Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
File:                     4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft (raw, json)
Hash identifier:          Rhsym01ZhDCLAuLRn2H5VAg+KF+oKqcnHySeDdqlVC8=
Subject key identifier:   3D:1D:7D:91:A7:A9:7E:67:DC:45:7D:A0:75:0D:E7:CE:29:66:83:2A
Authority key identifier: E0:B8:67:13:11:00:C1:5D:E8:90:11:00:63:E6:38:A5:F0:23:67:C4
Certificate issuer:       /CN=e0b867131100c15de890110063e638a5f02367c4
Certificate serial:       019E3072CBEF3F75178F8244C7405DD6AC1E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
Manifest number:          190E
Signing time:             Sat 16 May 2026 11:01:30 +0000
Manifest this update:     Sat 16 May 2026 11:01:30 +0000
Manifest next update:     Sun 17 May 2026 11:01:30 +0000
Files and hashes:         1: 4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl (hash: 8m4VBL6a6X3PwoWZ7LEhvKPCXi0m8v6Rfbl4PfrivJw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 11:01:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:72:cb:ef:3f:75:17:8f:82:44:c7:40:5d:d6:ac:1e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e0b867131100c15de890110063e638a5f02367c4
        Validity
            Not Before: May 16 11:01:30 2026 GMT
            Not After : May 17 11:01:30 2026 GMT
        Subject: CN=3d1d7d91a7a97e67dc457da0750de7ce2966832a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:78:73:cb:fa:bf:6e:d6:27:82:68:90:b4:26:
                    d2:b5:f0:a4:f1:a4:f5:38:84:3a:58:7b:c4:52:3b:
                    44:c3:ed:5a:a2:52:b1:2f:00:3b:a6:22:4b:2a:cc:
                    25:b1:00:aa:8f:e6:34:3d:d4:c7:de:ed:e2:a5:3e:
                    c4:b4:d6:18:66:e9:90:2e:7e:5d:ea:5e:99:16:c0:
                    88:d9:f3:39:58:52:f3:90:e7:65:dd:11:46:5f:1d:
                    8c:76:e5:45:71:9d:c6:fa:06:7f:24:f9:5a:2a:9f:
                    26:31:59:bc:7a:6d:ba:5f:8d:1f:05:c9:59:a5:e2:
                    a0:4c:bb:3a:31:32:4f:a2:15:28:fa:29:4b:7c:e4:
                    af:d6:38:85:1e:ce:86:a8:7c:a3:4e:83:e6:b6:c4:
                    19:44:36:6d:29:ca:ef:11:e7:a8:80:88:f3:48:bd:
                    ce:cb:ca:dd:88:bf:4f:7c:e6:95:6a:fa:1e:69:2e:
                    a9:ef:ca:0f:2b:66:f5:a6:a7:be:7b:0e:de:87:ad:
                    9a:df:c6:9e:7d:46:68:d7:4d:14:9f:44:0b:ae:9c:
                    1f:59:c0:23:57:8a:06:80:1d:26:d6:19:3d:46:a0:
                    ea:49:77:7e:6b:bd:25:f6:28:51:d7:8d:90:aa:3d:
                    60:90:01:3b:b8:d9:43:07:6c:ec:06:12:9a:b5:66:
                    87:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:1D:7D:91:A7:A9:7E:67:DC:45:7D:A0:75:0D:E7:CE:29:66:83:2A
            X509v3 Authority Key Identifier:
                keyid:E0:B8:67:13:11:00:C1:5D:E8:90:11:00:63:E6:38:A5:F0:23:67:C4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:7e:e9:a0:61:f5:4e:b5:58:9c:68:dd:51:38:f4:d8:7d:07:
         ef:53:ad:af:5c:44:ef:6c:e5:50:39:ef:dd:ff:8e:9f:f1:37:
         63:6e:94:f4:df:59:b9:a2:6b:81:27:2a:7e:0f:29:f6:cd:0c:
         d3:71:7a:4e:d8:0c:90:74:8e:69:f0:fc:ab:2e:c7:b2:d1:43:
         cc:93:d6:f3:59:14:e8:a0:40:aa:4c:ef:d3:78:56:03:35:6b:
         bf:ee:cf:2c:27:c4:5c:52:d3:a6:e1:5f:10:f6:aa:2f:8b:2a:
         65:be:c2:88:87:65:c6:6f:7a:74:0c:bb:ea:d6:55:3d:66:31:
         67:f3:56:40:ba:d8:36:de:1b:29:86:83:9a:5d:4f:a2:1a:ec:
         0a:06:21:ae:5a:9a:3d:79:6c:25:f2:a3:b6:28:c5:c3:bb:91:
         cf:d4:6d:1e:d1:87:3a:4d:74:9c:49:36:a9:28:21:52:90:c5:
         b9:c3:6d:52:ce:42:d6:2e:67:b4:c6:94:0c:e1:58:9c:13:b9:
         d1:4f:5a:a0:5e:0b:1f:79:9a:6d:db:0f:5d:58:03:95:3c:84:
         66:e7:c4:61:44:96:bd:59:75:6e:7e:03:07:06:be:18:38:db:
         c3:31:1f:be:5a:54:5a:3e:4a:ae:81:bf:e2:a0:ae:b3:e7:12:
         af:8c:97:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----