Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft
File:                     kyIxLx0huzs4bKOqlzrGzSVLcDk.mft (raw, json)
Hash identifier:          DJx2fg0/L+UxNa1xNJ7EKJW8eEz59YD78tuVze6R6Eg=
Subject key identifier:   9A:37:5F:EF:5C:61:2A:61:F4:23:49:80:53:1B:DD:51:17:0B:55:A3
Authority key identifier: 93:22:31:2F:1D:21:BB:3B:38:6C:A3:AA:97:3A:C6:CD:25:4B:70:39
Certificate issuer:       /CN=9322312f1d21bb3b386ca3aa973ac6cd254b7039
Certificate serial:       019D390A4B64B01C3F41DCD769C31A31463D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kyIxLx0huzs4bKOqlzrGzSVLcDk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft
Manifest number:          188B
Signing time:             Sun 29 Mar 2026 10:01:09 +0000
Manifest this update:     Sun 29 Mar 2026 10:01:09 +0000
Manifest next update:     Mon 30 Mar 2026 10:01:09 +0000
Files and hashes:         1: kyIxLx0huzs4bKOqlzrGzSVLcDk.crl (hash: Bl8XlTJI7lCIcnQxxCTwqTrvmGsasWv3vguVU7R1EUg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kyIxLx0huzs4bKOqlzrGzSVLcDk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:39:0a:4b:64:b0:1c:3f:41:dc:d7:69:c3:1a:31:46:3d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9322312f1d21bb3b386ca3aa973ac6cd254b7039
        Validity
            Not Before: Mar 29 10:01:09 2026 GMT
            Not After : Mar 30 10:01:09 2026 GMT
        Subject: CN=9a375fef5c612a61f4234980531bdd51170b55a3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:8f:c0:eb:7e:06:88:78:39:ab:6e:80:55:ec:
                    7c:ff:8a:66:e1:7a:5c:d5:59:83:d4:13:af:7f:36:
                    a0:24:c7:8b:03:e6:5d:3d:7e:53:c9:7f:76:61:41:
                    99:59:84:aa:d7:ed:c8:fa:9a:57:ff:0b:e9:4d:50:
                    99:2e:a3:bb:53:38:0b:fa:fe:9e:9f:84:d4:05:06:
                    f6:67:00:1b:2b:33:9e:92:82:d5:5d:ac:76:b3:8f:
                    1a:bf:89:30:8d:5b:7c:a3:c0:03:96:8e:ce:31:47:
                    ec:28:ad:30:cf:83:71:bb:c0:f4:b4:46:81:b3:71:
                    13:26:59:74:22:9e:0a:57:a2:5c:0c:f8:73:87:16:
                    1e:d7:5e:af:2f:4e:19:fb:da:0b:85:46:e7:39:d8:
                    b6:d9:51:b5:e5:ea:20:5a:37:2b:28:de:20:34:de:
                    af:64:74:83:17:3f:9a:14:07:ff:42:4f:e8:21:c9:
                    1a:2d:b3:a4:32:b9:2c:1d:78:5c:e1:b5:12:95:88:
                    ce:7a:43:93:b5:e2:55:7b:34:24:93:81:87:ad:12:
                    05:b6:a0:c6:d7:3a:e1:e5:1c:2c:0b:98:d7:05:24:
                    70:25:ab:3f:a2:2d:a1:c2:e3:c5:0c:9e:f6:ef:6f:
                    20:8a:1d:c7:3b:59:48:ee:51:5b:7b:2f:15:d7:f3:
                    aa:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9A:37:5F:EF:5C:61:2A:61:F4:23:49:80:53:1B:DD:51:17:0B:55:A3
            X509v3 Authority Key Identifier:
                keyid:93:22:31:2F:1D:21:BB:3B:38:6C:A3:AA:97:3A:C6:CD:25:4B:70:39

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kyIxLx0huzs4bKOqlzrGzSVLcDk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/695d71-bba1-425d-b9f3-c2677809b4a7/1/kyIxLx0huzs4bKOqlzrGzSVLcDk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:2b:c4:af:cf:1e:fd:08:e8:19:53:f8:8d:21:60:11:71:be:
         38:bf:ed:68:c0:d4:4e:55:c0:bf:d1:2d:9b:b0:74:1a:66:eb:
         1b:9c:16:5e:6e:d6:29:68:dd:1a:3a:ba:2f:9e:a2:5d:d2:6d:
         d5:8e:ff:50:e6:fc:64:b7:cd:f3:b0:5b:18:bb:d6:8d:99:15:
         2d:b4:e5:a2:6e:23:c3:e9:8a:ec:ca:69:2e:7a:65:e5:cb:82:
         ff:a8:d0:8f:43:43:bb:35:48:d0:9e:b4:d5:81:1d:8e:14:bc:
         94:ae:b6:c4:61:68:5c:3b:55:0f:fa:dc:33:68:15:3f:ca:88:
         c8:6c:d2:87:9b:c2:e2:c8:11:8b:23:90:31:8b:04:bb:85:5a:
         b5:60:92:49:6d:eb:3a:d7:ed:3d:1a:00:25:62:38:a0:eb:39:
         d8:22:f3:c0:c8:2a:01:66:ec:aa:39:1d:c6:e4:5a:13:a4:eb:
         0e:99:88:05:fe:98:e3:35:12:d7:57:27:79:9e:28:c3:a4:07:
         1d:4a:ef:d5:08:e1:88:31:75:60:f5:d9:82:56:5c:b7:69:8b:
         5f:1d:44:57:7c:93:d1:ab:bf:be:1b:f0:07:49:5b:62:57:68:
         b2:3a:d6:d4:9e:94:ef:58:8e:1c:9b:e8:dc:69:6c:8e:2d:78:
         a5:ca:c7:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----