Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/69f1e5-28a3-4008-9dcd-5c47ca28112b/1/vkFhezq6Mltoxn6z0ghK3RnmTt8.mft
File:                     vkFhezq6Mltoxn6z0ghK3RnmTt8.mft (raw, json)
Hash identifier:          ZCC/BJiRAE3rVhPjRDk/gbuwX1JGl0ReiyOMjJ2vInE=
Subject key identifier:   06:CE:55:2A:61:CA:8F:05:E1:62:DE:BE:C7:81:AA:98:91:52:03:0E
Authority key identifier: BE:41:61:7B:3A:BA:32:5B:68:C6:7E:B3:D2:08:4A:DD:19:E6:4E:DF
Certificate issuer:       /CN=be41617b3aba325b68c67eb3d2084add19e64edf
Certificate serial:       019D371BA503CB0FBDE2716ABC41AA505A38
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vkFhezq6Mltoxn6z0ghK3RnmTt8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/77/69f1e5-28a3-4008-9dcd-5c47ca28112b/1/vkFhezq6Mltoxn6z0ghK3RnmTt8.mft
Manifest number:          0175
Signing time:             Sun 29 Mar 2026 01:00:51 +0000
Manifest this update:     Sun 29 Mar 2026 01:00:51 +0000
Manifest next update:     Mon 30 Mar 2026 01:00:51 +0000
Files and hashes:         1: vkFhezq6Mltoxn6z0ghK3RnmTt8.crl (hash: DpkRyqtR8c5zmF5SS1SdefX1/89h7Zaif0KAnmjQbio=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/77/69f1e5-28a3-4008-9dcd-5c47ca28112b/1/vkFhezq6Mltoxn6z0ghK3RnmTt8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/77/69f1e5-28a3-4008-9dcd-5c47ca28112b/1/vkFhezq6Mltoxn6z0ghK3RnmTt8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vkFhezq6Mltoxn6z0ghK3RnmTt8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 01:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:37:1b:a5:03:cb:0f:bd:e2:71:6a:bc:41:aa:50:5a:38
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=be41617b3aba325b68c67eb3d2084add19e64edf
        Validity
            Not Before: Mar 29 01:00:51 2026 GMT
            Not After : Mar 30 01:00:51 2026 GMT
        Subject: CN=06ce552a61ca8f05e162debec781aa989152030e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:1b:6c:02:f9:af:9f:4a:86:39:73:c5:74:40:
                    8a:cf:d1:d7:cd:85:48:9c:59:24:e4:18:6b:75:1b:
                    99:cc:60:3a:2d:84:3e:35:07:48:54:0f:44:55:63:
                    5d:70:3c:1d:c6:15:08:ac:11:5f:82:a3:a0:17:c8:
                    41:cc:2f:84:44:61:2c:b4:42:6c:13:aa:2b:cf:21:
                    02:1e:e4:73:a8:af:6a:65:bc:26:e9:a2:32:10:e1:
                    2d:95:a1:cd:5a:d5:25:9e:b3:43:11:fd:97:06:81:
                    49:04:c8:ef:b0:08:0e:c0:c8:16:aa:65:ed:21:0f:
                    47:45:fc:59:4e:1e:fd:c8:26:de:98:3f:34:22:62:
                    4c:0f:fa:fd:f7:d0:9d:4e:cb:f8:7e:20:9e:dd:dd:
                    1d:37:17:d4:a6:fb:57:ef:b7:fb:d4:9e:28:01:5d:
                    35:77:c8:b4:2d:ae:95:12:c1:e8:bc:6c:f8:e1:4d:
                    10:97:54:4d:48:88:88:f5:73:4a:d2:a1:02:88:4e:
                    8f:1b:1b:ef:ba:f4:0b:ec:06:8b:4c:e3:33:f7:e0:
                    09:32:e5:ef:55:0e:89:4d:4f:32:08:83:0c:23:11:
                    d1:ad:2f:3c:5d:76:88:96:ee:08:05:fe:d8:bc:4b:
                    e3:37:1d:5e:6f:44:84:d4:ee:be:ea:34:11:76:c5:
                    ab:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:CE:55:2A:61:CA:8F:05:E1:62:DE:BE:C7:81:AA:98:91:52:03:0E
            X509v3 Authority Key Identifier:
                keyid:BE:41:61:7B:3A:BA:32:5B:68:C6:7E:B3:D2:08:4A:DD:19:E6:4E:DF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkFhezq6Mltoxn6z0ghK3RnmTt8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69f1e5-28a3-4008-9dcd-5c47ca28112b/1/vkFhezq6Mltoxn6z0ghK3RnmTt8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69f1e5-28a3-4008-9dcd-5c47ca28112b/1/vkFhezq6Mltoxn6z0ghK3RnmTt8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:1e:3f:c0:1e:42:4c:1b:46:6e:99:d0:7b:83:54:93:3e:5b:
         25:a6:48:9d:a9:49:e5:7f:95:23:8b:52:d8:4a:bc:e8:59:07:
         52:8b:3e:80:16:d5:65:8b:56:f8:be:be:d2:58:6c:f4:1d:de:
         0c:ab:d1:b7:46:d3:10:9f:1f:f7:0d:61:63:a6:23:42:bb:8d:
         84:93:1d:73:50:8d:d9:53:27:f5:6c:ce:c0:c2:f9:1c:c6:d2:
         2c:84:32:95:11:8a:1c:3b:aa:40:9d:c9:99:28:01:d3:a3:31:
         3b:95:27:48:23:05:3b:66:11:46:d8:b4:25:46:ee:0d:b9:36:
         87:6c:25:1b:55:50:da:65:84:3f:2c:7b:ef:13:40:5b:d0:f1:
         a0:35:8f:53:db:9d:06:df:14:66:f5:59:a0:67:b0:5d:6c:28:
         4d:c3:98:4d:68:49:72:35:24:50:ea:11:26:10:75:21:a7:a6:
         03:7b:71:2c:1c:18:2a:b2:25:be:fc:42:69:ad:7a:c7:41:0d:
         b0:97:6e:a9:65:3f:ae:89:ee:a8:1c:e1:48:90:f0:9e:d9:27:
         78:5d:ca:85:dd:c1:df:dc:2d:fc:4a:b0:2c:87:42:bd:93:e7:
         40:d4:de:8a:51:70:2e:4d:ee:11:c0:22:35:2a:a5:09:73:99:
         28:0b:60:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----