Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
File:                     0WLUzQwan_4krVFT0Zzpwx3LTH0.mft (raw, json)
Hash identifier:          /VMEWfCM69S5fz0mmvlRainwvH1rSmcnFOeFl85GKrs=
Subject key identifier:   88:E7:C9:4B:F9:0C:6D:D8:2D:A6:D3:2D:59:4E:15:DA:84:92:DA:DD
Authority key identifier: D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D
Certificate issuer:       /CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
Certificate serial:       019D29CEC58D72A341512ECBF8780C77B157
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
Manifest number:          1882
Signing time:             Thu 26 Mar 2026 11:01:49 +0000
Manifest this update:     Thu 26 Mar 2026 11:01:49 +0000
Manifest next update:     Fri 27 Mar 2026 11:01:49 +0000
Files and hashes:         1: 0WLUzQwan_4krVFT0Zzpwx3LTH0.crl (hash: A+J8K/VKWggKDMFt8bN3nSaSDtpAchZ4ZdLucuvQMv4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 09:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:29:ce:c5:8d:72:a3:41:51:2e:cb:f8:78:0c:77:b1:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
        Validity
            Not Before: Mar 26 11:01:49 2026 GMT
            Not After : Mar 27 11:01:49 2026 GMT
        Subject: CN=88e7c94bf90c6dd82da6d32d594e15da8492dadd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:6f:51:6c:28:28:08:f5:95:6e:d3:1d:3c:9b:
                    36:c3:2d:62:c3:0b:fd:33:44:3e:0c:96:86:67:c8:
                    bd:b7:1e:ed:b0:d0:70:53:fe:d1:e5:6e:c5:c5:18:
                    42:e1:1c:29:3f:6a:4f:72:97:a1:91:8a:6b:b8:e3:
                    32:da:e0:fb:61:16:e1:5e:7b:da:c7:e1:7f:5d:6d:
                    e5:5e:c5:44:94:ab:10:b1:90:5d:d8:7d:24:b3:c9:
                    1b:1b:03:49:dd:bc:56:64:a9:1d:05:44:27:06:a2:
                    35:09:d7:43:99:fe:4a:c7:9e:75:38:48:5e:0c:31:
                    3e:87:76:80:dd:b8:1a:3d:76:3a:24:20:1a:a7:09:
                    8e:2c:18:1c:9a:f7:a0:22:30:4b:6a:60:d7:4c:52:
                    13:4a:6c:ee:91:7b:aa:68:2b:e7:24:55:0a:60:1a:
                    ab:74:ec:02:65:e3:52:0c:2c:fc:dd:ed:d5:7f:0a:
                    fb:f4:9d:3b:6a:41:b7:43:46:cd:57:47:70:ae:aa:
                    1b:3d:c5:69:b5:5e:77:a2:1f:8c:ef:0e:9b:f7:30:
                    52:1d:a7:ed:b0:2c:b2:48:5e:9a:3a:7d:7b:2f:83:
                    e1:60:b4:d5:36:3c:d5:05:da:62:b2:0c:bb:f7:a6:
                    0e:30:43:6f:2e:7c:4d:a0:d2:59:e5:62:a1:4c:c1:
                    f6:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:E7:C9:4B:F9:0C:6D:D8:2D:A6:D3:2D:59:4E:15:DA:84:92:DA:DD
            X509v3 Authority Key Identifier:
                keyid:D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ab:75:17:76:33:c0:1d:25:8c:48:5a:e4:90:1a:8a:a2:4f:df:
         bb:b8:47:f2:1f:dd:79:70:3f:17:f6:7c:5a:27:7e:cd:9a:ef:
         89:b9:c2:d0:90:13:7f:a6:89:5b:0a:04:ea:6f:3b:cb:1e:04:
         cb:12:50:29:61:97:d8:5d:9c:d9:68:85:9e:a1:72:56:20:d1:
         fe:b0:45:17:07:8c:7d:7d:9d:9b:db:89:e1:ac:b6:1c:14:2b:
         14:3c:05:8e:4b:e8:a4:9f:37:f3:d7:0f:ea:b9:e8:35:97:22:
         fe:e7:1a:ec:cc:56:d1:14:9c:ed:3d:ae:5f:1d:6a:30:88:ee:
         4a:42:e8:23:86:76:79:18:c8:9b:5b:63:aa:bc:c6:12:9f:81:
         43:9d:cf:a2:7b:05:b6:33:04:56:15:2c:a9:08:03:38:2d:63:
         a0:0b:29:48:ec:72:62:58:d5:f3:e4:6f:4c:0e:4b:d0:74:a9:
         06:06:44:2a:b4:e6:4e:0b:cb:f9:b9:64:1e:ed:a2:c9:e1:8e:
         ad:a6:09:f0:76:6b:6d:c0:06:bd:ee:82:c1:a6:cf:ab:bc:ca:
         ad:b5:30:83:7c:97:d4:a2:03:84:d8:10:cb:42:ae:f8:c0:78:
         2d:cc:e3:29:06:fd:f9:d2:17:6f:9e:22:2a:41:00:e1:06:90:
         5d:a7:23:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pzsWNcqNBUS7L+HgMd7FXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxNjJkNGNkMGMxYTlmZmUyNGFkNTE1M2QxOWNlOWMzMWRj
YjRjN2QwHhcNMjYwMzI2MTEwMTQ5WhcNMjYwMzI3MTEwMTQ5WjAzMTEwLwYDVQQD
Eyg4OGU3Yzk0YmY5MGM2ZGQ4MmRhNmQzMmQ1OTRlMTVkYTg0OTJkYWRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsG9RbCgoCPWVbtMdPJs2wy1iwwv9
M0Q+DJaGZ8i9tx7tsNBwU/7R5W7FxRhC4RwpP2pPcpehkYpruOMy2uD7YRbhXnva
x+F/XW3lXsVElKsQsZBd2H0ks8kbGwNJ3bxWZKkdBUQnBqI1CddDmf5Kx551OEhe
DDE+h3aA3bgaPXY6JCAapwmOLBgcmvegIjBLamDXTFITSmzukXuqaCvnJFUKYBqr
dOwCZeNSDCz83e3Vfwr79J07akG3Q0bNV0dwrqobPcVptV53oh+M7w6b9zBSHaft
sCyySF6aOn17L4PhYLTVNjzVBdpisgy796YOMENvLnxNoNJZ5WKhTMH24wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIjnyUv5DG3YLabTLVlOFdqEktrdMB8GA1UdIwQY
MBaAFNFi1M0MGp/+JK1RU9Gc6cMdy0x9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi81Zjg0YTEtZThkYy00MTE1LWE2NDUt
ZTgxNzIwYTM5NzhkLzEvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi81Zjg0YTEtZThkYy00MTE1LWE2NDUtZTgxNzIwYTM5Nzhk
LzEvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq3UXdjPA
HSWMSFrkkBqKok/fu7hH8h/deXA/F/Z8Wid+zZrvibnC0JATf6aJWwoE6m87yx4E
yxJQKWGX2F2c2WiFnqFyViDR/rBFFweMfX2dm9uJ4ay2HBQrFDwFjkvopJ8389cP
6rnoNZci/uca7MxW0RSc7T2uXx1qMIjuSkLoI4Z2eRjIm1tjqrzGEp+BQ53PonsF
tjMEVhUsqQgDOC1joAspSOxyYljV8+RvTA5L0HSpBgZEKrTmTgvL+blkHu2iyeGO
raYJ8HZrbcAGve6CwabPq7zKrbUwg3yX1KIDhNgQy0Ku+MB4LczjKQb9+dIXb54i
KkEA4QaQXacjOA==
-----END CERTIFICATE-----