Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.mft
File:                     jhTxdhHOtBMYStycGa71CKhJubI.mft (raw, json)
Hash identifier:          ez5JqTtGgv3EfJsEmfuSnWXIL9brxQYiNJXharK89Wc=
Subject key identifier:   3A:D6:66:6D:FE:8D:DB:D7:9B:C7:BE:5A:9B:D0:8C:9F:2B:1B:B5:14
Authority key identifier: 8E:14:F1:76:11:CE:B4:13:18:4A:DC:9C:19:AE:F5:08:A8:49:B9:B2
Certificate issuer:       /CN=8e14f17611ceb413184adc9c19aef508a849b9b2
Certificate serial:       019D386582C8AF5A28A84192908697AF884F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jhTxdhHOtBMYStycGa71CKhJubI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.mft
Manifest number:          188A
Signing time:             Sun 29 Mar 2026 07:01:09 +0000
Manifest this update:     Sun 29 Mar 2026 07:01:09 +0000
Manifest next update:     Mon 30 Mar 2026 07:01:09 +0000
Files and hashes:         1: jhTxdhHOtBMYStycGa71CKhJubI.crl (hash: eiDTkontE1d7zqmmt3SeUytheuiISqcCR4QCuRcjayw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jhTxdhHOtBMYStycGa71CKhJubI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:65:82:c8:af:5a:28:a8:41:92:90:86:97:af:88:4f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8e14f17611ceb413184adc9c19aef508a849b9b2
        Validity
            Not Before: Mar 29 07:01:09 2026 GMT
            Not After : Mar 30 07:01:09 2026 GMT
        Subject: CN=3ad6666dfe8ddbd79bc7be5a9bd08c9f2b1bb514
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:4b:25:33:78:6b:0e:77:fa:a5:f0:89:33:f9:
                    10:dc:07:55:20:a8:33:04:0d:fe:a3:ee:4d:d3:2c:
                    46:cb:b7:09:8d:90:a5:8e:61:74:be:51:dd:54:d8:
                    a6:d4:be:89:64:7d:f7:fa:94:04:26:b3:9d:b9:4a:
                    3f:c8:82:f0:59:0a:99:12:5e:6d:ac:6e:c3:e1:24:
                    a2:dc:9f:7c:08:86:21:93:e7:38:e4:0b:c8:28:bc:
                    17:9a:91:63:a3:fd:97:09:e8:86:08:c1:6a:52:bb:
                    a9:d7:38:73:ca:52:ff:47:ff:ff:f5:34:48:00:6a:
                    43:72:f7:49:e7:d9:cc:98:d0:28:44:90:44:2c:30:
                    e4:da:67:f8:56:15:7f:ae:60:b2:44:c8:71:55:7c:
                    8a:10:25:90:f4:19:81:8e:5d:3c:c9:de:1e:d3:d4:
                    cf:b1:d7:b7:f7:73:51:56:b0:f6:27:8b:14:c6:e6:
                    74:e0:93:86:20:cc:d3:4f:0f:b9:10:d2:2f:33:f7:
                    09:7c:d0:e2:19:2d:38:2d:5b:4d:f7:16:57:7c:8e:
                    b0:f2:73:5e:eb:1b:82:7f:73:a3:b4:aa:05:86:7d:
                    1d:25:28:d7:46:5e:1b:d3:ae:1d:7e:b5:c4:35:43:
                    a2:72:8c:33:98:8b:9a:e7:5e:35:7a:9d:96:e7:ef:
                    9f:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3A:D6:66:6D:FE:8D:DB:D7:9B:C7:BE:5A:9B:D0:8C:9F:2B:1B:B5:14
            X509v3 Authority Key Identifier:
                keyid:8E:14:F1:76:11:CE:B4:13:18:4A:DC:9C:19:AE:F5:08:A8:49:B9:B2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhTxdhHOtBMYStycGa71CKhJubI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/81d56d-1f52-4a9b-9591-720fd3a1eef3/1/jhTxdhHOtBMYStycGa71CKhJubI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bf:90:7b:9d:f4:9d:de:68:a9:b2:89:d5:55:e4:ac:eb:aa:b0:
         be:c3:52:e3:dc:89:8c:2c:07:5b:72:96:bf:54:6a:f7:07:6b:
         ab:b6:2a:6a:e7:79:72:a6:af:8d:3d:e0:ad:e3:af:41:21:2a:
         c1:ca:31:90:7a:70:60:97:a2:11:85:a3:7a:ae:23:df:fe:08:
         eb:4d:36:ce:9f:10:81:d8:54:43:2d:0e:c7:79:38:af:60:31:
         37:9f:78:b1:14:19:fe:7d:12:47:3a:b8:fb:f5:cf:a7:b3:f1:
         af:13:ee:eb:81:14:30:71:6b:9f:04:20:88:ff:5a:76:ae:25:
         14:76:d5:a3:2d:0e:c9:c6:a8:9b:ca:a3:b6:14:58:79:31:e1:
         0b:ee:d9:fb:53:95:fb:fa:f9:a7:d6:25:fa:9e:d3:0a:ef:6a:
         be:25:30:f9:30:95:98:91:41:e6:38:07:84:ba:b5:11:57:b8:
         eb:b0:e8:98:db:61:42:77:78:63:27:0d:e3:b5:58:a2:34:15:
         84:5d:08:71:f9:3e:6f:be:f7:17:f9:ce:96:2c:10:d8:82:fd:
         22:f4:0e:4f:bb:66:c3:87:9f:85:5e:7e:b6:3b:25:71:07:ac:
         ad:52:f5:e5:63:06:84:36:3f:68:aa:83:3a:44:76:51:bc:8c:
         eb:10:7f:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZYLIr1ooqEGSkIaXr4hPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMTRmMTc2MTFjZWI0MTMxODRhZGM5YzE5YWVmNTA4YTg0
OWI5YjIwHhcNMjYwMzI5MDcwMTA5WhcNMjYwMzMwMDcwMTA5WjAzMTEwLwYDVQQD
EygzYWQ2NjY2ZGZlOGRkYmQ3OWJjN2JlNWE5YmQwOGM5ZjJiMWJiNTE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzEslM3hrDnf6pfCJM/kQ3AdVIKgz
BA3+o+5N0yxGy7cJjZCljmF0vlHdVNim1L6JZH33+pQEJrOduUo/yILwWQqZEl5t
rG7D4SSi3J98CIYhk+c45AvIKLwXmpFjo/2XCeiGCMFqUrup1zhzylL/R///9TRI
AGpDcvdJ59nMmNAoRJBELDDk2mf4VhV/rmCyRMhxVXyKECWQ9BmBjl08yd4e09TP
sde393NRVrD2J4sUxuZ04JOGIMzTTw+5ENIvM/cJfNDiGS04LVtN9xZXfI6w8nNe
6xuCf3OjtKoFhn0dJSjXRl4b064dfrXENUOicowzmIua5141ep2W5++f7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDrWZm3+jdvXm8e+WpvQjJ8rG7UUMB8GA1UdIwQY
MBaAFI4U8XYRzrQTGErcnBmu9QioSbmyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamhUeGRoSE90Qk1ZU3R5Y0dhNzFDS2hKdWJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS84MWQ1NmQtMWY1Mi00YTliLTk1OTEt
NzIwZmQzYTFlZWYzLzEvamhUeGRoSE90Qk1ZU3R5Y0dhNzFDS2hKdWJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOS84MWQ1NmQtMWY1Mi00YTliLTk1OTEtNzIwZmQzYTFlZWYz
LzEvamhUeGRoSE90Qk1ZU3R5Y0dhNzFDS2hKdWJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAv5B7nfSd
3mipsonVVeSs66qwvsNS49yJjCwHW3KWv1Rq9wdrq7Yqaud5cqavjT3greOvQSEq
wcoxkHpwYJeiEYWjeq4j3/4I6002zp8QgdhUQy0Ox3k4r2AxN594sRQZ/n0SRzq4
+/XPp7PxrxPu64EUMHFrnwQgiP9adq4lFHbVoy0Oycaom8qjthRYeTHhC+7Z+1OV
+/r5p9Yl+p7TCu9qviUw+TCVmJFB5jgHhLq1EVe467DomNthQnd4YycN47VYojQV
hF0Icfk+b773F/nOliwQ2IL9IvQOT7tmw4efhV5+tjslcQesrVL15WMGhDY/aKqD
OkR2UbyM6xB/dg==
-----END CERTIFICATE-----