Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
File:                     2Hwy4kled0lvwgKzAxZLpAjl0SI.mft (raw, json)
Hash identifier:          cN564IfYKDx8/LyNLjztIPU3k5ZGX7x++nlW+I7R+Tc=
Subject key identifier:   49:BF:7B:80:E7:5E:40:1E:CD:74:A4:2E:3D:E0:A1:A5:44:EA:7E:F1
Authority key identifier: D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22
Certificate issuer:       /CN=d87c32e2495e77496fc202b303164ba408e5d122
Certificate serial:       019D3A5493BDCB16C1071922A2618E74CBA1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
Manifest number:          178B
Signing time:             Sun 29 Mar 2026 16:01:54 +0000
Manifest this update:     Sun 29 Mar 2026 16:01:54 +0000
Manifest next update:     Mon 30 Mar 2026 16:01:54 +0000
Files and hashes:         1: 2Hwy4kled0lvwgKzAxZLpAjl0SI.crl (hash: /dubyWYxBK1waJj5tNRK6jP+PFwy/NsxFITGulLB/Xg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:3a:54:93:bd:cb:16:c1:07:19:22:a2:61:8e:74:cb:a1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d87c32e2495e77496fc202b303164ba408e5d122
        Validity
            Not Before: Mar 29 16:01:54 2026 GMT
            Not After : Mar 30 16:01:54 2026 GMT
        Subject: CN=49bf7b80e75e401ecd74a42e3de0a1a544ea7ef1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:5a:f5:7b:45:3d:3a:b4:7a:7f:28:d5:c3:f0:
                    3c:a3:42:61:e5:5c:f9:f2:3e:ff:c0:75:d4:19:9a:
                    08:aa:10:b4:aa:57:af:81:f0:ee:85:7b:b2:f8:a7:
                    4d:28:4a:c3:48:32:35:80:fb:88:dc:05:a9:60:19:
                    b4:16:f1:97:80:09:4e:38:04:59:e1:77:90:a4:ec:
                    6a:cf:e9:87:06:05:bb:bc:67:06:e3:1d:b8:e9:a4:
                    3d:1c:f8:e4:c9:ce:73:65:34:45:4c:29:73:0e:1b:
                    46:26:1d:ce:07:eb:9b:95:08:0d:24:08:8f:03:dc:
                    40:72:9d:a3:ab:94:d7:46:9b:ef:f6:3f:57:27:df:
                    5c:b3:1d:91:bc:88:a7:35:93:ba:f4:86:fe:dd:53:
                    58:92:ad:2f:b2:da:36:7d:32:51:65:7a:56:c5:6d:
                    73:50:96:7b:bf:fe:b7:14:0c:18:6f:ca:94:bb:24:
                    84:68:4b:90:b9:2e:ff:80:2b:de:e8:eb:69:0e:c2:
                    30:75:16:d9:16:d9:8b:cd:b1:f8:91:9c:f5:b7:1f:
                    47:27:3d:ef:00:af:6f:40:d5:7a:0b:b9:96:bd:1a:
                    9f:c2:9e:c8:b9:d0:7f:e1:a3:c6:46:d4:b2:05:1e:
                    c0:90:db:d0:dc:73:e1:de:28:37:4c:ab:fe:29:c0:
                    86:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:BF:7B:80:E7:5E:40:1E:CD:74:A4:2E:3D:E0:A1:A5:44:EA:7E:F1
            X509v3 Authority Key Identifier:
                keyid:D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:1b:b2:a0:bc:6e:28:9b:2e:33:82:2c:0e:48:5a:2d:2f:72:
         c8:65:7e:1a:78:15:ad:c2:86:84:ba:03:cf:1b:d2:b1:f0:2c:
         48:39:d1:8b:f4:6a:02:5c:f7:c6:d1:73:66:90:00:4e:09:ea:
         78:1b:d6:db:89:3d:bf:3d:fc:cb:ea:3f:bd:33:7f:79:aa:a5:
         68:41:8a:83:a8:b7:23:89:89:2f:38:bc:de:6f:e9:16:8d:c1:
         c2:c2:5b:4a:d3:7d:68:c6:2c:dc:9b:87:48:09:2a:dd:d2:5a:
         99:8a:5e:80:df:8e:9a:2a:73:61:3b:8f:b9:6a:ac:7f:72:ec:
         a8:d4:33:0d:44:67:91:34:67:96:c5:c2:1d:32:2b:62:f7:e1:
         db:f2:16:06:87:e7:4d:62:ae:30:f2:3f:92:e1:6e:6d:fb:4a:
         61:86:ed:7d:dc:bd:4d:7b:03:47:b3:63:c5:72:3f:f7:ae:16:
         3f:df:4c:7b:c3:1b:41:cd:20:41:15:dd:cf:fe:44:37:2f:fb:
         15:8e:4d:f7:14:8c:f6:cf:3e:2f:d2:1e:ef:91:06:37:5d:e1:
         ec:e8:1e:3e:d9:7d:37:70:0d:5d:d0:2e:4a:65:4f:f4:10:db:
         ab:ad:aa:73:30:28:4b:10:fd:82:ec:5b:92:88:25:e1:fd:29:
         23:1a:37:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----