Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
File:                     Bv170s3aV23AzQiOvm7mAZceEjQ.mft (raw, json)
Hash identifier:          NevBlV28iUpgqsK1hm/OG1G4HNHkIFjV7NKSrDWGiLU=
Subject key identifier:   8C:73:16:80:67:CC:CA:F0:AD:65:6B:22:B2:77:61:74:DF:A7:6F:18
Authority key identifier: 06:FD:7B:D2:CD:DA:57:6D:C0:CD:08:8E:BE:6E:E6:01:97:1E:12:34
Certificate issuer:       /CN=06fd7bd2cdda576dc0cd088ebe6ee601971e1234
Certificate serial:       019D25F1C1AF65978C6AA5341CCDC7125655
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
Manifest number:          105C
Signing time:             Wed 25 Mar 2026 17:01:33 +0000
Manifest this update:     Wed 25 Mar 2026 17:01:33 +0000
Manifest next update:     Thu 26 Mar 2026 17:01:33 +0000
Files and hashes:         1: Bv170s3aV23AzQiOvm7mAZceEjQ.crl (hash: SrJPuqD+TjqVZ3jH0Z5pebqoOWjzsLj4yNaLB/a7aqE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 26 Mar 2026 15:17:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:25:f1:c1:af:65:97:8c:6a:a5:34:1c:cd:c7:12:56:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=06fd7bd2cdda576dc0cd088ebe6ee601971e1234
        Validity
            Not Before: Mar 25 17:01:33 2026 GMT
            Not After : Mar 26 17:01:33 2026 GMT
        Subject: CN=8c73168067cccaf0ad656b22b2776174dfa76f18
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:95:ab:4b:d0:df:fc:22:a2:65:6f:26:75:d4:
                    bf:40:60:f2:ff:44:08:b3:ad:89:e6:0e:32:1d:66:
                    da:42:ec:7e:f0:17:19:2b:27:15:ca:8c:42:02:8d:
                    63:b9:5e:1f:cd:c0:61:4e:41:6c:23:ed:22:c0:af:
                    98:3b:6e:9e:65:dc:41:07:8a:5e:e9:49:42:38:34:
                    50:e3:e7:f7:68:ed:85:99:bd:aa:79:54:84:ab:b2:
                    73:8c:46:d8:c8:22:34:35:d3:d4:7e:10:af:96:a7:
                    f4:3d:bf:4e:29:10:c6:9b:19:b0:f8:cc:12:24:a4:
                    17:0b:4f:c4:37:49:69:76:06:71:1d:7a:46:c7:4b:
                    e8:65:8a:94:08:ae:73:ff:92:24:ed:6e:66:85:53:
                    dd:fe:45:7b:20:a9:6a:0c:3e:f1:b3:f4:e7:e1:9b:
                    2e:c4:16:c0:44:36:24:36:eb:45:52:a6:b8:bd:0d:
                    6f:31:81:17:78:fd:a5:e2:33:db:24:09:34:3d:38:
                    4f:9c:a5:f1:2e:76:a8:77:e7:8b:df:dd:2e:95:f9:
                    7d:58:d5:17:1f:df:ae:ef:89:bb:fc:38:ae:b3:58:
                    ba:a5:59:73:bd:58:a9:c5:55:c3:37:55:48:f7:bc:
                    07:91:dc:d0:59:88:5a:8c:91:57:08:b8:19:ca:50:
                    64:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8C:73:16:80:67:CC:CA:F0:AD:65:6B:22:B2:77:61:74:DF:A7:6F:18
            X509v3 Authority Key Identifier:
                keyid:06:FD:7B:D2:CD:DA:57:6D:C0:CD:08:8E:BE:6E:E6:01:97:1E:12:34

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:d2:06:f3:58:44:d6:1f:9e:6a:20:15:c9:47:3d:a0:7c:92:
         55:99:4d:d3:f3:1e:f2:0d:a9:7a:45:05:7a:93:e6:cf:4d:ff:
         0b:c5:39:ba:76:aa:2b:15:c4:70:19:7c:e1:4d:f0:39:11:13:
         39:84:e3:67:95:91:60:7c:ba:41:3f:a9:f7:cf:6f:f8:d8:16:
         40:e4:3b:f4:2c:04:9a:25:2b:c7:c9:d4:f9:a9:c2:bd:9b:de:
         c6:79:b2:b1:a9:89:01:b2:6a:26:ba:19:96:92:61:28:ac:a6:
         42:58:d8:2f:3d:51:fd:33:e7:80:f0:2b:6c:9c:14:9c:c3:9b:
         ca:c9:fd:ed:7c:88:d7:c4:b2:92:93:c7:1a:2d:ea:6e:c0:b1:
         a2:eb:ec:2f:51:58:40:f3:23:d1:ed:f5:ec:8f:f4:10:c8:df:
         ef:bd:a2:c4:65:8d:b9:0f:8e:8c:b7:40:9e:58:b0:26:e9:32:
         a9:80:0e:77:f1:62:c1:fa:b5:86:38:23:ba:ed:f1:28:77:c8:
         16:db:35:b3:c4:6b:62:19:b8:69:49:46:7c:31:da:f8:9c:67:
         d1:f1:b0:ea:13:18:17:26:14:12:73:ed:8d:b2:59:9c:dd:4c:
         44:01:0c:0a:84:8e:7b:16:af:9d:ca:63:b4:7e:1e:f4:9c:43:
         97:74:b5:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----