Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/80c8cb-bb6f-4d26-aafe-2d83c0800c0b/1/MBHFvtv0MNvOQcazjxyxJVKrv-k.mft
File:                     MBHFvtv0MNvOQcazjxyxJVKrv-k.mft (raw, json)
Hash identifier:          tBdmFHgMDoeNqpHvWyjCEGHlsW+JjSHGaxqlJu85c5s=
Subject key identifier:   76:E9:3C:13:F9:54:F9:35:18:90:9E:8B:DA:F8:6E:D8:47:AE:54:D6
Authority key identifier: 30:11:C5:BE:DB:F4:30:DB:CE:41:C6:B3:8F:1C:B1:25:52:AB:BF:E9
Certificate issuer:       /CN=3011c5bedbf430dbce41c6b38f1cb12552abbfe9
Certificate serial:       019D27A8B8FDE0427494A6458E988422A77A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MBHFvtv0MNvOQcazjxyxJVKrv-k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/80c8cb-bb6f-4d26-aafe-2d83c0800c0b/1/MBHFvtv0MNvOQcazjxyxJVKrv-k.mft
Manifest number:          0454
Signing time:             Thu 26 Mar 2026 01:01:01 +0000
Manifest this update:     Thu 26 Mar 2026 01:01:01 +0000
Manifest next update:     Fri 27 Mar 2026 01:01:01 +0000
Files and hashes:         1: MBHFvtv0MNvOQcazjxyxJVKrv-k.crl (hash: +k1AoiiEhnPyYbQ3zPcyYHWHeK8SZKfWtcttjyAB1E8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/80c8cb-bb6f-4d26-aafe-2d83c0800c0b/1/MBHFvtv0MNvOQcazjxyxJVKrv-k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/80c8cb-bb6f-4d26-aafe-2d83c0800c0b/1/MBHFvtv0MNvOQcazjxyxJVKrv-k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MBHFvtv0MNvOQcazjxyxJVKrv-k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 00:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:a8:b8:fd:e0:42:74:94:a6:45:8e:98:84:22:a7:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3011c5bedbf430dbce41c6b38f1cb12552abbfe9
        Validity
            Not Before: Mar 26 01:01:01 2026 GMT
            Not After : Mar 27 01:01:01 2026 GMT
        Subject: CN=76e93c13f954f93518909e8bdaf86ed847ae54d6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:26:27:aa:1b:a0:d1:0e:2b:2e:65:75:3c:4d:
                    06:e0:38:c9:d1:6a:77:8f:be:b7:cb:18:3c:c9:c2:
                    f2:64:64:14:79:27:65:24:d7:72:ac:83:13:a0:89:
                    23:a1:69:5b:51:4a:86:aa:8f:c9:f2:95:52:ed:fd:
                    76:cd:2b:0d:76:69:68:cf:07:6d:63:8b:23:fe:3d:
                    a2:fb:2e:e4:3d:47:a7:e4:f2:1b:c4:98:94:de:00:
                    54:59:33:39:13:ed:22:15:c5:97:70:16:e8:8e:8f:
                    18:78:09:e4:ff:f0:9f:f8:fc:9c:14:31:09:46:b4:
                    55:31:bb:81:e0:7c:64:b1:22:1f:81:7a:cc:cb:b6:
                    fc:ff:e0:d9:0c:59:30:9c:8a:88:ae:9b:5d:dd:9b:
                    fe:13:7c:7d:39:78:66:4d:a8:39:1f:2c:6a:9a:d1:
                    38:96:42:98:a5:1f:62:92:c8:47:98:5c:b9:e4:31:
                    f8:01:58:54:4c:db:b0:ab:2f:c1:93:87:f2:b6:e4:
                    4f:e1:a4:54:5f:f0:a5:e6:7e:e0:39:f1:98:c6:b9:
                    34:e3:15:a8:44:73:73:e4:ba:04:a0:84:f7:d5:0d:
                    f1:fc:5f:77:7a:e6:a3:9e:db:7b:a3:e4:41:21:9c:
                    95:f9:b7:da:9b:fd:c5:b0:21:4f:24:e7:d0:5b:52:
                    29:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:E9:3C:13:F9:54:F9:35:18:90:9E:8B:DA:F8:6E:D8:47:AE:54:D6
            X509v3 Authority Key Identifier:
                keyid:30:11:C5:BE:DB:F4:30:DB:CE:41:C6:B3:8F:1C:B1:25:52:AB:BF:E9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MBHFvtv0MNvOQcazjxyxJVKrv-k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/80c8cb-bb6f-4d26-aafe-2d83c0800c0b/1/MBHFvtv0MNvOQcazjxyxJVKrv-k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/80c8cb-bb6f-4d26-aafe-2d83c0800c0b/1/MBHFvtv0MNvOQcazjxyxJVKrv-k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:c4:66:67:35:49:62:7a:e7:38:eb:40:47:08:cd:85:c3:80:
         3a:08:cc:45:81:22:ac:bb:e0:80:c6:96:fc:ff:4c:b9:b5:2c:
         fa:af:db:81:69:1f:ff:ac:80:a9:03:c7:91:1d:ab:30:c8:3b:
         a2:5f:52:58:b2:3e:ba:05:21:0a:75:b0:21:d7:5b:ee:e8:f7:
         6a:aa:ed:53:2b:cd:4b:30:9d:41:b2:24:e9:d6:6a:0a:29:95:
         d6:51:a5:a4:f0:9e:2d:0d:0c:f1:09:c0:28:ff:0b:8b:02:ec:
         5c:16:aa:d7:83:71:98:bd:62:5b:48:50:e0:6d:21:79:76:ea:
         70:29:86:f4:9b:a4:71:76:6c:8e:fc:32:31:e2:c1:60:29:a0:
         63:ec:3f:b1:9c:96:2e:0c:b4:90:80:54:62:69:76:1d:85:4d:
         7c:f6:a7:a2:d8:54:71:f9:4c:58:a8:3b:82:8e:b4:da:db:d9:
         08:f9:c2:dc:7a:24:f2:78:f9:58:74:33:21:17:68:40:e8:5f:
         f8:80:3c:6e:b8:c8:7f:69:b6:ba:87:c9:03:6d:01:ef:d2:a0:
         a8:4d:95:a7:dd:cb:7e:27:17:7d:b6:2c:e9:45:98:96:d9:5d:
         87:bc:de:c6:b4:37:23:2c:1d:34:cc:45:c9:83:1f:fe:0c:03:
         48:16:8b:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----