Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/fb93ea-6163-47ec-8bdc-63d90e664822/1/T_TbtnXuCOi72XQHoafv2RkZ5zg.mft
File:                     T_TbtnXuCOi72XQHoafv2RkZ5zg.mft (raw, json)
Hash identifier:          ihyy5tyJ3frE35g79W5ZL3igPdLXSa8h73QMx+Shwnk=
Subject key identifier:   FB:B0:B5:CC:A7:55:A9:26:3A:A3:62:62:6B:65:70:FA:81:E8:ED:94
Authority key identifier: 4F:F4:DB:B6:75:EE:08:E8:BB:D9:74:07:A1:A7:EF:D9:19:19:E7:38
Certificate issuer:       /CN=4ff4dbb675ee08e8bbd97407a1a7efd91919e738
Certificate serial:       019CE55B1EB9B23C85141393ACA449176F9A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/T_TbtnXuCOi72XQHoafv2RkZ5zg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7d/fb93ea-6163-47ec-8bdc-63d90e664822/1/T_TbtnXuCOi72XQHoafv2RkZ5zg.mft
Manifest number:          117A
Signing time:             Fri 13 Mar 2026 04:01:19 +0000
Manifest this update:     Fri 13 Mar 2026 04:01:19 +0000
Manifest next update:     Sat 14 Mar 2026 04:01:19 +0000
Files and hashes:         1: T_TbtnXuCOi72XQHoafv2RkZ5zg.crl (hash: Sco99cQIje1NGk20n5Buz3zK7oL0D9V4655L2tWKAUw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7d/fb93ea-6163-47ec-8bdc-63d90e664822/1/T_TbtnXuCOi72XQHoafv2RkZ5zg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7d/fb93ea-6163-47ec-8bdc-63d90e664822/1/T_TbtnXuCOi72XQHoafv2RkZ5zg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/T_TbtnXuCOi72XQHoafv2RkZ5zg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Mar 2026 21:05:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:e5:5b:1e:b9:b2:3c:85:14:13:93:ac:a4:49:17:6f:9a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4ff4dbb675ee08e8bbd97407a1a7efd91919e738
        Validity
            Not Before: Mar 13 04:01:19 2026 GMT
            Not After : Mar 14 04:01:19 2026 GMT
        Subject: CN=fbb0b5cca755a9263aa362626b6570fa81e8ed94
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:ef:e1:e9:98:49:ad:3a:47:56:a0:e2:ec:99:
                    92:f5:18:03:df:f1:7a:fd:63:98:dd:4f:8f:5a:0a:
                    66:7c:f0:1a:7d:29:9e:df:ec:a2:fa:12:dc:c7:4f:
                    a7:a2:67:2a:31:1b:b8:86:0c:86:42:25:de:c6:e0:
                    2e:7d:52:64:b4:42:a8:56:a9:45:dc:19:03:57:0d:
                    8e:fd:e2:ae:99:29:9e:f2:ac:c8:31:32:d0:ca:09:
                    ac:2b:c9:03:20:83:4a:ff:ab:8c:65:1a:6e:f7:8a:
                    e0:56:89:93:00:9e:42:b4:2b:c0:11:cc:8a:86:05:
                    61:a4:e2:f1:5a:f0:2e:b4:78:02:58:4e:41:5d:aa:
                    ad:9d:58:8b:91:46:fb:c9:c0:9d:f9:75:09:ea:54:
                    38:a0:58:3a:ef:c3:e8:ea:5a:41:a2:c4:b3:9d:75:
                    a0:d5:42:a3:2f:b3:47:f1:40:c7:5b:19:68:3c:f1:
                    0c:c9:98:84:0c:19:74:e5:6c:1b:0f:f0:7d:32:ea:
                    f6:bb:e0:b9:46:71:6b:25:21:08:91:d4:f6:98:4c:
                    76:63:f6:b5:02:72:31:2a:60:1f:c8:97:83:d4:e9:
                    9e:9a:fb:10:06:8a:89:47:3b:3b:47:5b:92:b5:d9:
                    67:0b:34:a5:12:31:de:e7:37:fc:49:97:41:58:35:
                    86:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FB:B0:B5:CC:A7:55:A9:26:3A:A3:62:62:6B:65:70:FA:81:E8:ED:94
            X509v3 Authority Key Identifier:
                keyid:4F:F4:DB:B6:75:EE:08:E8:BB:D9:74:07:A1:A7:EF:D9:19:19:E7:38

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T_TbtnXuCOi72XQHoafv2RkZ5zg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fb93ea-6163-47ec-8bdc-63d90e664822/1/T_TbtnXuCOi72XQHoafv2RkZ5zg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/fb93ea-6163-47ec-8bdc-63d90e664822/1/T_TbtnXuCOi72XQHoafv2RkZ5zg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:6a:4b:34:05:80:de:f3:4b:2a:31:9f:2d:c9:8b:88:fb:e7:
         e4:e9:28:04:63:b4:1e:1b:a7:26:14:89:7c:fd:d1:bf:d0:71:
         fe:4d:9c:a7:56:e4:97:ab:59:67:c0:4f:32:58:fe:8c:45:e8:
         d7:dd:c9:42:45:02:26:ea:bc:ab:ef:34:d6:81:41:87:62:fd:
         47:46:e5:a2:a9:68:7e:31:6d:0e:e4:e2:e5:ad:32:9b:5c:c8:
         44:11:5f:a3:da:27:8f:b2:14:cb:3a:f5:90:e8:43:9c:40:13:
         61:83:cc:50:aa:51:c5:e1:e5:6a:4b:5e:6b:fb:fa:c1:fe:11:
         9b:12:04:6f:a8:40:c9:e8:9d:78:55:4f:a0:41:98:7c:78:b5:
         66:5a:ff:ee:14:dd:f1:9f:15:7f:6c:b5:e9:23:7c:5a:f3:ee:
         64:6d:79:17:97:7f:c1:19:47:5a:f7:40:c4:58:a8:e9:f0:40:
         03:c1:82:d7:d1:bc:ad:37:3b:a9:24:16:05:71:12:84:c6:4b:
         b5:ff:50:17:d4:65:36:f5:5a:73:77:d1:e2:34:37:cd:1b:ff:
         65:67:92:eb:60:02:d4:7a:66:d5:c8:16:40:48:d9:ce:2e:ec:
         23:34:b0:e8:c3:2d:b1:85:ac:03:27:cd:43:f2:eb:39:c9:f4:
         90:77:00:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----