Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
File:                     FW-pMchet5jGgtwy5CkJ1xySOyM.mft (raw, json)
Hash identifier:          6iLAY5M6ltaGsqXeRV8UBOk/d/W8SwDTYFr69x1PvqU=
Subject key identifier:   70:F0:82:7D:64:A7:60:16:7C:28:98:1B:E4:ED:62:85:72:AE:A6:10
Authority key identifier: 15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23
Certificate issuer:       /CN=156fa931c85eb798c682dc32e42909d71c923b23
Certificate serial:       019D37893C96DCBB94FB537D49C8B0AAF157
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
Manifest number:          0778
Signing time:             Sun 29 Mar 2026 03:00:33 +0000
Manifest this update:     Sun 29 Mar 2026 03:00:33 +0000
Manifest next update:     Mon 30 Mar 2026 03:00:33 +0000
Files and hashes:         1: FW-pMchet5jGgtwy5CkJ1xySOyM.crl (hash: phi8kkkCy2qBeLZ5uplOoEUw7A8vUiRTtS1q5zGsIec=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 03:00:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:37:89:3c:96:dc:bb:94:fb:53:7d:49:c8:b0:aa:f1:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=156fa931c85eb798c682dc32e42909d71c923b23
        Validity
            Not Before: Mar 29 03:00:33 2026 GMT
            Not After : Mar 30 03:00:33 2026 GMT
        Subject: CN=70f0827d64a760167c28981be4ed628572aea610
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:90:98:ba:7e:e9:fe:15:04:57:fc:56:a0:18:
                    37:2d:5b:ae:84:63:85:a0:ba:aa:09:6d:46:88:bd:
                    d3:95:19:f0:51:d6:1d:67:ec:21:66:4c:3c:95:61:
                    be:6a:dd:f9:46:98:ab:f3:26:4c:f2:a2:65:d3:37:
                    5e:47:d8:b2:c9:6d:d1:e7:be:38:f6:ca:c6:bb:b4:
                    20:1d:f4:81:0d:46:24:60:b2:3c:36:2f:51:b6:68:
                    7b:aa:74:aa:f9:e8:3d:36:5e:c6:bc:e9:5b:d9:6d:
                    22:2e:0d:f1:32:03:65:43:16:22:17:40:ce:ee:34:
                    a9:20:58:97:0c:37:e2:3a:ab:73:34:63:7d:5f:9d:
                    eb:a6:bf:59:9e:00:06:af:07:aa:73:0f:2a:77:0b:
                    ec:5c:2a:66:9a:88:45:6e:a9:77:a6:ad:ad:90:91:
                    b2:1d:fc:5d:78:ea:5a:24:9e:63:f5:77:33:21:71:
                    f4:41:db:2b:e9:3c:6c:0c:88:55:04:da:a6:37:62:
                    fb:76:27:0c:61:51:e9:24:8c:c9:3a:0d:a3:a8:df:
                    06:26:70:2e:64:be:83:6a:a1:15:04:ff:1d:01:22:
                    d2:de:07:b2:f6:02:65:ff:b3:0c:7c:dc:63:de:29:
                    45:d2:9b:41:41:c8:7c:42:66:57:25:d3:5c:fb:d8:
                    45:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                70:F0:82:7D:64:A7:60:16:7C:28:98:1B:E4:ED:62:85:72:AE:A6:10
            X509v3 Authority Key Identifier:
                keyid:15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:b0:26:47:e1:57:79:d6:2c:fd:15:ab:34:a3:90:76:f6:28:
         e2:09:1f:12:d5:ee:f8:20:fb:61:0e:e1:d6:e6:15:e2:c6:25:
         df:af:10:ba:10:f7:2a:b3:4e:5c:05:dc:ff:a0:52:28:5d:35:
         56:c2:a8:fb:d1:8b:ee:94:38:a9:f0:13:38:7b:04:aa:82:41:
         32:5a:23:3d:f9:71:86:4a:02:da:a7:dc:67:1a:c1:45:11:49:
         79:9c:4a:b4:84:7d:d0:2d:ec:4d:ec:f9:27:0d:58:6a:3a:6d:
         2d:cc:7e:6e:22:5f:b7:a7:90:3d:e9:42:54:7c:60:66:a7:22:
         cf:36:6d:ee:c0:6c:56:09:b7:ae:e2:3e:03:09:06:ea:53:c7:
         c3:4d:40:2d:66:9b:a0:99:19:11:c4:20:f5:69:d7:3e:f8:72:
         9c:71:fc:a4:2a:0b:0d:9c:a8:d2:87:f2:2c:90:5b:c6:39:95:
         2b:d6:7d:21:8c:32:2d:0d:00:24:36:18:c2:09:f4:9d:a9:46:
         8a:a8:21:1a:53:2a:36:98:d4:58:42:4d:10:7e:e4:02:91:66:
         13:60:db:a3:8b:5e:c2:b7:10:d6:86:d9:f3:89:9b:c7:47:ed:
         a5:45:c9:c0:24:49:2a:86:10:7d:81:c5:24:cc:c5:49:fd:61:
         c3:c5:92:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----