Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft
File:                     6MSDt1wtsc-f9OlMeg_fDbAADwA.mft (raw, json)
Hash identifier:          IGcy4erK+rbjgVlz2jIixrCOzVVC1YzTDOgB/8qdywA=
Subject key identifier:   67:66:C8:BF:56:2A:06:4A:E9:3C:6F:0C:13:7B:C6:17:77:DC:EF:DD
Authority key identifier: E8:C4:83:B7:5C:2D:B1:CF:9F:F4:E9:4C:7A:0F:DF:0D:B0:00:0F:00
Certificate issuer:       /CN=e8c483b75c2db1cf9ff4e94c7a0fdf0db0000f00
Certificate serial:       019E303BD09700BDB3A30EC9548F6EED8800
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6MSDt1wtsc-f9OlMeg_fDbAADwA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft
Manifest number:          144B
Signing time:             Sat 16 May 2026 10:01:26 +0000
Manifest this update:     Sat 16 May 2026 10:01:26 +0000
Manifest next update:     Sun 17 May 2026 10:01:26 +0000
Files and hashes:         1: 6MSDt1wtsc-f9OlMeg_fDbAADwA.crl (hash: b12KGk5wiXl/AlTNX5OGSv8dQ9ytAycliW4pyXt1/I4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6MSDt1wtsc-f9OlMeg_fDbAADwA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 10:01:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:3b:d0:97:00:bd:b3:a3:0e:c9:54:8f:6e:ed:88:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e8c483b75c2db1cf9ff4e94c7a0fdf0db0000f00
        Validity
            Not Before: May 16 10:01:26 2026 GMT
            Not After : May 17 10:01:26 2026 GMT
        Subject: CN=6766c8bf562a064ae93c6f0c137bc61777dcefdd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:1e:b8:cc:0b:67:3b:26:e0:26:09:20:72:ef:
                    5b:1f:e3:64:cb:b4:ab:67:83:41:9e:11:3e:6d:f2:
                    48:fd:e6:fa:52:8a:1d:77:61:0a:4f:3a:28:e7:a9:
                    4a:3f:25:de:98:de:26:bd:e2:26:af:22:4d:60:29:
                    07:d4:c0:14:56:ae:54:8c:2e:16:1a:4b:4b:36:4b:
                    e4:05:52:34:b4:66:f1:f5:81:1e:db:3e:6f:6f:7e:
                    3c:7f:96:62:7e:d0:a7:0b:b0:a6:c7:fb:e9:f1:86:
                    b1:7a:d4:f5:4f:a7:8a:cc:27:ca:a2:3f:9a:33:5d:
                    8d:62:51:1b:c8:a7:a1:6f:ed:20:7d:9d:51:1e:da:
                    12:b2:33:be:cc:fc:3c:ad:84:17:ec:d8:49:fe:0c:
                    92:90:f3:ba:04:e0:86:98:d9:2c:4b:a6:22:1b:00:
                    fe:e9:77:5b:e7:27:bf:23:77:be:d0:48:a6:a0:10:
                    23:37:9f:dc:10:ae:73:ff:64:10:33:ef:55:b7:db:
                    2c:1e:6b:c1:85:ab:00:8e:97:14:fb:7a:e4:71:98:
                    cc:51:0e:bf:14:53:e0:45:f8:e7:23:fd:8e:68:6d:
                    25:fb:8b:f6:14:39:7b:7e:90:b4:51:3e:da:cd:13:
                    c4:d4:38:3f:b4:10:32:d5:d9:58:72:48:47:50:a7:
                    84:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:66:C8:BF:56:2A:06:4A:E9:3C:6F:0C:13:7B:C6:17:77:DC:EF:DD
            X509v3 Authority Key Identifier:
                keyid:E8:C4:83:B7:5C:2D:B1:CF:9F:F4:E9:4C:7A:0F:DF:0D:B0:00:0F:00

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6MSDt1wtsc-f9OlMeg_fDbAADwA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/31fda0-7aaa-461c-a352-eb35bfa065ad/1/6MSDt1wtsc-f9OlMeg_fDbAADwA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:c8:ff:b0:13:a1:50:9c:87:9e:bb:aa:b4:f1:8c:82:91:a4:
         19:0b:f2:3f:4b:7e:de:35:e1:e8:45:1a:ff:18:c0:da:d1:f2:
         0c:07:26:6e:a9:b2:d7:dc:2a:27:07:bc:b2:29:91:7a:05:94:
         82:b3:d3:79:c4:4d:5a:f1:ef:2b:7e:8e:b9:18:29:1b:b4:b8:
         fa:c2:17:94:00:c1:84:44:88:ca:c3:94:4e:5a:1b:ca:3d:37:
         29:55:c3:af:59:ce:74:5f:a3:3a:20:75:59:c6:8f:99:21:f1:
         da:75:1d:e5:80:c4:ec:89:ee:03:d0:cb:7f:74:6a:d4:51:f9:
         0e:6f:81:f9:03:9b:71:73:46:4f:0e:3a:8c:24:e3:f1:01:5b:
         62:11:65:f5:98:f1:d4:c6:cf:49:3d:d9:8f:c9:e0:d1:e9:32:
         32:67:ea:3b:4d:88:c5:0e:c6:17:9e:44:d7:17:85:bc:cc:ae:
         18:0e:1e:06:6d:e5:59:1c:62:27:fe:5d:26:22:2f:39:c0:57:
         16:6d:d5:55:d3:f2:f3:fb:01:b4:59:b2:78:39:52:63:32:2e:
         f0:e5:68:27:d0:05:49:71:88:ef:d5:08:e6:11:1f:37:c2:d9:
         37:75:43:87:99:8b:7c:e7:8d:8e:20:9b:62:2b:e7:91:a7:39:
         02:c0:af:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----