Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
File:                     gEFPcG9s0sh68PYGstE3a4a1-mY.mft (raw, json)
Hash identifier:          NJspx9Hh9zO9pMHeNdsc8+DntkRV8hrnEA5TEBicCig=
Subject key identifier:   8D:F6:20:08:79:53:03:F0:33:DE:1A:29:97:8A:16:3F:02:21:1F:8D
Authority key identifier: 80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66
Certificate issuer:       /CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66
Certificate serial:       019D386660F2427FD143A1ED8A6732826BE3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
Manifest number:          188C
Signing time:             Sun 29 Mar 2026 07:02:06 +0000
Manifest this update:     Sun 29 Mar 2026 07:02:06 +0000
Manifest next update:     Mon 30 Mar 2026 07:02:06 +0000
Files and hashes:         1: gEFPcG9s0sh68PYGstE3a4a1-mY.crl (hash: 53S5JttQtHOdRLz9tIaS2Irv0HxZx4nGYYHBe+xUd0Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:66:60:f2:42:7f:d1:43:a1:ed:8a:67:32:82:6b:e3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66
        Validity
            Not Before: Mar 29 07:02:06 2026 GMT
            Not After : Mar 30 07:02:06 2026 GMT
        Subject: CN=8df62008795303f033de1a29978a163f02211f8d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:fb:f9:ae:41:71:92:8b:de:41:2a:3b:60:b8:
                    5b:8e:5c:85:bf:dd:87:64:8f:68:e9:58:38:86:61:
                    2f:a8:bc:01:d5:7a:7a:e1:b7:6f:98:de:56:27:d8:
                    98:cc:82:a0:04:30:d6:68:48:44:fd:82:a3:25:be:
                    42:26:29:01:d4:79:18:81:f1:7e:dc:f4:bb:2a:29:
                    95:ad:65:90:10:12:71:c6:68:97:91:46:bd:17:52:
                    09:13:d3:94:e8:64:3b:bf:82:76:74:85:c4:6c:23:
                    0d:f9:bd:23:18:83:2f:2a:5a:55:90:04:ed:2e:30:
                    d2:b6:97:28:e2:4b:df:8c:85:16:da:96:5c:34:93:
                    20:e4:72:e0:cd:f9:95:9f:12:b9:bd:56:28:68:28:
                    2a:cb:fe:8f:e5:58:ac:b7:29:fd:63:e4:8d:e5:b0:
                    15:95:a6:fe:5c:f9:6a:58:ad:81:0f:4b:a6:f3:92:
                    ea:96:54:09:2c:45:f3:c0:c8:a6:bd:3f:a2:e1:ca:
                    c9:94:be:c9:a0:b3:ba:73:cd:89:9b:dd:4e:c6:0f:
                    92:c2:1d:d6:ae:be:66:f2:38:56:f1:04:82:02:82:
                    d7:a5:1f:3a:d9:1f:23:ac:51:bf:d7:27:b2:dc:ce:
                    0c:12:eb:93:bc:f3:fe:92:36:ef:62:19:d2:97:2b:
                    bb:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:F6:20:08:79:53:03:F0:33:DE:1A:29:97:8A:16:3F:02:21:1F:8D
            X509v3 Authority Key Identifier:
                keyid:80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:0e:0b:f7:45:1f:b6:ce:aa:cc:0c:92:2c:9a:34:bd:7b:6d:
         d7:96:1d:45:6e:f6:d6:f9:1e:97:23:27:6c:df:68:4e:6f:f8:
         cc:52:31:43:31:9d:8f:3d:6c:d1:35:f1:30:4f:ff:bf:0e:31:
         0e:b7:56:ec:2a:24:0d:45:17:4d:6f:bf:e2:25:e3:7a:ab:4d:
         0a:af:15:2b:40:83:28:99:f0:ac:24:85:24:56:c6:d5:36:eb:
         a1:81:6c:e5:75:ca:97:00:da:22:ce:2f:8d:fc:cc:19:f7:91:
         5a:cc:15:e0:07:05:2b:b2:8d:c1:74:0d:2d:34:56:a2:6d:20:
         3f:e0:39:ad:4c:25:12:bf:54:ca:6f:72:29:b8:d2:d5:28:2b:
         0c:f0:ce:21:b0:7a:b6:a1:26:3b:4e:9f:d8:6b:ab:a3:68:42:
         55:58:83:81:ed:bd:2f:fd:43:fa:bf:84:76:54:36:a3:89:ae:
         13:11:83:0d:1c:27:3f:58:45:6f:6d:2a:cd:9a:f5:8d:5b:9c:
         26:99:e4:f4:09:e0:b2:11:56:76:59:d9:0d:eb:1f:83:ba:ee:
         8a:f3:55:d5:67:83:51:30:c2:c5:8b:cc:0c:e0:17:3a:d6:0f:
         0f:1b:b9:31:8a:ca:22:7d:6c:48:0d:37:52:f0:4b:e4:d7:e4:
         58:19:8a:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----