Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
File:                     D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft (raw, json)
Hash identifier:          A1a+mZWLnQGwMPgg2kyVkGHcaHW70nDabEcybkguxSc=
Subject key identifier:   47:B5:93:F3:B9:D0:23:99:F3:80:B7:BB:0F:A4:80:BA:07:80:F8:1F
Authority key identifier: 0F:79:76:05:20:B7:C1:5C:2E:42:60:30:82:72:B8:49:F8:8E:D6:77
Certificate issuer:       /CN=0f79760520b7c15c2e4260308272b849f88ed677
Certificate serial:       019D389C53EF15BAAD7EC85FA5C35641145D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
Manifest number:          188E
Signing time:             Sun 29 Mar 2026 08:01:02 +0000
Manifest this update:     Sun 29 Mar 2026 08:01:02 +0000
Manifest next update:     Mon 30 Mar 2026 08:01:02 +0000
Files and hashes:         1: D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl (hash: Yq6BMbtusD14pqTq0fOH1MbeFfyc4rDPTx/85L48oQQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:9c:53:ef:15:ba:ad:7e:c8:5f:a5:c3:56:41:14:5d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0f79760520b7c15c2e4260308272b849f88ed677
        Validity
            Not Before: Mar 29 08:01:02 2026 GMT
            Not After : Mar 30 08:01:02 2026 GMT
        Subject: CN=47b593f3b9d02399f380b7bb0fa480ba0780f81f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:46:d6:47:2b:75:72:3b:71:b1:f2:64:d1:55:
                    68:72:1d:a8:0a:fe:e3:1e:a4:7c:23:b6:70:ea:df:
                    e6:05:8e:ad:b8:bb:61:15:ee:82:8f:14:7a:82:86:
                    8d:59:dc:8b:54:6b:18:0c:2d:23:01:b7:78:5c:e7:
                    39:2a:b9:93:d0:d1:ee:6a:38:1a:95:14:2e:f7:70:
                    10:b3:81:e9:80:eb:2b:11:c3:86:6c:75:73:79:68:
                    16:34:ae:93:fe:a3:1d:2f:98:d4:c8:2d:bc:b9:f0:
                    de:66:9d:5d:20:e4:bd:06:42:77:5a:42:97:b0:be:
                    d7:f8:b6:63:b4:0b:db:ad:d7:44:0d:6c:0e:54:1c:
                    ef:72:48:55:ab:2d:d3:b1:de:3f:f1:5e:1d:39:f5:
                    8a:d2:c6:cb:64:da:97:18:c3:11:5a:50:92:52:9c:
                    d8:68:35:97:43:02:2f:ed:7b:4f:0f:7c:98:34:95:
                    37:c1:33:60:34:aa:12:eb:23:66:59:0c:6e:67:ca:
                    03:05:3b:ee:ca:c1:24:a5:a1:99:e5:d0:35:23:8b:
                    3f:08:1b:10:85:89:c6:0b:01:92:69:ad:67:88:70:
                    ac:84:2f:e1:e2:ca:23:cb:37:84:f4:8a:6e:c3:90:
                    61:a6:06:69:32:a8:c5:5e:06:94:7d:4a:ce:40:64:
                    5c:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:B5:93:F3:B9:D0:23:99:F3:80:B7:BB:0F:A4:80:BA:07:80:F8:1F
            X509v3 Authority Key Identifier:
                keyid:0F:79:76:05:20:B7:C1:5C:2E:42:60:30:82:72:B8:49:F8:8E:D6:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:08:32:de:9f:92:e2:1d:92:43:df:d4:66:4e:99:00:1f:0a:
         60:62:8f:15:af:b8:a2:ec:14:6e:4a:ed:c0:fc:bd:82:c6:eb:
         44:b2:3c:d9:13:ad:0b:09:b3:95:ab:26:cb:b5:4d:3a:26:e2:
         96:62:0c:2d:84:10:0f:ef:67:2a:cc:b4:fb:74:dc:81:c8:7d:
         b2:79:f2:2f:b7:7d:8d:5b:34:50:85:7e:8d:a4:d1:27:24:16:
         5d:af:aa:28:61:4e:eb:33:59:60:d5:2d:77:0e:4f:23:13:62:
         e8:18:57:df:35:dd:d1:89:c9:f3:d8:25:80:02:df:09:02:2b:
         b3:30:b4:06:03:d0:67:2a:17:c1:a5:4e:f5:15:d1:38:13:e1:
         e7:00:22:b3:0e:60:9c:d0:7b:4e:41:58:69:75:08:32:e9:74:
         f0:4d:fc:bb:8a:81:81:98:aa:fb:6f:b4:02:6c:87:ae:a1:7f:
         30:69:45:dd:69:03:1b:79:93:39:19:7f:e3:34:08:35:69:7d:
         3c:d2:28:96:50:be:20:2e:33:21:b3:f4:08:29:26:5c:14:9e:
         72:10:4e:e8:05:47:47:15:31:8b:9d:62:89:8d:6d:34:42:62:
         bc:f3:c6:54:a0:dc:74:f0:17:27:a2:3a:28:e4:ea:c6:2d:69:
         2a:6a:c2:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----