Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
File:                     D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft (raw, json)
Hash identifier:          HOrcBtBPoUrIyv6l1PnuxaKDAyt2RiWLJK+S7V7M86Q=
Subject key identifier:   ED:6D:78:69:66:E5:CF:C8:DF:97:62:FF:3A:53:40:2F:74:13:13:3E
Authority key identifier: 0F:79:76:05:20:B7:C1:5C:2E:42:60:30:82:72:B8:49:F8:8E:D6:77
Certificate issuer:       /CN=0f79760520b7c15c2e4260308272b849f88ed677
Certificate serial:       019E2FCD9F78A410AC0B9204783601098B66
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
Manifest number:          190E
Signing time:             Sat 16 May 2026 08:01:05 +0000
Manifest this update:     Sat 16 May 2026 08:01:05 +0000
Manifest next update:     Sun 17 May 2026 08:01:05 +0000
Files and hashes:         1: D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl (hash: 1ox2eGkI09AdweIs1xPX9tYxmc5IvlkT33WUaeydNSM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 08:01:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:cd:9f:78:a4:10:ac:0b:92:04:78:36:01:09:8b:66
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0f79760520b7c15c2e4260308272b849f88ed677
        Validity
            Not Before: May 16 08:01:05 2026 GMT
            Not After : May 17 08:01:05 2026 GMT
        Subject: CN=ed6d786966e5cfc8df9762ff3a53402f7413133e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:c8:d7:65:8a:45:01:82:ee:ea:54:3d:b3:f8:
                    1d:81:f7:f7:6b:02:fe:68:cc:92:75:22:6a:02:4e:
                    9a:86:23:22:29:3a:1e:10:ff:98:de:5a:be:cf:ef:
                    7f:14:71:40:8c:40:5f:b8:5b:7e:6d:b4:b4:3f:a3:
                    1d:e2:ea:bd:cd:14:cc:23:bb:e2:1b:b8:77:2c:c8:
                    21:56:10:93:59:8b:ad:d8:b5:79:d0:5e:49:78:9b:
                    dd:03:c8:ee:cd:f6:2c:f5:86:72:05:e5:22:32:04:
                    22:6a:e7:b4:32:57:84:89:af:cd:10:30:c0:02:8c:
                    47:24:95:a1:0e:4e:93:d6:bb:e2:45:7e:d4:40:5c:
                    24:2a:75:52:8b:e0:80:54:3b:b6:3b:14:32:b1:fb:
                    d4:04:8b:b0:17:68:b7:81:48:e5:59:6b:bd:83:c1:
                    d1:31:84:93:4c:62:f1:84:e7:a4:b7:fd:1e:a4:90:
                    3b:c6:59:c8:98:55:91:c6:44:8f:f9:70:0f:4c:d2:
                    a2:2a:7a:ad:14:c9:72:a7:48:a5:8c:92:8a:6f:a1:
                    91:09:d4:3a:88:42:8d:3a:84:8e:d1:47:ea:de:e2:
                    91:2a:1a:61:bc:35:02:d2:23:b9:39:0c:a9:ea:9d:
                    e3:b5:0c:21:7a:f3:93:66:00:27:f5:ff:92:9b:48:
                    d3:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:6D:78:69:66:E5:CF:C8:DF:97:62:FF:3A:53:40:2F:74:13:13:3E
            X509v3 Authority Key Identifier:
                keyid:0F:79:76:05:20:B7:C1:5C:2E:42:60:30:82:72:B8:49:F8:8E:D6:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c6:7e:7b:96:90:e8:06:60:f0:3f:7a:0f:54:8f:60:1a:d6:0a:
         cf:4e:6e:58:e8:13:12:97:6b:26:ec:cf:6e:8b:2e:5d:5a:33:
         e2:6d:1b:51:2d:38:86:62:ba:fc:fa:b0:0e:2b:e1:3f:7e:42:
         38:86:85:d0:f5:75:c6:a8:b8:fd:59:e8:44:ee:72:e0:43:c3:
         1d:64:28:20:f1:d5:cf:ff:0e:6d:48:15:6c:36:5a:e4:e4:29:
         d0:77:26:b7:9b:ba:90:70:43:77:2b:ea:7e:b8:55:95:0a:e7:
         65:41:57:35:9f:81:82:95:ef:b5:3f:49:c0:99:93:77:9f:5f:
         75:dd:1c:3e:ee:51:76:3f:77:70:10:82:92:6f:63:72:5a:a1:
         a2:ac:66:a0:e2:14:98:7b:8c:e6:eb:2e:6f:d9:c0:19:88:56:
         5e:f6:29:a8:d6:4f:77:70:94:ff:56:61:97:f6:f9:6e:54:67:
         08:8e:ee:1e:db:f1:66:36:82:49:9a:08:55:34:74:5b:29:a6:
         4f:32:3a:80:3f:8e:06:07:62:37:cc:06:fd:60:01:3c:19:fd:
         51:60:06:b6:47:6d:53:65:e2:00:8f:59:64:78:73:55:22:4e:
         ce:20:a0:e2:10:f8:b5:f9:82:ad:c8:55:14:fd:1b:ef:c6:d3:
         51:98:c4:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vzZ94pBCsC5IEeDYBCYtmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmNzk3NjA1MjBiN2MxNWMyZTQyNjAzMDgyNzJiODQ5Zjg4
ZWQ2NzcwHhcNMjYwNTE2MDgwMTA1WhcNMjYwNTE3MDgwMTA1WjAzMTEwLwYDVQQD
EyhlZDZkNzg2OTY2ZTVjZmM4ZGY5NzYyZmYzYTUzNDAyZjc0MTMxMzNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA48jXZYpFAYLu6lQ9s/gdgff3awL+
aMySdSJqAk6ahiMiKToeEP+Y3lq+z+9/FHFAjEBfuFt+bbS0P6Md4uq9zRTMI7vi
G7h3LMghVhCTWYut2LV50F5JeJvdA8juzfYs9YZyBeUiMgQiaue0MleEia/NEDDA
AoxHJJWhDk6T1rviRX7UQFwkKnVSi+CAVDu2OxQysfvUBIuwF2i3gUjlWWu9g8HR
MYSTTGLxhOekt/0epJA7xlnImFWRxkSP+XAPTNKiKnqtFMlyp0iljJKKb6GRCdQ6
iEKNOoSO0Ufq3uKRKhphvDUC0iO5OQyp6p3jtQwhevOTZgAn9f+Sm0jT1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO1teGlm5c/I35di/zpTQC90ExM+MB8GA1UdIwQY
MBaAFA95dgUgt8FcLkJgMIJyuEn4jtZ3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDNsMkJTQzN3Vnd1UW1Bd2duSzRTZmlPMW5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9mODQ3NGItNWFlYi00MDU4LTlmNGUt
MDA0MjQyNWJhYjFhLzEvRDNsMkJTQzN3Vnd1UW1Bd2duSzRTZmlPMW5jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9mODQ3NGItNWFlYi00MDU4LTlmNGUtMDA0MjQyNWJhYjFh
LzEvRDNsMkJTQzN3Vnd1UW1Bd2duSzRTZmlPMW5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxn57lpDo
BmDwP3oPVI9gGtYKz05uWOgTEpdrJuzPbosuXVoz4m0bUS04hmK6/PqwDivhP35C
OIaF0PV1xqi4/VnoRO5y4EPDHWQoIPHVz/8ObUgVbDZa5OQp0Hcmt5u6kHBDdyvq
frhVlQrnZUFXNZ+BgpXvtT9JwJmTd59fdd0cPu5Rdj93cBCCkm9jclqhoqxmoOIU
mHuM5usub9nAGYhWXvYpqNZPd3CU/1Zhl/b5blRnCI7uHtvxZjaCSZoIVTR0Wymm
TzI6gD+OBgdiN8wG/WABPBn9UWAGtkdtU2XiAI9ZZHhzVSJOziCg4hD4tfmCrchV
FP0b78bTUZjEyQ==
-----END CERTIFICATE-----