Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft
File:                     RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft (raw, json)
Hash identifier:          OQ2NnnvxCNfWFlTzUggZ9uQpjp33lViD0nQyoTfg8qY=
Subject key identifier:   09:C3:0E:4B:76:D2:B0:94:1B:E6:28:62:BA:02:2E:C9:12:50:0C:33
Authority key identifier: 44:3D:4F:95:73:29:DF:31:49:8F:A8:54:3C:23:F1:2C:87:4C:C6:0D
Certificate issuer:       /CN=443d4f957329df31498fa8543c23f12c874cc60d
Certificate serial:       019D3865CD3C52CF97384CE95E71AE058C74
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RD1PlXMp3zFJj6hUPCPxLIdMxg0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft
Manifest number:          02FB
Signing time:             Sun 29 Mar 2026 07:01:28 +0000
Manifest this update:     Sun 29 Mar 2026 07:01:28 +0000
Manifest next update:     Mon 30 Mar 2026 07:01:28 +0000
Files and hashes:         1: RD1PlXMp3zFJj6hUPCPxLIdMxg0.crl (hash: V9K5vjH19xVapxesw5w1N6TEhGCxO6ue/IDw5ooevA0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/RD1PlXMp3zFJj6hUPCPxLIdMxg0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:65:cd:3c:52:cf:97:38:4c:e9:5e:71:ae:05:8c:74
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=443d4f957329df31498fa8543c23f12c874cc60d
        Validity
            Not Before: Mar 29 07:01:28 2026 GMT
            Not After : Mar 30 07:01:28 2026 GMT
        Subject: CN=09c30e4b76d2b0941be62862ba022ec912500c33
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:ad:bf:e6:2f:d2:da:2f:02:72:6b:47:82:bd:
                    44:33:48:b3:99:5f:14:32:ba:6c:12:ba:f3:a5:8e:
                    7e:d4:6c:5b:14:46:39:d7:39:cc:28:50:55:86:84:
                    7f:8f:bd:b0:4f:c8:4c:d3:6f:fe:54:be:c4:88:9d:
                    23:c9:4e:8f:37:7d:63:af:bc:f6:e5:59:ef:7f:22:
                    81:09:4e:ac:ac:3c:b7:f7:64:af:23:ca:12:94:04:
                    ec:90:9e:2f:5d:bc:48:19:09:4b:5e:d0:92:41:44:
                    71:24:88:f8:0a:32:37:73:e0:90:a9:1a:df:b6:82:
                    6a:5e:9e:85:66:89:82:a4:76:75:18:c7:fe:d6:e8:
                    69:15:be:2a:96:76:00:d9:bd:b1:23:96:c6:8d:f6:
                    34:0c:b2:99:87:56:ac:05:36:b8:b2:9d:11:fd:01:
                    24:b5:43:ab:a7:47:80:b9:b9:56:b8:93:5b:46:a8:
                    e5:b7:d3:c6:10:de:4f:69:b4:43:b2:07:d4:2a:c0:
                    b8:a5:61:19:7e:81:4e:8f:b2:ef:3b:96:80:b4:34:
                    39:b6:2a:43:17:17:b8:c1:d5:67:c9:9b:47:6e:35:
                    c0:d6:0e:c3:3a:7f:f3:9c:33:33:aa:b7:87:d9:ca:
                    72:d2:aa:86:69:18:a6:6b:f1:3c:87:39:95:c4:7d:
                    38:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:C3:0E:4B:76:D2:B0:94:1B:E6:28:62:BA:02:2E:C9:12:50:0C:33
            X509v3 Authority Key Identifier:
                keyid:44:3D:4F:95:73:29:DF:31:49:8F:A8:54:3C:23:F1:2C:87:4C:C6:0D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RD1PlXMp3zFJj6hUPCPxLIdMxg0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/79dc3c-3633-4b47-9bd1-6e9b84b271e1/1/RD1PlXMp3zFJj6hUPCPxLIdMxg0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:32:89:21:aa:21:ed:19:c9:66:e7:d3:86:1d:bd:b1:c8:9b:
         e7:47:c3:ee:b8:b8:5a:f6:30:01:ed:29:a1:0d:8a:62:10:82:
         14:65:2e:84:5f:94:3b:46:2e:14:fc:77:3b:ce:a0:38:90:bb:
         5c:b1:85:20:ab:58:73:e0:52:97:1d:b5:9a:6e:19:e6:97:27:
         a6:78:a7:7a:59:86:49:00:58:36:bb:4d:ec:9d:9c:b7:c3:f1:
         fb:93:9f:ec:d0:65:49:d8:17:51:77:c6:bf:9b:de:6c:14:b5:
         f4:ee:6f:4a:40:2f:08:e8:c6:39:78:02:f0:30:02:d8:a1:c6:
         de:35:57:f9:05:ef:1f:09:91:2e:47:d4:79:71:3e:67:c6:3e:
         45:99:9e:f6:bb:d6:ea:dd:6c:84:48:d6:a9:15:92:63:c4:af:
         e3:fc:8b:5c:3b:65:52:58:6b:bd:70:5e:69:57:f1:3d:04:75:
         58:43:de:9a:c0:81:3d:d3:9d:5f:7d:5a:cb:51:da:33:ac:01:
         b8:0f:20:b6:f3:4d:d6:e8:b7:01:ad:5d:30:c6:be:db:82:dc:
         80:05:55:45:ee:e3:d6:49:e8:3f:6e:b8:a5:56:67:6b:f2:ce:
         2a:cd:00:d9:45:c4:41:0c:c2:cd:4c:63:fd:f6:f2:88:61:a4:
         e2:5c:17:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----