Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/b5f591-d5ea-47e2-9e69-04d12f2d070a/1/wtVzsWdwcfL9bUS4QBthISBZjM8.mft
File:                     wtVzsWdwcfL9bUS4QBthISBZjM8.mft (raw, json)
Hash identifier:          mVQBXUaQiWcID19UnA1oBRCHPrZzGlM3Q7+ooloxRh0=
Subject key identifier:   EF:E7:0A:A1:C4:CC:E5:AA:27:2A:8C:C8:7D:37:64:51:43:F3:9D:68
Authority key identifier: C2:D5:73:B1:67:70:71:F2:FD:6D:44:B8:40:1B:61:21:20:59:8C:CF
Certificate issuer:       /CN=c2d573b1677071f2fd6d44b8401b612120598ccf
Certificate serial:       019D382E84C071B84CB71A5370545B4727AD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/wtVzsWdwcfL9bUS4QBthISBZjM8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/b5f591-d5ea-47e2-9e69-04d12f2d070a/1/wtVzsWdwcfL9bUS4QBthISBZjM8.mft
Manifest number:          188B
Signing time:             Sun 29 Mar 2026 06:01:05 +0000
Manifest this update:     Sun 29 Mar 2026 06:01:05 +0000
Manifest next update:     Mon 30 Mar 2026 06:01:05 +0000
Files and hashes:         1: wtVzsWdwcfL9bUS4QBthISBZjM8.crl (hash: spnhjFajJNt6E0b9DEc0DUkAEacAvm9tZVKAh7kI1Qw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/b5f591-d5ea-47e2-9e69-04d12f2d070a/1/wtVzsWdwcfL9bUS4QBthISBZjM8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/b5f591-d5ea-47e2-9e69-04d12f2d070a/1/wtVzsWdwcfL9bUS4QBthISBZjM8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/wtVzsWdwcfL9bUS4QBthISBZjM8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 06:01:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:2e:84:c0:71:b8:4c:b7:1a:53:70:54:5b:47:27:ad
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c2d573b1677071f2fd6d44b8401b612120598ccf
        Validity
            Not Before: Mar 29 06:01:05 2026 GMT
            Not After : Mar 30 06:01:05 2026 GMT
        Subject: CN=efe70aa1c4cce5aa272a8cc87d37645143f39d68
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:50:67:63:4f:5f:3d:3b:ed:30:9f:3d:f9:b0:
                    b9:74:d4:60:4c:eb:9d:4f:f0:a0:19:fa:ab:83:16:
                    77:fd:1b:11:c2:e9:d7:db:bd:7a:e8:e5:c3:cf:86:
                    4f:95:a1:26:76:f6:b5:3a:3e:d5:9a:5b:46:43:fd:
                    ac:86:5a:2c:1f:c9:75:2e:39:29:00:a7:ee:99:2a:
                    28:44:a0:8c:f4:f8:3a:dd:07:fb:a6:85:55:71:2f:
                    df:d8:19:1b:de:f3:93:41:c4:c8:01:d3:b4:b3:ef:
                    8f:54:f9:da:3e:4a:d5:d7:3b:72:f8:56:61:c6:38:
                    ca:df:fb:18:dd:31:0a:bd:15:cd:e1:4c:b8:a4:50:
                    25:3a:47:c4:6d:1a:1a:72:91:e9:07:6d:11:f6:75:
                    35:78:f7:56:29:60:f5:5e:dc:0e:cd:e2:a2:0e:0a:
                    04:3d:1a:97:0c:47:ba:c2:19:87:2c:3a:14:02:c8:
                    81:69:4d:d0:7a:b5:50:6c:2e:03:71:4f:98:5b:24:
                    a7:da:9e:33:21:84:4b:81:82:b0:ff:b2:62:93:b7:
                    a5:43:2e:f2:c0:da:0b:9e:34:83:f0:b1:6c:6c:12:
                    aa:da:f0:42:20:b1:50:1f:08:96:e1:c4:6a:e8:35:
                    ba:25:97:f8:fd:74:5c:c3:50:1b:2c:e5:ed:34:99:
                    af:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:E7:0A:A1:C4:CC:E5:AA:27:2A:8C:C8:7D:37:64:51:43:F3:9D:68
            X509v3 Authority Key Identifier:
                keyid:C2:D5:73:B1:67:70:71:F2:FD:6D:44:B8:40:1B:61:21:20:59:8C:CF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtVzsWdwcfL9bUS4QBthISBZjM8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b5f591-d5ea-47e2-9e69-04d12f2d070a/1/wtVzsWdwcfL9bUS4QBthISBZjM8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b5f591-d5ea-47e2-9e69-04d12f2d070a/1/wtVzsWdwcfL9bUS4QBthISBZjM8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         97:71:6a:88:6e:63:a0:ec:c0:7e:b6:00:6d:58:a3:49:b6:05:
         11:2f:03:e1:40:fe:51:41:99:8d:b1:43:24:1a:5e:d3:9f:5a:
         ed:ee:5d:87:11:d0:11:c1:8f:88:12:c3:97:2e:2d:df:e8:9a:
         32:e2:90:36:b8:9d:f4:e8:af:97:f5:4f:0c:73:d0:2e:e1:87:
         e4:cb:f6:64:9f:60:29:f8:dd:e5:5c:a5:75:5e:20:78:63:09:
         ec:ba:df:dc:a2:d5:d9:87:7c:a2:e7:78:cd:4c:a6:da:c7:95:
         b7:e0:97:92:ad:27:f8:9b:6f:6d:82:f6:31:21:af:b3:ec:fd:
         51:35:d9:3d:a1:1b:ae:f1:43:07:e3:04:5f:54:dc:54:45:1b:
         fc:e0:52:b9:6f:e9:fc:33:cc:d6:a5:ad:4c:03:19:7f:52:0f:
         5d:8c:54:44:fe:5b:2c:4d:b2:71:e2:77:13:44:69:eb:16:78:
         8b:da:58:21:b9:bd:d1:f5:40:61:38:e3:ae:ec:07:8b:3a:12:
         18:76:42:c3:98:58:47:1e:fe:7a:b9:cf:91:b5:01:d0:dc:37:
         c7:ee:b9:3a:a7:40:3e:03:00:94:82:7b:3c:56:98:ea:fd:53:
         df:70:5e:28:30:10:ba:e8:bc:79:ef:ec:9a:63:83:59:90:08:
         5d:fd:77:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----