Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/30f410-82bb-411a-b2bc-c4b1446c0d8b/1/3xgOBUPUcdzw2Dhg1r5jlcK4iIg.mft
File:                     3xgOBUPUcdzw2Dhg1r5jlcK4iIg.mft (raw, json)
Hash identifier:          GWiV3LO1rABKti7T2u0+Brv4Em+ZpiXM/vo6SEumPdU=
Subject key identifier:   AB:21:FE:E9:58:C5:CC:18:8D:A4:87:30:DD:D4:3D:6C:1A:6D:F3:AF
Authority key identifier: DF:18:0E:05:43:D4:71:DC:F0:D8:38:60:D6:BE:63:95:C2:B8:88:88
Certificate issuer:       /CN=df180e0543d471dcf0d83860d6be6395c2b88888
Certificate serial:       019E2F973F58039CC25859B081ECBAABF5BE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3xgOBUPUcdzw2Dhg1r5jlcK4iIg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/91/30f410-82bb-411a-b2bc-c4b1446c0d8b/1/3xgOBUPUcdzw2Dhg1r5jlcK4iIg.mft
Manifest number:          0C6B
Signing time:             Sat 16 May 2026 07:01:41 +0000
Manifest this update:     Sat 16 May 2026 07:01:41 +0000
Manifest next update:     Sun 17 May 2026 07:01:41 +0000
Files and hashes:         1: 3xgOBUPUcdzw2Dhg1r5jlcK4iIg.crl (hash: Ujlyhz+0WTgl6cLjXIImqsidC5FnyYwlirWHRjwdUCs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/91/30f410-82bb-411a-b2bc-c4b1446c0d8b/1/3xgOBUPUcdzw2Dhg1r5jlcK4iIg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/91/30f410-82bb-411a-b2bc-c4b1446c0d8b/1/3xgOBUPUcdzw2Dhg1r5jlcK4iIg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3xgOBUPUcdzw2Dhg1r5jlcK4iIg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:01:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:97:3f:58:03:9c:c2:58:59:b0:81:ec:ba:ab:f5:be
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df180e0543d471dcf0d83860d6be6395c2b88888
        Validity
            Not Before: May 16 07:01:41 2026 GMT
            Not After : May 17 07:01:41 2026 GMT
        Subject: CN=ab21fee958c5cc188da48730ddd43d6c1a6df3af
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:80:66:b2:88:c2:ce:6b:33:6b:53:4b:5a:dc:bb:
                    79:0c:9a:7a:9a:15:b8:f3:8c:db:e4:c0:86:ba:d8:
                    a4:cf:2c:5e:82:b2:71:e9:20:15:34:d3:5a:3e:f3:
                    45:b2:bb:59:c9:ae:34:47:1f:ef:63:a3:5b:60:6c:
                    2a:7f:74:f9:f1:46:ba:d0:b5:13:fc:38:7f:b5:d8:
                    db:2e:48:d1:58:88:d3:39:4e:08:aa:02:81:b3:cc:
                    45:41:f4:8e:e0:0e:53:03:b3:88:33:48:85:1f:1a:
                    a5:68:3b:ac:e8:f4:b1:e2:33:dd:88:0e:2f:10:b6:
                    43:5d:78:67:28:22:ac:62:cf:7b:28:29:b8:14:82:
                    5d:43:24:7d:5f:36:38:c3:77:3e:04:32:2a:7c:30:
                    d3:e3:42:07:57:85:90:30:ad:b6:7c:51:8b:27:eb:
                    8c:4d:b0:64:15:29:74:46:fa:7e:8d:bc:b8:2d:23:
                    92:a6:1b:6c:90:ee:bd:d6:dd:16:53:d1:4e:3f:cc:
                    7e:e6:01:78:7b:c6:b3:f6:f1:81:6e:ce:53:0b:c4:
                    92:dd:59:d1:dd:7c:d6:81:69:78:d5:90:bd:e5:cf:
                    83:c9:96:f2:d5:5b:4c:63:22:53:7b:3d:72:22:b1:
                    cd:1c:49:3e:fb:82:53:cf:82:c6:36:f0:bc:09:9b:
                    7b:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:21:FE:E9:58:C5:CC:18:8D:A4:87:30:DD:D4:3D:6C:1A:6D:F3:AF
            X509v3 Authority Key Identifier:
                keyid:DF:18:0E:05:43:D4:71:DC:F0:D8:38:60:D6:BE:63:95:C2:B8:88:88

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3xgOBUPUcdzw2Dhg1r5jlcK4iIg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/30f410-82bb-411a-b2bc-c4b1446c0d8b/1/3xgOBUPUcdzw2Dhg1r5jlcK4iIg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/91/30f410-82bb-411a-b2bc-c4b1446c0d8b/1/3xgOBUPUcdzw2Dhg1r5jlcK4iIg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:9d:4c:8f:bd:14:fa:be:2d:80:4d:46:c9:ed:2f:d6:ff:9e:
         ea:81:0b:18:11:43:93:28:ce:6e:77:0a:52:2d:ce:0a:27:3c:
         75:8a:df:21:75:e5:37:1a:fa:c8:37:aa:c7:d8:ed:81:88:18:
         17:b9:e3:06:62:32:19:24:ad:40:a7:6e:db:54:62:86:29:5b:
         a7:7a:4b:fd:0b:9b:9d:38:20:2b:3a:89:7b:b1:1c:c1:ed:a3:
         45:00:00:80:a2:d7:88:b5:e5:11:63:05:55:46:20:d2:c3:2e:
         db:ca:2c:45:2b:6f:c7:2e:c8:63:73:55:56:76:4b:cc:94:21:
         a6:19:c6:3f:a6:00:c0:23:cf:f5:4b:62:a0:ea:b8:cd:01:ea:
         ec:23:8c:37:8c:37:c7:44:c9:84:3b:4b:01:05:44:6b:e8:ac:
         0e:4f:3b:fa:15:a4:b4:fb:f3:2c:b7:33:a6:21:36:15:5b:1a:
         1e:7b:4d:f9:29:cc:45:12:76:6d:39:64:3d:13:a8:df:09:cc:
         8d:bf:5f:0c:c6:3c:2c:6e:0b:96:cf:25:23:48:6e:04:19:c6:
         02:39:a7:c4:23:a4:38:91:de:74:63:08:15:53:dc:14:99:50:
         3d:05:02:9d:dc:31:48:08:3a:80:9f:7d:ca:ac:e6:69:20:56:
         51:70:2d:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vlz9YA5zCWFmwgey6q/W+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmMTgwZTA1NDNkNDcxZGNmMGQ4Mzg2MGQ2YmU2Mzk1YzJi
ODg4ODgwHhcNMjYwNTE2MDcwMTQxWhcNMjYwNTE3MDcwMTQxWjAzMTEwLwYDVQQD
EyhhYjIxZmVlOTU4YzVjYzE4OGRhNDg3MzBkZGQ0M2Q2YzFhNmRmM2FmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgGayiMLOazNrU0ta3Lt5DJp6mhW4
84zb5MCGutikzyxegrJx6SAVNNNaPvNFsrtZya40Rx/vY6NbYGwqf3T58Ua60LUT
/Dh/tdjbLkjRWIjTOU4IqgKBs8xFQfSO4A5TA7OIM0iFHxqlaDus6PSx4jPdiA4v
ELZDXXhnKCKsYs97KCm4FIJdQyR9XzY4w3c+BDIqfDDT40IHV4WQMK22fFGLJ+uM
TbBkFSl0Rvp+jby4LSOSphtskO691t0WU9FOP8x+5gF4e8az9vGBbs5TC8SS3VnR
3XzWgWl41ZC95c+DyZby1VtMYyJTez1yIrHNHEk++4JTz4LGNvC8CZt7vQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKsh/ulYxcwYjaSHMN3UPWwabfOvMB8GA1UdIwQY
MBaAFN8YDgVD1HHc8Ng4YNa+Y5XCuIiIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3hnT0JVUFVjZHp3MkRoZzFyNWpsY0s0aUlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS8zMGY0MTAtODJiYi00MTFhLWIyYmMt
YzRiMTQ0NmMwZDhiLzEvM3hnT0JVUFVjZHp3MkRoZzFyNWpsY0s0aUlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS8zMGY0MTAtODJiYi00MTFhLWIyYmMtYzRiMTQ0NmMwZDhi
LzEvM3hnT0JVUFVjZHp3MkRoZzFyNWpsY0s0aUlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEZ1Mj70U
+r4tgE1Gye0v1v+e6oELGBFDkyjObncKUi3OCic8dYrfIXXlNxr6yDeqx9jtgYgY
F7njBmIyGSStQKdu21Rihilbp3pL/QubnTggKzqJe7Ecwe2jRQAAgKLXiLXlEWMF
VUYg0sMu28osRStvxy7IY3NVVnZLzJQhphnGP6YAwCPP9UtioOq4zQHq7COMN4w3
x0TJhDtLAQVEa+isDk87+hWktPvzLLczpiE2FVsaHntN+SnMRRJ2bTlkPROo3wnM
jb9fDMY8LG4Lls8lI0huBBnGAjmnxCOkOJHedGMIFVPcFJlQPQUCndwxSAg6gJ99
yqzmaSBWUXAtHQ==
-----END CERTIFICATE-----