Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.mft
File:                     4WU0PZW9Tbww89ciSVQanUfnbZE.mft (raw, json)
Hash identifier:          sVMUIl486Iw2z6k+TQPaw0DciIHHIvR6DF8nNhS4ejc=
Subject key identifier:   1E:1D:AC:5E:9C:C9:DB:02:71:76:72:3A:84:79:8A:8D:30:CC:69:C6
Authority key identifier: E1:65:34:3D:95:BD:4D:BC:30:F3:D7:22:49:54:1A:9D:47:E7:6D:91
Certificate issuer:       /CN=e165343d95bd4dbc30f3d72249541a9d47e76d91
Certificate serial:       019D38660E09468753FE714A85622AF71707
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4WU0PZW9Tbww89ciSVQanUfnbZE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.mft
Manifest number:          1192
Signing time:             Sun 29 Mar 2026 07:01:45 +0000
Manifest this update:     Sun 29 Mar 2026 07:01:45 +0000
Manifest next update:     Mon 30 Mar 2026 07:01:45 +0000
Files and hashes:         1: 4WU0PZW9Tbww89ciSVQanUfnbZE.crl (hash: a18RnvQc36Qf15jib2mGHa4dZDMLqIELapBsQVz46dY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4WU0PZW9Tbww89ciSVQanUfnbZE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:66:0e:09:46:87:53:fe:71:4a:85:62:2a:f7:17:07
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e165343d95bd4dbc30f3d72249541a9d47e76d91
        Validity
            Not Before: Mar 29 07:01:45 2026 GMT
            Not After : Mar 30 07:01:45 2026 GMT
        Subject: CN=1e1dac5e9cc9db027176723a84798a8d30cc69c6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:88:32:c5:f0:fd:16:a4:77:63:29:a2:b4:67:
                    a2:55:63:1f:98:5a:48:81:cd:b9:2a:fe:07:d0:78:
                    b9:02:f1:a3:39:7b:6f:4d:cf:e2:1e:81:c3:a4:74:
                    fe:bc:d8:35:d5:e8:f5:eb:fd:c5:00:53:a1:8f:be:
                    48:23:95:fb:62:ef:4b:ed:cb:7b:7a:60:d8:f7:37:
                    83:6c:87:9d:9b:f7:8b:74:00:20:e0:ce:41:1c:2e:
                    d7:6e:3e:fa:8c:d1:84:b9:16:ac:f1:c7:89:52:21:
                    5c:57:c7:c2:49:91:96:a0:2b:26:4a:7f:d8:d2:5c:
                    ce:88:61:ae:5c:9c:29:9a:b2:d7:e7:5c:d1:95:78:
                    47:33:aa:d8:23:38:05:4a:a2:25:a0:aa:81:db:98:
                    8f:2f:e5:c4:fe:84:2c:75:1d:aa:75:b5:83:5f:89:
                    7f:5a:94:65:b7:26:cd:9e:5c:51:62:59:59:d6:b6:
                    bd:91:59:57:f7:f5:52:8f:ee:95:85:aa:c7:85:ae:
                    6f:eb:4c:c0:0e:20:f5:c3:93:73:67:29:16:0a:de:
                    18:45:96:ed:d1:e1:fc:71:a8:85:9f:f8:01:cf:7a:
                    51:f4:d8:b3:bf:59:ae:a9:15:3f:7b:8e:d4:db:42:
                    5f:d9:6a:5b:9d:5b:b4:50:6a:e9:5c:0c:2d:cb:75:
                    b7:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:1D:AC:5E:9C:C9:DB:02:71:76:72:3A:84:79:8A:8D:30:CC:69:C6
            X509v3 Authority Key Identifier:
                keyid:E1:65:34:3D:95:BD:4D:BC:30:F3:D7:22:49:54:1A:9D:47:E7:6D:91

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4WU0PZW9Tbww89ciSVQanUfnbZE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/7d26b8-f747-4d9a-9aa2-6e2c053d9993/1/4WU0PZW9Tbww89ciSVQanUfnbZE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ce:17:ae:e5:2c:3e:9c:70:6e:2e:4c:04:4b:80:91:7f:cd:45:
         44:b5:8e:02:5e:47:61:1c:39:f2:16:29:5c:3c:50:59:6b:99:
         cb:60:0f:f7:d8:1b:2b:a7:9d:b0:7d:07:9c:07:ac:67:32:cb:
         42:73:d9:6c:ba:76:68:a8:62:63:ed:7f:2f:fc:10:16:26:80:
         52:fe:d7:b1:86:3c:08:8f:3b:15:6f:7f:bb:d3:f9:88:08:c2:
         48:62:1e:4c:64:17:46:10:83:d0:f3:86:49:45:6a:4a:e0:13:
         72:a7:6f:c3:1f:f4:0e:08:59:fa:48:18:4c:18:f8:cf:f9:4d:
         dd:27:fd:3f:62:d0:62:ee:ae:98:77:f9:db:d2:0b:8a:1e:d3:
         9a:78:98:e5:e5:df:3c:cb:e3:10:60:0b:85:56:16:35:07:32:
         ba:a9:7f:8c:c6:0f:f3:6c:67:81:97:63:33:ca:db:c1:57:16:
         22:18:d5:99:63:39:33:41:4f:f9:21:bb:ca:03:46:70:97:c7:
         b9:43:32:4a:c5:4b:44:22:8b:b8:51:4c:dd:b9:8c:a5:73:ad:
         72:97:13:2c:a7:d4:58:b5:8c:a4:18:a5:00:a0:75:7d:e0:45:
         6e:46:6c:a9:d9:d7:3a:63:62:84:e1:04:89:af:c6:75:c1:67:
         1f:aa:e4:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----