Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft
File:                     A1mTnOHGqpvru2WA4VbuvYcd87I.mft (raw, json)
Hash identifier:          mwnBcUP3bCA+nGblbmDRzJuSzUHo1IjCeAHQqwGCMtw=
Subject key identifier:   B3:53:50:98:1B:36:EF:C5:2F:1D:3E:08:11:5D:52:05:7A:33:09:CB
Authority key identifier: 03:59:93:9C:E1:C6:AA:9B:EB:BB:65:80:E1:56:EE:BD:87:1D:F3:B2
Certificate issuer:       /CN=0359939ce1c6aa9bebbb6580e156eebd871df3b2
Certificate serial:       019D3AC188D3E03444C0F6497DEC53C29D5E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A1mTnOHGqpvru2WA4VbuvYcd87I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft
Manifest number:          06E7
Signing time:             Sun 29 Mar 2026 18:00:55 +0000
Manifest this update:     Sun 29 Mar 2026 18:00:55 +0000
Manifest next update:     Mon 30 Mar 2026 18:00:55 +0000
Files and hashes:         1: A1mTnOHGqpvru2WA4VbuvYcd87I.crl (hash: p+WeXBGtx0k4/UgOpn2y31CijXpKaQ45KaDOGMCty+o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A1mTnOHGqpvru2WA4VbuvYcd87I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:3a:c1:88:d3:e0:34:44:c0:f6:49:7d:ec:53:c2:9d:5e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0359939ce1c6aa9bebbb6580e156eebd871df3b2
        Validity
            Not Before: Mar 29 18:00:55 2026 GMT
            Not After : Mar 30 18:00:55 2026 GMT
        Subject: CN=b35350981b36efc52f1d3e08115d52057a3309cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:a9:75:a8:ad:49:6c:c6:29:77:4d:51:94:70:
                    46:ea:c6:3d:03:f3:0d:e2:c5:0c:a1:8a:9e:f3:a4:
                    4c:a7:a8:20:f8:db:3f:e6:95:95:60:91:bd:db:3f:
                    73:c6:ce:91:d6:79:70:13:1a:93:ac:7d:90:63:c2:
                    89:90:44:3f:16:f5:86:1d:09:59:20:c8:df:e2:1f:
                    74:0b:37:68:be:14:9d:f1:32:b2:09:7a:12:af:d7:
                    a0:d2:0a:48:93:61:12:bd:ed:16:24:4f:f8:56:b6:
                    3a:ac:e3:d8:21:58:0f:31:34:e0:76:4b:49:f7:58:
                    c3:b4:4c:f1:ea:e5:d3:ed:31:e1:34:71:44:1f:3f:
                    e9:1a:ee:f2:0c:93:3c:87:2f:c0:63:af:2a:e7:2c:
                    08:89:de:6c:04:b3:06:58:10:d3:ec:76:36:86:78:
                    ac:6a:89:a7:eb:87:9f:72:99:21:e7:af:c0:3d:10:
                    05:fa:aa:a5:f7:28:6d:f2:1f:46:b9:40:73:2e:40:
                    26:1a:47:c5:ff:89:a2:7a:15:3e:a5:3d:56:cb:3a:
                    48:e3:df:e4:54:12:fd:1c:ac:be:f6:5c:01:7d:52:
                    dd:c1:ca:62:f6:c9:be:a0:06:60:14:e7:d5:88:ff:
                    89:a1:7b:1e:5f:7a:27:6d:a2:61:29:01:18:f9:76:
                    18:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:53:50:98:1B:36:EF:C5:2F:1D:3E:08:11:5D:52:05:7A:33:09:CB
            X509v3 Authority Key Identifier:
                keyid:03:59:93:9C:E1:C6:AA:9B:EB:BB:65:80:E1:56:EE:BD:87:1D:F3:B2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1mTnOHGqpvru2WA4VbuvYcd87I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:fb:9c:5a:51:bd:b3:a0:b8:4b:1c:2f:97:a3:4e:6e:94:c2:
         34:bd:59:16:65:cd:60:99:96:de:c6:39:f8:2b:a8:45:57:9a:
         f3:b6:b4:21:d1:b5:2f:b5:4a:fe:e0:9f:83:27:5f:32:a0:2e:
         b2:e1:49:89:e1:fa:33:b2:51:5e:69:92:93:d1:8a:07:45:97:
         ca:c6:84:31:f3:c3:2c:13:52:de:74:89:9e:45:c4:18:c6:52:
         5c:bc:a2:28:6e:55:2a:5f:08:07:2b:0d:36:4d:1c:c1:23:35:
         bc:08:c6:7f:2c:37:7b:12:8c:30:ef:2d:1f:97:4b:a3:22:b3:
         cc:9f:0b:cc:55:bf:b3:b5:c3:5d:55:52:fa:23:1c:ef:7b:ff:
         2e:6a:72:7a:3e:cf:5c:17:5f:ab:53:7d:63:5e:32:56:81:4a:
         26:49:15:e0:3a:20:6c:c6:87:77:87:f9:56:57:56:06:9e:66:
         72:18:4a:fd:e7:a7:8a:82:2f:e0:cd:71:ad:82:83:a8:03:bd:
         bf:a5:8f:06:29:f9:76:a4:d9:c8:21:96:37:56:93:e7:00:9d:
         52:c4:d9:19:3c:c9:67:f7:2e:f3:59:cb:44:d2:35:eb:c0:0e:
         53:68:03:ed:3d:66:5c:5c:c3:6b:20:96:55:e9:25:6a:59:94:
         f3:8f:46:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----