Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.mft
File:                     bQmekI59iHniTR7eCdgSz0at4sw.mft (raw, json)
Hash identifier:          sAqx0nj4rOPjtiP044zcrke1NQFR0JnJfGFGS23+GoE=
Subject key identifier:   C6:AD:A3:FF:0E:AF:BC:63:F4:70:4D:74:DE:72:B7:F5:89:72:FC:E0
Authority key identifier: 6D:09:9E:90:8E:7D:88:79:E2:4D:1E:DE:09:D8:12:CF:46:AD:E2:CC
Certificate issuer:       /CN=6d099e908e7d8879e24d1ede09d812cf46ade2cc
Certificate serial:       019D38D2EFB0D53CBD7254839EA552C10D72
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bQmekI59iHniTR7eCdgSz0at4sw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.mft
Manifest number:          078B
Signing time:             Sun 29 Mar 2026 09:00:41 +0000
Manifest this update:     Sun 29 Mar 2026 09:00:41 +0000
Manifest next update:     Mon 30 Mar 2026 09:00:41 +0000
Files and hashes:         1: bQmekI59iHniTR7eCdgSz0at4sw.crl (hash: e7fHlnX4LCaX4wR1QzkO5z1qsKU1MLg2c5i9C9viPPM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bQmekI59iHniTR7eCdgSz0at4sw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:d2:ef:b0:d5:3c:bd:72:54:83:9e:a5:52:c1:0d:72
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6d099e908e7d8879e24d1ede09d812cf46ade2cc
        Validity
            Not Before: Mar 29 09:00:41 2026 GMT
            Not After : Mar 30 09:00:41 2026 GMT
        Subject: CN=c6ada3ff0eafbc63f4704d74de72b7f58972fce0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:50:30:73:c9:bc:5f:d6:b5:d8:83:5a:3f:cf:
                    47:66:9d:f3:e9:82:f8:2b:d6:28:8c:cb:d6:a9:6e:
                    4c:d0:72:bb:07:b0:c5:8f:ce:eb:7b:77:ee:ac:27:
                    f7:00:1e:55:2e:25:ad:2b:f6:a6:06:1f:a0:38:b8:
                    5f:ae:43:9c:40:e0:7a:35:31:e4:cc:d1:fa:12:86:
                    a5:8d:48:5f:fd:e3:b6:f7:05:e5:d0:bb:d4:74:92:
                    93:c4:b5:90:ef:c6:63:8b:0d:28:e8:60:41:6b:e0:
                    11:2a:3d:46:c3:9e:60:8a:ce:c2:d7:cf:54:90:be:
                    d7:99:73:ec:3b:34:a1:da:28:57:bc:e5:3a:f2:a6:
                    ae:c1:41:2a:23:af:72:65:6b:ba:56:df:89:5c:1b:
                    5f:2e:14:f5:46:68:0e:b5:9d:cb:0a:5c:8e:d9:29:
                    73:7f:7a:b5:e7:a4:81:02:8f:8c:71:d0:27:2c:9c:
                    94:46:96:bd:b7:21:f9:84:20:7d:7d:3e:40:b8:72:
                    31:5f:93:59:7e:4e:fb:6b:73:f8:dc:45:56:b2:0a:
                    2a:48:7b:73:9e:d9:5c:7f:42:22:60:7c:c2:1f:f8:
                    86:f5:a6:ca:49:36:3c:99:23:bf:f2:3d:03:5c:a4:
                    a7:6b:19:e7:4b:c1:31:38:01:4d:4a:63:b6:90:f4:
                    d5:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:AD:A3:FF:0E:AF:BC:63:F4:70:4D:74:DE:72:B7:F5:89:72:FC:E0
            X509v3 Authority Key Identifier:
                keyid:6D:09:9E:90:8E:7D:88:79:E2:4D:1E:DE:09:D8:12:CF:46:AD:E2:CC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQmekI59iHniTR7eCdgSz0at4sw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:b5:ae:0a:85:42:7e:c2:f4:ba:5e:78:2a:2e:1b:96:ad:b5:
         68:c2:f5:49:3c:dd:86:45:82:46:21:4b:b3:af:24:a3:fc:ea:
         8c:7b:b8:de:07:9b:8b:36:91:e4:10:04:84:88:74:cb:14:63:
         12:32:63:18:85:2b:62:a0:70:44:7e:25:52:08:0f:54:87:d2:
         89:68:b7:1d:0a:79:48:a4:de:60:93:f6:70:45:1e:a2:75:99:
         42:d1:07:db:0f:cc:6e:00:43:a5:de:da:5f:8c:50:99:0c:23:
         bd:58:0f:86:0d:62:8c:4f:e5:e1:e1:53:3f:f3:7d:bf:e0:17:
         76:2a:f4:c9:de:9e:73:15:48:dc:d8:a8:03:9b:fc:6b:db:06:
         61:cf:ff:72:5b:9e:08:0d:f9:74:4c:42:34:1b:43:13:e3:1f:
         94:69:6f:50:95:0c:2b:8a:f7:53:d5:7e:72:70:20:6b:bb:25:
         ed:59:72:0b:c3:63:94:75:f1:ac:bf:3a:ff:f7:48:cc:6b:f6:
         96:28:ed:44:fc:82:de:a7:ad:11:d1:75:a6:6c:fb:38:2d:61:
         9e:d9:fb:af:71:07:08:70:7a:e0:2f:3a:6f:ca:fb:8d:78:9d:
         e0:d6:c8:f8:73:37:74:57:da:b4:de:fd:b7:86:3c:82:39:cc:
         25:51:66:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----