sat 16 May 2026 07:01:54 +0000
Manifest this update:     Sat 16 May 2026 07:01:54 +0000
Manifest next update:     Sun 17 May 2026 07:01:54 +0000
Files and hashes:         1: CUsU8URwOb33-d7l-ik4XB3OlZ0.crl (hash: vH5FiplSPeqd3v+IH/OFaQr5Kw2MUzpdiv3zrF5WZaA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 05:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:97:70:36:8a:22:23:cf:61:4b:5a:f0:a9:e3:92:a8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=094b14f1447039bdf7f9dee5fa29385c1dce959d
        Validity
            Not Before: May 16 07:01:54 2026 GMT
            Not After : May 17 07:01:54 2026 GMT
        Subject: CN=ccfda0f62eb0d5dc6de9690d2e731270a6bf3fd3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:ef:ef:3d:7b:69:3c:54:6a:90:04:1d:b4:03:
                    63:19:c0:d6:dc:cf:9a:fe:30:0c:3e:04:01:08:53:
                    f5:be:02:fd:4d:ae:fe:62:00:60:fc:c6:54:7c:ca:
                    9f:cf:c4:c8:b3:4f:de:01:ef:3a:20:ea:d3:4d:a3:
                    74:82:87:b2:94:15:7c:02:b3:4c:53:96:84:a9:e8:
                    eb:b4:13:42:c9:78:7f:75:a5:1c:10:32:59:9d:73:
                    e8:a1:76:78:24:18:07:b6:fb:1d:15:10:70:97:bd:
                    1e:3d:62:bb:d4:b8:ca:1e:2c:4a:1e:4b:6c:2f:bd:
                    c3:e4:ce:75:75:c1:eb:36:24:4e:f4:be:d4:9b:5e:
                    c2:70:93:b0:f8:8a:b5:d3:a9:6a:d6:e8:7d:7e:12:
                    91:eb:ff:a8:52:8f:44:0f:0b:a0:39:87:cb:41:2d:
                    11:9f:b5:9e:31:d3:3f:2b:16:0d:ed:ef:d4:c1:0a:
                    9e:0e:6f:aa:03:da:f6:0a:40:1c:3e:af:50:d9:f0:
                    21:a1:74:e8:05:4b:08:8e:ca:cb:8d:2b:98:be:92:
                    95:89:1c:49:de:90:b2:8c:52:d0:75:b8:78:97:80:
                    1c:2a:6f:95:c7:0b:9e:35:3e:d2:da:ab:ef:c0:2b:
                    8d:61:f6:bb:8d:9b:48:1d:05:9a:ea:7a:00:c2:fb:
                    f2:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:FD:A0:F6:2E:B0:D5:DC:6D:E9:69:0D:2E:73:12:70:A6:BF:3F:D3
            X509v3 Authority Key Identifier:
                keyid:09:4B:14:F1:44:70:39:BD:F7:F9:DE:E5:FA:29:38:5C:1D:CE:95:9D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:bf:42:af:8d:ba:6e:02:52:fd:a2:b3:56:2f:01:95:0f:f0:
         04:fd:5c:0f:17:1d:28:46:b3:4d:49:c7:d6:1a:d1:36:29:3e:
         54:fa:75:2d:50:80:dc:f2:73:e3:67:ae:4d:3b:19:c9:64:85:
         01:b3:35:38:09:36:2c:e6:39:d0:6c:e3:11:0c:9b:97:f6:75:
         42:f9:06:82:dd:b7:40:7d:6e:d7:fb:e2:e2:76:59:65:dc:97:
         df:11:1b:24:d9:ae:24:e0:56:b7:57:13:20:4b:58:6d:ed:31:
         a9:af:35:10:5b:2c:44:02:9f:e1:ad:ab:8c:25:e3:73:39:3d:
         6d:d9:52:90:d9:59:fd:b6:58:db:68:a5:f4:ad:1b:72:9f:f9:
         ff:d2:b5:34:a3:c9:94:96:e4:2f:54:62:d7:31:97:c3:cc:2a:
         5a:41:38:20:2b:61:94:ac:5a:b6:d1:1f:11:18:a4:2c:ac:63:
         0a:c2:d2:d1:f1:d6:24:b2:08:9a:7c:30:25:f3:3b:10:25:2f:
         8f:23:6a:27:07:c8:16:29:c7:b8:76:81:79:f5:48:a7:47:97:
         7f:b3:5c:6f:8d:67:34:90:c0:c8:98:05:a4:80:e6:70:4c:49:
         b1:a7:c0:54:83:ab:48:0d:33:92:25:cc:e0:83:4f:87:4b:8f:
         92:cf:29:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----