Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft
File:                     yAH8mVpSGvH1Atnq8S1mIaZMr00.mft (raw, json)
Hash identifier:          wkeLoTa5T9UDY3Z8/7PjC5Px73eB91IZ8OQxIS3Uvgo=
Subject key identifier:   75:A8:30:9A:2A:B1:DB:4C:40:8D:91:AD:C0:37:F6:4D:39:E1:08:DB
Authority key identifier: C8:01:FC:99:5A:52:1A:F1:F5:02:D9:EA:F1:2D:66:21:A6:4C:AF:4D
Certificate issuer:       /CN=c801fc995a521af1f502d9eaf12d6621a64caf4d
Certificate serial:       019D2AE03C080333DDEE970E5D91FC381029
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft
Manifest number:          1884
Signing time:             Thu 26 Mar 2026 16:00:31 +0000
Manifest this update:     Thu 26 Mar 2026 16:00:31 +0000
Manifest next update:     Fri 27 Mar 2026 16:00:31 +0000
Files and hashes:         1: yAH8mVpSGvH1Atnq8S1mIaZMr00.crl (hash: Hi/h/mUgSH+YXjc4HXceChfFVaRtOgdfGboCftsY5U0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 09:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:2a:e0:3c:08:03:33:dd:ee:97:0e:5d:91:fc:38:10:29
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c801fc995a521af1f502d9eaf12d6621a64caf4d
        Validity
            Not Before: Mar 26 16:00:31 2026 GMT
            Not After : Mar 27 16:00:31 2026 GMT
        Subject: CN=75a8309a2ab1db4c408d91adc037f64d39e108db
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:3b:32:30:cc:90:b7:d1:63:65:f2:3b:55:29:
                    ae:43:7b:9f:cd:ef:14:45:f8:45:3b:bb:ce:db:53:
                    8a:0c:f5:78:ac:b3:a3:9f:c7:ae:95:c0:09:42:4d:
                    67:42:da:9a:62:86:97:f0:85:fd:eb:02:ef:ae:30:
                    66:be:44:8e:4a:b3:5e:9a:6b:34:fc:8e:dc:98:04:
                    18:d9:6b:9a:50:d9:f3:a8:21:9c:50:19:de:cd:c2:
                    44:6c:88:eb:72:6c:c2:5e:e8:4b:33:08:fe:41:10:
                    4b:de:12:a5:11:6b:6a:ec:ff:7b:7f:88:73:27:74:
                    eb:c0:9f:fc:f4:21:8f:0e:be:21:cc:a9:d5:78:22:
                    23:63:c2:59:b9:20:68:6d:6d:71:61:11:8a:05:af:
                    dc:c1:93:8b:af:b6:c3:7d:f4:5e:0b:2c:83:ef:ea:
                    25:a2:aa:29:0c:81:d2:9e:4c:b4:8f:9b:f0:05:fa:
                    28:cb:e7:81:60:18:91:50:bd:e9:43:c2:f6:9d:90:
                    da:2d:6f:f2:b1:10:d9:a2:7b:27:22:4c:cb:12:5e:
                    3d:71:10:3c:17:e0:f5:47:13:03:67:13:30:4f:1b:
                    52:af:08:84:79:6c:40:b0:9c:da:f6:fc:7c:b6:55:
                    be:07:e4:a5:b8:65:88:d7:d4:ca:ee:74:e0:8d:57:
                    18:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:A8:30:9A:2A:B1:DB:4C:40:8D:91:AD:C0:37:F6:4D:39:E1:08:DB
            X509v3 Authority Key Identifier:
                keyid:C8:01:FC:99:5A:52:1A:F1:F5:02:D9:EA:F1:2D:66:21:A6:4C:AF:4D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:0d:b0:52:d9:24:11:64:ba:cc:ee:7c:da:60:c2:c2:65:53:
         76:97:66:a0:bf:06:af:b4:63:e0:bd:89:c5:72:e3:b6:16:24:
         e1:03:c8:b4:27:30:ae:70:df:4f:c0:b7:5a:b2:0d:57:60:fb:
         34:e5:20:5a:b2:37:b3:c9:c8:fc:d3:69:ba:df:08:4e:40:6f:
         4e:1d:f4:3d:ec:4a:56:5a:08:a0:8e:08:b2:05:5a:f7:5f:48:
         04:fe:d4:04:e0:a1:50:b0:84:c5:28:04:a2:36:9f:9a:e0:c7:
         d0:17:ba:7b:46:96:08:d3:33:4c:ec:95:83:54:da:a7:df:08:
         ea:40:76:55:c4:3e:6e:38:91:2e:37:8c:ae:1e:40:b6:13:15:
         ae:0c:9f:57:81:cf:70:5e:0f:ee:01:19:fd:90:9f:87:5f:40:
         19:1f:f8:cf:dd:20:89:11:77:5a:c6:e7:f0:7b:7b:dc:68:8d:
         78:e1:55:ae:0f:ef:5a:67:06:5b:d8:b8:ef:cc:9a:c9:24:ed:
         09:4a:47:73:58:93:a8:29:9a:5a:47:8c:f1:7b:3e:ec:2b:62:
         e8:25:b8:a1:4d:70:41:3f:bc:5a:56:f7:40:5e:5f:e6:09:69:
         e5:82:e1:34:1b:9d:59:1e:64:ce:12:c1:ee:f4:eb:c2:8b:2b:
         6f:cd:5d:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----