Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
File:                     d11030Q8uAUXzkFQ3OImYpQPHXw.mft (raw, json)
Hash identifier:          7+MaeiY4hbW69oj0w5vpYAFbUgzYPJcBxKSlEaEbZeQ=
Subject key identifier:   75:22:5F:A4:59:1D:B0:30:95:BC:08:88:8A:39:18:1C:DA:F7:70:29
Authority key identifier: 77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C
Certificate issuer:       /CN=775d74df443cb80517ce4150dce22662940f1d7c
Certificate serial:       019D3AC125FFCB1C77DD98DB54B76045E8F7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
Manifest number:          0CCB
Signing time:             Sun 29 Mar 2026 18:00:29 +0000
Manifest this update:     Sun 29 Mar 2026 18:00:29 +0000
Manifest next update:     Mon 30 Mar 2026 18:00:29 +0000
Files and hashes:         1: d11030Q8uAUXzkFQ3OImYpQPHXw.crl (hash: 8TCG05kH0w9e6BysE1khP/I4OrpCb9CI+9mOwJN7U7w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:3a:c1:25:ff:cb:1c:77:dd:98:db:54:b7:60:45:e8:f7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=775d74df443cb80517ce4150dce22662940f1d7c
        Validity
            Not Before: Mar 29 18:00:29 2026 GMT
            Not After : Mar 30 18:00:29 2026 GMT
        Subject: CN=75225fa4591db03095bc08888a39181cdaf77029
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:5c:ff:87:0f:b6:f3:b8:89:9b:58:8a:3c:ad:
                    d2:89:c9:13:62:d9:c3:22:cb:1c:29:a3:a8:92:6a:
                    08:30:1f:93:44:4d:35:5d:b6:e2:ea:d9:86:db:58:
                    72:a1:31:e0:12:ce:4a:72:e7:7f:c8:7d:eb:71:ba:
                    9f:fa:04:25:5f:82:06:90:d3:8d:86:03:74:85:a2:
                    17:a6:b6:a2:a7:46:e4:70:3b:c6:8f:7a:6a:76:ff:
                    81:28:7f:bc:6d:c1:2e:e8:79:22:47:1a:8b:6c:e6:
                    37:32:d9:5d:b2:c0:2d:9e:ca:16:06:3a:ea:82:72:
                    01:1f:ba:bc:58:29:2f:17:80:d8:45:c7:c0:b9:e1:
                    72:5c:11:07:51:28:52:f0:17:57:45:a1:e0:b0:55:
                    ed:a5:4f:44:09:a8:4a:70:1f:2d:5c:c6:31:bc:f5:
                    82:c9:39:94:1f:42:81:a4:d7:aa:ba:22:b1:ce:20:
                    19:6d:2e:96:cf:52:f3:d4:44:f0:35:fd:10:54:ce:
                    68:05:77:65:68:7f:9c:81:3f:ce:a8:3e:2b:64:92:
                    81:c4:f8:e4:e6:ab:14:fa:b5:f7:16:3a:36:b6:0a:
                    0b:6c:e5:ce:bb:8f:f2:b4:d8:4f:aa:4d:93:4e:7f:
                    09:71:28:fc:34:f8:70:6b:60:28:66:77:21:ce:6f:
                    0c:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:22:5F:A4:59:1D:B0:30:95:BC:08:88:8A:39:18:1C:DA:F7:70:29
            X509v3 Authority Key Identifier:
                keyid:77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:96:0e:0c:f2:a2:cc:36:71:56:f8:e8:9b:33:14:1c:39:49:
         2e:eb:71:e5:65:6b:31:62:46:36:b9:a2:df:a6:57:fc:6d:51:
         a5:12:6f:68:a9:56:e9:05:c9:fa:04:22:94:4a:6e:58:c4:6b:
         22:25:83:9e:7e:2e:93:cd:79:8b:d9:02:58:3a:3c:e3:65:a5:
         d8:4c:0d:a1:4f:88:07:7a:f1:1f:2a:90:f8:21:65:0c:76:54:
         44:27:de:2a:3a:52:af:9b:58:30:bc:be:08:a2:67:8c:fd:5b:
         38:bb:50:b8:6c:b5:e2:c3:40:84:b9:b3:02:07:9c:63:0e:90:
         e3:13:59:c7:e1:54:85:91:12:c1:d6:9e:0a:37:26:82:0a:2d:
         a6:6a:3d:74:8f:7f:b9:4f:19:03:8a:fb:b3:0b:15:80:42:a6:
         7a:e0:f0:22:5a:d0:ab:be:be:9d:2b:06:7f:3f:7d:53:a5:0a:
         bf:50:f4:66:75:5a:1a:1a:18:33:e6:cc:ab:8d:4a:1e:8b:29:
         44:31:8c:fd:29:50:26:04:34:ee:60:fe:2a:c8:c4:19:c6:65:
         27:c2:da:e3:a4:34:4d:e1:0c:77:1e:66:1a:46:0e:e5:ba:d8:
         ab:9d:ff:d5:64:b3:f6:2b:5c:5d:27:a7:03:61:16:47:5d:3e:
         19:7a:f8:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----