Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
File:                     ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft (raw, json)
Hash identifier:          m1pn4iWnIo69vto8GS5y5ra3GO2tUOakrhDc4EClUuU=
Subject key identifier:   93:55:D0:B1:7C:B8:29:2C:65:85:3B:96:0B:E3:C4:AB:9C:F3:60:64
Authority key identifier: 7B:0D:46:C5:82:2C:AD:92:53:EA:53:A1:00:F3:D9:36:22:4A:E6:87
Certificate issuer:       /CN=7b0d46c5822cad9253ea53a100f3d936224ae687
Certificate serial:       019D39AEE2898AC4A4D4BED115410A65AD48
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
Manifest number:          06C0
Signing time:             Sun 29 Mar 2026 13:00:55 +0000
Manifest this update:     Sun 29 Mar 2026 13:00:55 +0000
Manifest next update:     Mon 30 Mar 2026 13:00:55 +0000
Files and hashes:         1: ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl (hash: mm145WChBUhSwfGhl2B0atezT1zYTstY2yWLH0T91aI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 13:00:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:39:ae:e2:89:8a:c4:a4:d4:be:d1:15:41:0a:65:ad:48
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7b0d46c5822cad9253ea53a100f3d936224ae687
        Validity
            Not Before: Mar 29 13:00:55 2026 GMT
            Not After : Mar 30 13:00:55 2026 GMT
        Subject: CN=9355d0b17cb8292c65853b960be3c4ab9cf36064
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:b1:03:77:f4:83:9e:57:df:ef:ef:f6:bd:bb:
                    f1:d4:59:c1:06:66:31:5f:ce:32:cf:4d:2b:5d:91:
                    4d:48:15:64:de:2c:58:d3:2a:af:79:b6:6f:f8:e7:
                    c3:63:b2:26:ad:f7:19:87:5b:e2:3f:32:3c:bc:ea:
                    21:71:b5:c7:8b:49:d6:11:cc:8e:f0:0e:2f:e4:88:
                    ef:6e:5b:8c:ed:1e:9f:6c:fe:bd:65:de:52:ed:66:
                    0c:cc:4a:ae:27:5f:a8:23:ee:0b:0a:54:25:f0:c9:
                    f2:44:b3:50:3b:34:b8:1e:06:6f:44:30:b2:cf:1d:
                    42:72:44:a4:18:94:9f:8d:d5:10:de:65:4f:76:1f:
                    29:ec:89:43:d1:29:a9:d0:64:ad:63:60:f5:27:3e:
                    1d:23:60:d9:f8:5e:eb:2a:05:a2:bd:a3:ee:6e:b1:
                    ff:ce:5d:85:7a:a1:97:97:42:a9:96:fb:9c:3a:b6:
                    35:17:16:19:cc:ff:35:c9:7e:59:cb:b0:b1:d0:8a:
                    71:08:97:b3:15:ac:62:f4:5f:cc:5b:5b:ee:de:3b:
                    8d:e1:f5:93:41:49:2c:8c:c7:dc:e3:59:1b:e1:ae:
                    62:1b:10:b5:7f:58:60:2e:29:ac:03:7d:13:bb:91:
                    33:4a:02:63:62:e0:38:88:f6:2b:39:13:5a:4e:2d:
                    e9:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:55:D0:B1:7C:B8:29:2C:65:85:3B:96:0B:E3:C4:AB:9C:F3:60:64
            X509v3 Authority Key Identifier:
                keyid:7B:0D:46:C5:82:2C:AD:92:53:EA:53:A1:00:F3:D9:36:22:4A:E6:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:e7:79:ea:e6:68:8d:d6:0e:63:f0:68:0e:3a:83:e4:77:fb:
         d0:0f:ac:2e:f5:e8:43:0e:e7:72:69:cc:31:83:27:f2:fc:da:
         1a:8f:36:29:23:ae:d9:cf:b3:37:3d:7a:47:ef:74:fa:32:70:
         c4:4d:00:e5:c1:fa:77:bb:d3:12:ff:8f:c8:20:c0:75:e7:69:
         40:c6:c7:91:2d:c2:6a:d9:0e:74:42:3a:3f:fe:c8:ca:dc:25:
         ac:58:a2:9b:78:ce:f5:41:f9:96:eb:e6:b2:ca:a5:cc:5b:f8:
         ce:1b:27:8d:95:f8:2b:d4:c2:99:05:d3:73:db:ef:a0:b2:59:
         1c:c1:ca:52:99:05:aa:ec:b3:73:bb:4e:8e:65:10:5c:8a:27:
         4a:db:9f:50:31:82:86:0c:f9:d6:f8:85:ca:40:4a:e8:7a:a5:
         0f:c0:b9:b0:41:ef:7e:32:68:dd:bb:06:43:9a:33:31:b7:3a:
         08:bc:8e:9f:7c:d5:c3:a1:5f:d9:cb:76:d3:53:4b:83:70:b5:
         3d:48:34:b1:3e:ce:7b:31:76:1b:cc:0a:5b:25:3d:32:d5:73:
         c8:2a:43:b9:bc:21:43:10:b6:57:f7:af:de:66:cb:6b:1c:6c:
         e7:bb:c4:63:88:f5:4c:58:95:f4:d3:a5:06:fe:b2:48:57:de:
         d6:ab:36:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----