Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft
File:                     ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft (raw, json)
Hash identifier:          z0jE927eNh2LFUa49ZMeODllYHuBXq0juVpkFUxtof8=
Subject key identifier:   82:B3:20:CC:60:17:96:D2:3C:FE:24:48:D1:65:A1:FE:E5:70:F3:58
Authority key identifier: A2:33:A6:AF:5F:68:84:32:87:9C:7E:0C:07:72:CD:DD:8F:17:6D:B5
Certificate issuer:       /CN=a233a6af5f688432879c7e0c0772cddd8f176db5
Certificate serial:       019D37C08A43D637DB37CC36517C27DB59FF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ojOmr19ohDKHnH4MB3LN3Y8XbbU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft
Manifest number:          188C
Signing time:             Sun 29 Mar 2026 04:00:58 +0000
Manifest this update:     Sun 29 Mar 2026 04:00:58 +0000
Manifest next update:     Mon 30 Mar 2026 04:00:58 +0000
Files and hashes:         1: ojOmr19ohDKHnH4MB3LN3Y8XbbU.crl (hash: phJP55lE/pSuZSeWxURbfbHcAci96IOOI/tdglmycYo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ojOmr19ohDKHnH4MB3LN3Y8XbbU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 04:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:37:c0:8a:43:d6:37:db:37:cc:36:51:7c:27:db:59:ff
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a233a6af5f688432879c7e0c0772cddd8f176db5
        Validity
            Not Before: Mar 29 04:00:58 2026 GMT
            Not After : Mar 30 04:00:58 2026 GMT
        Subject: CN=82b320cc601796d23cfe2448d165a1fee570f358
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:51:3b:fb:c8:ec:d1:6b:94:10:ec:bc:43:f1:
                    d5:27:4b:a0:6e:67:55:3f:f5:e8:fb:ac:cd:2a:20:
                    8c:1b:9e:a7:85:6e:5e:38:e7:8a:ae:27:09:22:e7:
                    2d:5f:cf:08:4c:dd:23:ae:cd:9f:19:12:97:1d:54:
                    a6:11:db:07:7f:c8:86:aa:36:9d:5c:65:a2:1e:e4:
                    1e:3e:44:0a:e2:83:01:65:6b:68:e8:c3:92:69:b8:
                    58:cf:65:da:e7:cc:dd:28:58:c0:64:58:dd:8d:ca:
                    4e:2f:ff:a6:2b:11:d6:fe:56:d9:4b:ae:e3:b7:11:
                    fd:51:6e:4e:f3:9e:52:39:d2:6c:01:ae:4d:7c:f6:
                    08:e2:b9:bd:e9:59:6b:3d:f8:a3:aa:12:7a:e2:ae:
                    af:f3:04:13:35:8e:65:02:fc:e9:c0:4b:d4:10:d8:
                    a8:e0:e9:65:dd:e9:6c:da:0a:14:4f:16:7b:14:db:
                    37:a3:e3:95:c1:c8:27:25:fd:5f:f7:9f:5b:62:14:
                    0b:71:2e:33:b1:73:56:8d:b5:88:79:87:77:d0:2f:
                    a6:67:14:f8:34:6b:79:bf:f8:96:8c:e2:e7:66:a4:
                    5a:6b:c9:1b:93:95:f9:06:9e:fa:2e:c6:57:a7:a2:
                    3e:6b:65:6b:fe:fc:9b:7c:74:b2:07:3a:92:01:2e:
                    06:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                82:B3:20:CC:60:17:96:D2:3C:FE:24:48:D1:65:A1:FE:E5:70:F3:58
            X509v3 Authority Key Identifier:
                keyid:A2:33:A6:AF:5F:68:84:32:87:9C:7E:0C:07:72:CD:DD:8F:17:6D:B5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ojOmr19ohDKHnH4MB3LN3Y8XbbU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/54d38e-c90b-4b71-b71a-3e424056948f/1/ojOmr19ohDKHnH4MB3LN3Y8XbbU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:8b:b0:6b:98:36:29:01:2c:01:01:2a:3c:35:35:96:ce:ed:
         0a:d4:62:d8:6d:8e:36:6c:ef:e1:7e:10:0a:85:fd:43:6e:d4:
         d7:ff:ff:20:39:26:6d:d2:52:0f:77:d4:fc:d8:e3:32:b3:9d:
         c0:3f:8a:65:18:20:cf:54:15:4e:d5:cf:6e:e4:2d:18:b9:ef:
         fe:a3:d5:43:84:30:51:21:83:3c:74:6b:2d:6b:e3:8f:b8:4c:
         dd:8e:35:42:a4:09:86:a0:08:c1:d7:85:0d:47:2d:89:b9:b5:
         f6:64:e6:8c:54:42:d1:78:93:69:48:29:a3:6f:9d:da:9c:35:
         f9:85:c3:14:dc:92:20:1d:70:be:0f:2d:08:c4:71:08:5e:13:
         67:5b:a4:51:01:c4:6c:5c:0f:94:52:f5:09:c9:66:0c:ac:39:
         cf:9c:eb:bd:e9:fa:51:d1:6a:2e:7f:95:99:49:ba:b0:6e:db:
         66:7a:e4:9d:2a:ee:ad:d6:c5:0f:7c:68:cf:b4:bc:45:1b:ea:
         63:e7:c6:4a:49:e2:ce:ed:ef:54:6c:fe:5d:b9:72:ee:df:8d:
         60:0d:30:1e:66:a4:41:40:1c:69:a7:91:62:f6:73:0a:e3:6d:
         45:8e:d8:64:2e:8d:35:69:62:0e:48:9e:60:4f:4c:08:af:88:
         ad:f4:11:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wIpD1jfbN8w2UXwn21n/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyMzNhNmFmNWY2ODg0MzI4NzljN2UwYzA3NzJjZGRkOGYx
NzZkYjUwHhcNMjYwMzI5MDQwMDU4WhcNMjYwMzMwMDQwMDU4WjAzMTEwLwYDVQQD
Eyg4MmIzMjBjYzYwMTc5NmQyM2NmZTI0NDhkMTY1YTFmZWU1NzBmMzU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqlE7+8js0WuUEOy8Q/HVJ0ugbmdV
P/Xo+6zNKiCMG56nhW5eOOeKricJIuctX88ITN0jrs2fGRKXHVSmEdsHf8iGqjad
XGWiHuQePkQK4oMBZWto6MOSabhYz2Xa58zdKFjAZFjdjcpOL/+mKxHW/lbZS67j
txH9UW5O855SOdJsAa5NfPYI4rm96VlrPfijqhJ64q6v8wQTNY5lAvzpwEvUENio
4Oll3els2goUTxZ7FNs3o+OVwcgnJf1f959bYhQLcS4zsXNWjbWIeYd30C+mZxT4
NGt5v/iWjOLnZqRaa8kbk5X5Bp76LsZXp6I+a2Vr/vybfHSyBzqSAS4GpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIKzIMxgF5bSPP4kSNFlof7lcPNYMB8GA1UdIwQY
MBaAFKIzpq9faIQyh5x+DAdyzd2PF221MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2pPbXIxOW9oREtIbkg0TUIzTE4zWThYYmJVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC81NGQzOGUtYzkwYi00YjcxLWI3MWEt
M2U0MjQwNTY5NDhmLzEvb2pPbXIxOW9oREtIbkg0TUIzTE4zWThYYmJVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC81NGQzOGUtYzkwYi00YjcxLWI3MWEtM2U0MjQwNTY5NDhm
LzEvb2pPbXIxOW9oREtIbkg0TUIzTE4zWThYYmJVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALYuwa5g2
KQEsAQEqPDU1ls7tCtRi2G2ONmzv4X4QCoX9Q27U1///IDkmbdJSD3fU/NjjMrOd
wD+KZRggz1QVTtXPbuQtGLnv/qPVQ4QwUSGDPHRrLWvjj7hM3Y41QqQJhqAIwdeF
DUctibm19mTmjFRC0XiTaUgpo2+d2pw1+YXDFNySIB1wvg8tCMRxCF4TZ1ukUQHE
bFwPlFL1CclmDKw5z5zrven6UdFqLn+VmUm6sG7bZnrknSrurdbFD3xoz7S8RRvq
Y+fGSknizu3vVGz+Xbly7t+NYA0wHmakQUAcaaeRYvZzCuNtRY7YZC6NNWliDkie
YE9MCK+IrfQRMQ==
-----END CERTIFICATE-----