Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
File:                     sLQvCUy6l0wfrsa97BVg9mOHiRE.mft (raw, json)
Hash identifier:          XE23oYy0Bpf4n/ngjbHwvqtFKYz887+Yirz58C8Z0uE=
Subject key identifier:   18:E1:94:D7:57:F8:02:21:EB:91:68:66:E0:17:BD:25:99:6F:C1:93
Authority key identifier: B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11
Certificate issuer:       /CN=b0b42f094cba974c1faec6bdec1560f663878911
Certificate serial:       019D28F2219F75A7627BA0E56FB4CEBB720B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
Manifest number:          1518
Signing time:             Thu 26 Mar 2026 07:00:50 +0000
Manifest this update:     Thu 26 Mar 2026 07:00:50 +0000
Manifest next update:     Fri 27 Mar 2026 07:00:50 +0000
Files and hashes:         1: sLQvCUy6l0wfrsa97BVg9mOHiRE.crl (hash: jPtCpnzepSdlJFY7l7Wh/faVHwvyHTo5wAZplRWNcBU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 07:00:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:28:f2:21:9f:75:a7:62:7b:a0:e5:6f:b4:ce:bb:72:0b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b0b42f094cba974c1faec6bdec1560f663878911
        Validity
            Not Before: Mar 26 07:00:50 2026 GMT
            Not After : Mar 27 07:00:50 2026 GMT
        Subject: CN=18e194d757f80221eb916866e017bd25996fc193
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:ba:0d:38:1f:c1:18:0a:c6:32:37:c2:c7:8f:
                    26:80:fe:32:2d:2e:33:51:c4:21:3e:c6:19:70:47:
                    dc:55:17:11:e9:a8:53:b4:4d:16:a6:4b:0a:86:8e:
                    d7:7f:a0:95:48:e8:ab:62:7d:df:51:82:ac:57:5f:
                    03:32:a7:a9:52:c7:65:35:dd:d6:93:8d:ec:59:b2:
                    c7:c8:d8:f2:2d:3a:ea:b6:d9:4b:ef:87:a7:e4:b5:
                    b3:a8:0d:56:2e:0b:b3:3d:90:08:d6:6c:c6:90:1e:
                    87:09:02:a6:9a:dc:dd:50:fd:ea:48:ef:e4:8f:d5:
                    b6:0a:9b:0f:d9:f7:93:6e:35:2b:d0:d0:55:94:71:
                    20:d4:46:f8:80:92:7e:07:8b:dc:2e:e1:9d:d6:3f:
                    c9:a0:f0:c0:8a:9d:52:b3:8d:a8:5d:4e:eb:a0:5b:
                    4f:74:95:ae:d9:e9:6c:84:45:4b:36:c1:39:53:f7:
                    f9:a6:1a:01:d9:23:db:03:76:9d:29:23:6a:32:67:
                    06:a8:d2:72:ae:49:0f:b9:f6:8a:54:9f:20:cc:d5:
                    58:0a:3c:ba:cc:69:f4:0f:76:fe:51:f0:ab:37:80:
                    a9:08:49:87:f9:eb:6f:e3:e3:dd:93:07:32:27:62:
                    9a:9b:1c:f3:34:5e:d5:d4:a7:00:d6:31:31:6b:60:
                    9f:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:E1:94:D7:57:F8:02:21:EB:91:68:66:E0:17:BD:25:99:6F:C1:93
            X509v3 Authority Key Identifier:
                keyid:B0:B4:2F:09:4C:BA:97:4C:1F:AE:C6:BD:EC:15:60:F6:63:87:89:11

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLQvCUy6l0wfrsa97BVg9mOHiRE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1a07b0-9976-4d55-b722-a2a11a0a6d74/1/sLQvCUy6l0wfrsa97BVg9mOHiRE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:35:65:87:6f:43:cf:4f:4a:51:37:59:b1:c6:9d:04:01:67:
         f3:89:aa:13:78:f0:d1:77:0d:25:21:11:dc:27:7f:95:f3:f7:
         e7:59:76:bf:6d:72:1c:7c:d3:57:62:c7:41:37:52:04:32:c8:
         09:fd:59:62:ce:69:b3:81:e5:f4:39:dd:35:b5:66:87:d8:58:
         24:08:54:0e:17:37:6c:d1:10:cf:e2:15:af:4e:ac:91:2e:5b:
         0e:2f:32:e7:3c:53:7c:46:7d:56:08:56:ea:f4:55:36:c3:9c:
         2c:0f:60:ef:e5:c0:49:60:0c:23:31:72:f7:64:a1:7b:fd:aa:
         27:55:21:2b:97:f1:da:50:03:62:8d:81:13:a0:5d:67:77:29:
         a1:0c:29:64:ce:2e:52:4c:aa:3d:36:5a:69:74:31:eb:1e:93:
         46:58:9c:bc:88:61:91:35:44:d3:c7:86:2c:59:b9:e7:1a:bf:
         3f:21:4b:5d:61:76:33:92:77:68:09:28:82:54:7a:cb:42:97:
         39:75:6a:fb:06:a4:d4:ec:c4:31:8c:42:91:ee:11:c8:71:40:
         5f:dd:da:26:1a:2c:09:fd:d5:76:98:08:a8:d7:4b:47:ba:3e:
         4c:13:19:f8:a6:a7:60:25:04:ae:88:75:85:14:06:99:b7:fd:
         a8:0b:da:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----