Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.mft
File:                     UpJ4MtOYUOhR7staBRFpKZHdpdk.mft (raw, json)
Hash identifier:          3bLNqHoPiIFG28ieUHF9EkKjWZ9HHbY4kD+/hEKWYOk=
Subject key identifier:   6F:D1:2D:87:F7:EE:2D:56:03:7F:8F:10:33:BC:8C:FC:52:AC:AB:2A
Authority key identifier: 52:92:78:32:D3:98:50:E8:51:EE:CB:5A:05:11:69:29:91:DD:A5:D9
Certificate issuer:       /CN=52927832d39850e851eecb5a0511692991dda5d9
Certificate serial:       019D3865BB44E8B52EC47292825BCC9DA918
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UpJ4MtOYUOhR7staBRFpKZHdpdk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.mft
Manifest number:          188B
Signing time:             Sun 29 Mar 2026 07:01:24 +0000
Manifest this update:     Sun 29 Mar 2026 07:01:24 +0000
Manifest next update:     Mon 30 Mar 2026 07:01:24 +0000
Files and hashes:         1: UpJ4MtOYUOhR7staBRFpKZHdpdk.crl (hash: t9JgDGaB/cbDyYpvKH+C+m9ljqLvWANJ4H81sSm8mTU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UpJ4MtOYUOhR7staBRFpKZHdpdk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:65:bb:44:e8:b5:2e:c4:72:92:82:5b:cc:9d:a9:18
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=52927832d39850e851eecb5a0511692991dda5d9
        Validity
            Not Before: Mar 29 07:01:24 2026 GMT
            Not After : Mar 30 07:01:24 2026 GMT
        Subject: CN=6fd12d87f7ee2d56037f8f1033bc8cfc52acab2a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:80:f0:b6:47:1e:14:ba:8b:8e:01:e9:db:2c:
                    3a:78:94:00:9c:27:7d:d6:54:de:8c:eb:28:0b:41:
                    e0:01:f6:75:16:66:94:cb:92:73:4b:5b:a5:1d:2b:
                    de:fd:7b:ee:57:bb:ec:8a:92:26:5d:f4:9b:c2:71:
                    71:ba:1f:e8:8f:f9:98:06:f9:a7:b9:46:c7:8a:0d:
                    8e:df:4e:ad:3c:34:10:1f:14:cf:6d:d6:12:db:8e:
                    a1:d3:fa:ac:ab:ed:b6:87:99:a5:79:06:7e:0d:af:
                    0b:f2:81:07:65:ba:07:07:eb:68:03:9f:2e:f0:4d:
                    6e:cb:c3:44:38:d4:da:72:8d:4b:88:6e:39:24:36:
                    07:02:36:64:41:70:5e:cb:31:19:3d:1e:5d:d9:a2:
                    bd:a6:e1:2d:9d:c5:4b:8b:fa:ab:3c:06:5d:d3:f8:
                    3e:19:08:e4:f8:36:32:90:10:6d:57:3d:21:9b:95:
                    f5:b2:cf:21:a7:fd:26:ee:82:6a:d1:0e:99:f4:f6:
                    98:37:df:52:04:f4:16:7b:90:7f:7b:a0:8b:b4:39:
                    b4:45:f9:1b:ed:18:27:4c:3b:b9:e8:06:4b:6d:e4:
                    e8:c4:a6:66:97:b1:9c:55:73:4d:70:cc:cf:cb:32:
                    f8:2d:c1:d9:36:6a:b2:b5:d7:a2:e3:99:e3:a7:ed:
                    b6:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:D1:2D:87:F7:EE:2D:56:03:7F:8F:10:33:BC:8C:FC:52:AC:AB:2A
            X509v3 Authority Key Identifier:
                keyid:52:92:78:32:D3:98:50:E8:51:EE:CB:5A:05:11:69:29:91:DD:A5:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpJ4MtOYUOhR7staBRFpKZHdpdk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/10429b-8049-47a2-ab99-256db3ed8335/1/UpJ4MtOYUOhR7staBRFpKZHdpdk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:01:e6:4a:55:58:97:6b:0e:88:8e:a5:39:7c:85:ef:e1:b7:
         79:d5:df:56:d5:dd:f4:cd:3c:82:96:1a:51:ac:3b:8b:5e:67:
         fd:d2:ae:ec:30:dd:92:97:9f:f3:f8:6d:b0:d9:ef:04:1b:9c:
         7e:09:b8:3e:9f:68:3f:8d:90:d0:38:ac:f1:f8:e5:f8:eb:3a:
         aa:8a:38:50:66:ee:e3:8a:bf:8a:c3:ba:da:22:cb:c9:84:76:
         8e:05:a2:7e:a2:e6:75:2e:74:d5:82:4d:df:db:ad:55:b5:07:
         21:5a:c9:e1:ec:bb:95:32:05:91:ae:a9:60:10:40:34:4e:70:
         44:22:60:2c:3d:82:ff:f3:2b:8a:45:96:fe:dd:c6:52:38:7c:
         40:cf:1f:bf:32:c7:a0:59:eb:4c:dd:89:32:e0:12:ef:eb:02:
         fb:76:e8:e0:f3:d4:7c:b9:43:2a:ea:90:60:6a:aa:8c:9f:fa:
         40:a4:0e:a0:49:73:3d:d9:ec:b1:b2:3f:f1:18:10:24:11:18:
         bb:2e:d4:86:38:2f:27:17:43:64:14:69:c2:2c:14:c3:77:a9:
         f9:7f:4d:d1:5c:b6:53:8c:ea:c8:ee:9c:7f:53:22:09:49:db:
         36:9d:5f:e7:65:d8:e1:45:0f:c5:00:f9:e0:54:7d:4d:1b:f1:
         13:33:1e:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----