Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/dcc22e-aab3-4e17-a4a0-d87017d7a6ac/1/aWZRzL2U9r6et0MyEiM1yrvvw5o.mft
File:                     aWZRzL2U9r6et0MyEiM1yrvvw5o.mft (raw, json)
Hash identifier:          tB45YLQ/U32gEd+rP5okUGTbv05LyiHiHIBGFhIx7a0=
Subject key identifier:   E8:18:03:DF:24:9E:F0:05:82:58:D7:DC:0E:52:95:7F:9E:4D:9A:E9
Authority key identifier: 69:66:51:CC:BD:94:F6:BE:9E:B7:43:32:12:23:35:CA:BB:EF:C3:9A
Certificate issuer:       /CN=696651ccbd94f6be9eb74332122335cabbefc39a
Certificate serial:       019D38D36CE26E64E61B44836836862CB669
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aWZRzL2U9r6et0MyEiM1yrvvw5o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/66/dcc22e-aab3-4e17-a4a0-d87017d7a6ac/1/aWZRzL2U9r6et0MyEiM1yrvvw5o.mft
Manifest number:          07BC
Signing time:             Sun 29 Mar 2026 09:01:13 +0000
Manifest this update:     Sun 29 Mar 2026 09:01:13 +0000
Manifest next update:     Mon 30 Mar 2026 09:01:13 +0000
Files and hashes:         1: aWZRzL2U9r6et0MyEiM1yrvvw5o.crl (hash: lvCmWSbxyFQtRaBxS1pM0l1V+bsU6Y3f6Fu++nqeV0A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/66/dcc22e-aab3-4e17-a4a0-d87017d7a6ac/1/aWZRzL2U9r6et0MyEiM1yrvvw5o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/66/dcc22e-aab3-4e17-a4a0-d87017d7a6ac/1/aWZRzL2U9r6et0MyEiM1yrvvw5o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aWZRzL2U9r6et0MyEiM1yrvvw5o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:d3:6c:e2:6e:64:e6:1b:44:83:68:36:86:2c:b6:69
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=696651ccbd94f6be9eb74332122335cabbefc39a
        Validity
            Not Before: Mar 29 09:01:13 2026 GMT
            Not After : Mar 30 09:01:13 2026 GMT
        Subject: CN=e81803df249ef0058258d7dc0e52957f9e4d9ae9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:2d:1c:df:43:95:11:56:cb:db:ed:8e:a6:fd:
                    67:c5:9d:25:43:20:ad:b2:07:6f:36:53:aa:97:32:
                    bb:d2:c6:60:36:43:b2:c7:58:b9:a9:a9:cd:05:fe:
                    bd:37:73:2c:93:5d:7e:1c:20:1d:4a:ef:53:6d:09:
                    dd:f2:97:86:68:c3:34:94:b8:9b:ff:0b:79:29:79:
                    b4:7e:b5:d0:5c:ae:a6:af:06:5d:93:20:04:0d:57:
                    48:6b:9b:6a:f3:43:f0:31:bb:56:a2:72:16:84:02:
                    73:42:95:c5:09:55:74:02:5f:e2:3b:34:81:ae:61:
                    79:b8:ea:30:c0:07:b2:78:d4:c0:e5:10:7c:0e:23:
                    ea:05:9d:e0:1f:1c:0f:60:d7:70:75:9d:fa:b7:60:
                    99:20:19:93:d9:a0:71:a7:65:de:fe:f9:85:58:07:
                    8c:2d:5e:d6:fc:93:ce:26:46:5a:9a:1b:3c:a3:4b:
                    2c:b9:e8:0b:f3:29:e4:a7:01:a4:c9:1e:62:65:31:
                    24:a0:84:44:2b:f6:3d:2b:19:d6:7e:fb:03:a7:db:
                    6b:8b:a9:3e:59:42:29:79:9f:43:0e:1a:45:3c:10:
                    87:ac:31:45:c3:65:c9:ba:aa:f2:0c:80:6c:94:ea:
                    2d:84:65:bf:7b:07:b2:b3:e5:39:88:d9:a2:d2:c9:
                    c2:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:18:03:DF:24:9E:F0:05:82:58:D7:DC:0E:52:95:7F:9E:4D:9A:E9
            X509v3 Authority Key Identifier:
                keyid:69:66:51:CC:BD:94:F6:BE:9E:B7:43:32:12:23:35:CA:BB:EF:C3:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aWZRzL2U9r6et0MyEiM1yrvvw5o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/dcc22e-aab3-4e17-a4a0-d87017d7a6ac/1/aWZRzL2U9r6et0MyEiM1yrvvw5o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/66/dcc22e-aab3-4e17-a4a0-d87017d7a6ac/1/aWZRzL2U9r6et0MyEiM1yrvvw5o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:e0:50:01:31:7c:dc:99:7d:f9:33:b2:5e:ac:76:23:4d:18:
         5e:6c:79:17:02:71:79:7f:d4:11:14:4c:5e:c4:9b:9a:81:ab:
         72:ca:e2:b0:d0:7e:94:fc:9a:d0:9d:bf:70:72:84:76:1a:d2:
         91:35:91:7e:0c:3b:0f:14:35:63:02:16:20:74:3a:ff:31:de:
         fd:1c:5a:f7:22:b5:ed:e2:25:e1:e2:c8:00:03:16:ed:09:5f:
         3b:be:f7:8f:94:8c:4c:87:7c:17:8d:53:dd:32:d0:fa:a1:4b:
         b6:17:dd:00:15:09:1a:ef:73:c2:eb:4c:75:e5:6c:25:e7:df:
         49:50:64:49:48:5d:46:30:81:5d:12:c2:4f:5f:c5:18:6e:e5:
         ff:2f:af:a1:b5:48:61:c0:31:f6:ea:b3:f5:65:44:d8:1b:7f:
         99:82:de:f1:c1:f9:eb:86:4c:e6:72:4d:af:2a:11:78:46:2b:
         3c:d9:ac:8a:b8:76:ac:cf:09:13:b6:67:0e:43:ed:fb:e4:18:
         0e:a2:44:8c:71:cf:9f:1b:d1:98:48:5a:c9:84:e9:16:8a:f7:
         5d:1d:4b:3c:77:9a:a7:68:de:df:83:3e:db:6f:51:f7:f8:e4:
         6b:c8:fb:5d:e3:22:66:1a:ee:6d:25:bd:41:b3:28:c9:42:ef:
         c9:bc:53:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----