Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/d808d8-03ed-44c4-9b1c-0182cb02c800/1/1OXVJHHqh0idSKBiCEem1VbxY9s.mft
File:                     1OXVJHHqh0idSKBiCEem1VbxY9s.mft (raw, json)
Hash identifier:          +adPPS5p3ni2To1JETujzw1z9vZtIHPG0W5XGy3aNkI=
Subject key identifier:   18:6A:1E:38:E0:CB:3D:53:DA:FB:7B:33:FE:F1:EE:59:47:2A:4C:E6
Authority key identifier: D4:E5:D5:24:71:EA:87:48:9D:48:A0:62:08:47:A6:D5:56:F1:63:DB
Certificate issuer:       /CN=d4e5d52471ea87489d48a0620847a6d556f163db
Certificate serial:       019F189EFAE0C905501A381C86477D3A4343
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1OXVJHHqh0idSKBiCEem1VbxY9s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/eb/d808d8-03ed-44c4-9b1c-0182cb02c800/1/1OXVJHHqh0idSKBiCEem1VbxY9s.mft
Manifest number:          1916
Signing time:             Tue 30 Jun 2026 13:01:39 +0000
Manifest this update:     Tue 30 Jun 2026 13:01:39 +0000
Manifest next update:     Wed 01 Jul 2026 13:01:39 +0000
Files and hashes:         1: 1OXVJHHqh0idSKBiCEem1VbxY9s.crl (hash: 1ASIgBeNQDG2sxuaLfWR+fTyLYi6q7SE8kOrzQCrDpk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/eb/d808d8-03ed-44c4-9b1c-0182cb02c800/1/1OXVJHHqh0idSKBiCEem1VbxY9s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/eb/d808d8-03ed-44c4-9b1c-0182cb02c800/1/1OXVJHHqh0idSKBiCEem1VbxY9s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1OXVJHHqh0idSKBiCEem1VbxY9s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 13:01:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:18:9e:fa:e0:c9:05:50:1a:38:1c:86:47:7d:3a:43:43
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d4e5d52471ea87489d48a0620847a6d556f163db
        Validity
            Not Before: Jun 30 13:01:39 2026 GMT
            Not After : Jul  1 13:01:39 2026 GMT
        Subject: CN=186a1e38e0cb3d53dafb7b33fef1ee59472a4ce6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:53:59:b8:9a:5e:64:4c:57:46:bd:a0:ff:7f:
                    cc:ff:14:68:26:cb:81:69:7d:47:73:bd:f0:cc:98:
                    9b:c2:9a:16:e8:93:2c:a2:2f:ef:04:d7:e3:bb:be:
                    2e:9c:a5:01:80:5e:35:12:c3:79:db:c7:3f:03:26:
                    d8:42:46:bd:47:72:ca:a0:d8:d3:a3:ae:74:50:ad:
                    9d:07:e3:4a:f2:3a:d7:8a:8a:d1:b2:18:99:4b:9f:
                    14:47:62:7e:33:0c:dd:22:c5:3b:d7:23:14:27:b9:
                    b2:6b:12:0c:e5:33:e3:a9:34:c2:64:15:5b:ce:bc:
                    14:6c:b5:57:1d:da:aa:ce:0e:a9:da:8a:bd:53:28:
                    e4:70:98:39:04:a5:3d:ad:e6:fa:8a:ad:73:fc:d0:
                    c0:fd:c5:b4:d5:f6:bd:5f:db:91:59:6d:4f:7e:08:
                    97:d9:f2:89:da:bc:2b:ff:bb:e7:7f:2c:32:b3:79:
                    ce:23:d0:24:d6:65:e4:e0:21:2d:c1:fe:c9:74:d8:
                    82:8e:ad:9d:fd:a7:6c:c0:08:8d:78:4f:86:87:e7:
                    c3:52:25:c2:a8:17:8c:69:8d:86:56:7f:a8:d8:04:
                    2f:69:33:40:71:6a:b9:0f:00:64:2d:7e:19:0b:0d:
                    db:69:86:bb:ef:c8:8e:05:e2:c4:45:64:07:6d:bc:
                    71:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:6A:1E:38:E0:CB:3D:53:DA:FB:7B:33:FE:F1:EE:59:47:2A:4C:E6
            X509v3 Authority Key Identifier:
                keyid:D4:E5:D5:24:71:EA:87:48:9D:48:A0:62:08:47:A6:D5:56:F1:63:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OXVJHHqh0idSKBiCEem1VbxY9s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d808d8-03ed-44c4-9b1c-0182cb02c800/1/1OXVJHHqh0idSKBiCEem1VbxY9s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/d808d8-03ed-44c4-9b1c-0182cb02c800/1/1OXVJHHqh0idSKBiCEem1VbxY9s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:1f:ca:56:6f:13:25:b9:72:7c:1d:44:71:4b:c0:a9:c0:a9:
         3f:d3:17:68:bc:cc:95:30:96:9d:43:d1:23:6d:d1:28:23:61:
         83:56:fc:ff:8d:82:07:33:c6:e3:1c:88:8c:e6:02:38:c3:f3:
         d7:ec:54:25:e9:8c:a5:d6:3a:c0:df:34:1c:66:1b:6d:26:19:
         fb:33:bc:b7:9a:fa:12:32:f3:69:cd:9e:d5:59:9f:97:c4:44:
         76:c6:2d:ea:f4:c7:b2:68:73:f1:46:1a:27:3d:9e:da:88:dd:
         f6:2c:aa:32:ea:aa:75:cd:d1:9b:0d:c3:79:02:26:79:41:bb:
         e7:3d:4a:83:fb:f5:b5:3f:0b:b5:e1:52:8e:17:2a:e1:7f:a6:
         c1:a4:df:46:0a:1e:3c:06:65:f4:8a:ee:1e:30:0c:dc:1d:64:
         51:a6:d9:8d:3e:b5:c6:42:64:ce:f5:d9:db:0a:cc:39:a0:5a:
         ce:35:0e:0f:1d:de:04:2a:35:7f:60:72:c5:f2:ed:a4:98:64:
         d0:f0:74:fc:0c:dd:4d:e5:a8:c2:e0:b5:12:e7:4e:26:9b:46:
         3f:49:a4:94:25:77:9f:69:88:06:a9:c4:bb:10:3c:47:09:26:
         48:07:de:1e:8d:7e:cd:51:30:7c:55:51:90:53:89:6e:2d:eb:
         5c:56:ee:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----