Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
File:                     ELZc9vpeH8roz4TJcB44vftjqrM.mft (raw, json)
Hash identifier:          yEwUSgqatrLHedpWdJGQSjjoGMnyBOqRdwdHhJedgr8=
Subject key identifier:   E4:EA:3D:4F:AA:2B:2E:65:C5:5A:7E:72:CF:A7:B6:27:48:EF:F3:2C
Authority key identifier: 10:B6:5C:F6:FA:5E:1F:CA:E8:CF:84:C9:70:1E:38:BD:FB:63:AA:B3
Certificate issuer:       /CN=10b65cf6fa5e1fcae8cf84c9701e38bdfb63aab3
Certificate serial:       019D37C01AE587AA087D01D8CFF0177072CB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
Manifest number:          113B
Signing time:             Sun 29 Mar 2026 04:00:29 +0000
Manifest this update:     Sun 29 Mar 2026 04:00:29 +0000
Manifest next update:     Mon 30 Mar 2026 04:00:29 +0000
Files and hashes:         1: ELZc9vpeH8roz4TJcB44vftjqrM.crl (hash: OA5b976btfB0FR52j9ndu6PUNSUKismbjzc5RMMekZ4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 04:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:37:c0:1a:e5:87:aa:08:7d:01:d8:cf:f0:17:70:72:cb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=10b65cf6fa5e1fcae8cf84c9701e38bdfb63aab3
        Validity
            Not Before: Mar 29 04:00:29 2026 GMT
            Not After : Mar 30 04:00:29 2026 GMT
        Subject: CN=e4ea3d4faa2b2e65c55a7e72cfa7b62748eff32c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:0a:a6:80:83:17:83:65:0e:29:c9:86:d5:f7:
                    67:bd:bb:fa:08:b0:87:0d:11:aa:96:ce:ba:df:c2:
                    74:30:21:f7:a6:80:d8:94:16:dd:08:ee:2e:7f:b8:
                    3c:20:27:37:0e:d2:c8:56:68:05:9f:a5:32:2e:4b:
                    af:68:7e:d1:49:a3:85:f9:74:08:cf:ab:04:7d:a3:
                    5e:86:c3:6a:ef:1b:44:5f:18:41:0b:27:c3:32:9d:
                    ca:48:1d:db:63:d7:f8:2e:e0:0e:33:ef:6e:13:3c:
                    2a:6d:5d:45:a8:08:4a:24:71:af:77:c7:cc:dd:aa:
                    76:58:33:fb:a6:50:dc:de:8f:ea:08:61:34:82:6f:
                    ce:16:ee:46:5b:7b:03:e2:a5:66:90:6a:68:6d:0c:
                    4f:35:88:64:cb:e4:c2:45:e7:48:cc:14:f1:5b:ab:
                    56:91:89:00:96:5b:68:73:d9:6d:27:1c:d1:4a:22:
                    18:d6:25:dd:1f:0c:ed:c7:22:c5:d5:00:3e:49:65:
                    21:00:9b:48:e9:a0:61:f4:8a:9d:20:39:8a:5d:b2:
                    29:39:10:48:e1:2c:1d:2a:70:ba:69:df:f4:3e:7f:
                    a1:a9:fd:8a:92:9d:ed:a1:e7:e4:e2:cb:24:06:50:
                    7f:df:20:d4:5a:43:84:e2:ba:40:a1:29:e0:af:b4:
                    0d:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:EA:3D:4F:AA:2B:2E:65:C5:5A:7E:72:CF:A7:B6:27:48:EF:F3:2C
            X509v3 Authority Key Identifier:
                keyid:10:B6:5C:F6:FA:5E:1F:CA:E8:CF:84:C9:70:1E:38:BD:FB:63:AA:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:f5:33:eb:13:29:2e:50:b1:60:ec:c8:a4:0f:d6:bb:87:c8:
         cb:ca:d1:95:9a:5d:ab:a6:18:4e:d5:41:f5:52:77:5b:68:e7:
         bd:68:a0:37:1e:6d:27:0e:67:34:1c:ee:09:fb:4e:44:87:5b:
         c5:90:42:de:a5:ca:39:80:b9:e7:8e:51:dd:e9:f5:34:e4:ae:
         f2:a1:14:26:4e:af:f2:4c:1f:d8:e5:b3:ef:25:89:8f:bf:50:
         d1:75:2c:6f:0a:e4:c6:02:70:ce:76:fb:f1:1b:45:cd:71:a9:
         75:41:12:66:c0:d4:9a:6f:97:ef:b2:53:f5:9c:bc:f5:35:39:
         e3:dd:0a:2e:81:14:d4:68:85:bd:92:29:86:27:80:2f:12:9a:
         b8:d7:82:2b:91:9c:7d:5a:25:c8:b0:4b:c3:7d:45:8a:a0:78:
         3d:1a:09:78:94:3f:ed:47:8d:f8:3f:58:81:f8:f1:a9:96:ab:
         6f:d3:ce:45:37:2f:48:2b:62:be:99:e7:5e:e5:c2:7b:a0:20:
         e4:8a:a6:06:40:8c:94:34:51:48:f6:55:3b:81:44:67:b6:b0:
         fc:e1:d5:18:6f:fc:c2:57:19:0c:dc:ad:fb:3d:c8:5c:77:94:
         ea:69:6a:c4:31:c3:b4:3e:ce:a1:91:90:87:e5:ad:c6:bd:b5:
         fc:57:a5:93
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wBrlh6oIfQHYz/AXcHLLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwYjY1Y2Y2ZmE1ZTFmY2FlOGNmODRjOTcwMWUzOGJkZmI2
M2FhYjMwHhcNMjYwMzI5MDQwMDI5WhcNMjYwMzMwMDQwMDI5WjAzMTEwLwYDVQQD
EyhlNGVhM2Q0ZmFhMmIyZTY1YzU1YTdlNzJjZmE3YjYyNzQ4ZWZmMzJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQqmgIMXg2UOKcmG1fdnvbv6CLCH
DRGqls6638J0MCH3poDYlBbdCO4uf7g8ICc3DtLIVmgFn6UyLkuvaH7RSaOF+XQI
z6sEfaNehsNq7xtEXxhBCyfDMp3KSB3bY9f4LuAOM+9uEzwqbV1FqAhKJHGvd8fM
3ap2WDP7plDc3o/qCGE0gm/OFu5GW3sD4qVmkGpobQxPNYhky+TCRedIzBTxW6tW
kYkAlltoc9ltJxzRSiIY1iXdHwztxyLF1QA+SWUhAJtI6aBh9IqdIDmKXbIpORBI
4SwdKnC6ad/0Pn+hqf2Kkp3toefk4sskBlB/3yDUWkOE4rpAoSngr7QNVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOTqPU+qKy5lxVp+cs+ntidI7/MsMB8GA1UdIwQY
MBaAFBC2XPb6Xh/K6M+EyXAeOL37Y6qzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUxaYzl2cGVIOHJvejRUSmNCNDR2ZnRqcXJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS84MDkwYzItODE4MC00ZjNmLTgxNDIt
YTIzODU1ODcyYjg2LzEvRUxaYzl2cGVIOHJvejRUSmNCNDR2ZnRqcXJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS84MDkwYzItODE4MC00ZjNmLTgxNDItYTIzODU1ODcyYjg2
LzEvRUxaYzl2cGVIOHJvejRUSmNCNDR2ZnRqcXJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb/Uz6xMp
LlCxYOzIpA/Wu4fIy8rRlZpdq6YYTtVB9VJ3W2jnvWigNx5tJw5nNBzuCftORIdb
xZBC3qXKOYC5545R3en1NOSu8qEUJk6v8kwf2OWz7yWJj79Q0XUsbwrkxgJwznb7
8RtFzXGpdUESZsDUmm+X77JT9Zy89TU5490KLoEU1GiFvZIphieALxKauNeCK5Gc
fVolyLBLw31FiqB4PRoJeJQ/7UeN+D9YgfjxqZarb9PORTcvSCtivpnnXuXCe6Ag
5IqmBkCMlDRRSPZVO4FEZ7aw/OHVGG/8wlcZDNyt+z3IXHeU6mlqxDHDtD7OoZGQ
h+Wtxr21/Felkw==
-----END CERTIFICATE-----