Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.mft
File:                     4UYAGfiAaeNhThUQkhzH5E0cq-I.mft (raw, json)
Hash identifier:          6l3doSB5jRbzYMkrKIaqqOfBAeCLnzWg5VuFcX1DbxU=
Subject key identifier:   E8:E0:45:A5:43:E3:64:CA:90:41:B8:AD:F3:BC:69:91:F1:24:B5:49
Authority key identifier: E1:46:00:19:F8:80:69:E3:61:4E:15:10:92:1C:C7:E4:4D:1C:AB:E2
Certificate issuer:       /CN=e1460019f88069e3614e1510921cc7e44d1cabe2
Certificate serial:       019E1CEB4912F023506504DCAF963ECA5F16
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4UYAGfiAaeNhThUQkhzH5E0cq-I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.mft
Manifest number:          1903
Signing time:             Tue 12 May 2026 16:00:42 +0000
Manifest this update:     Tue 12 May 2026 16:00:42 +0000
Manifest next update:     Wed 13 May 2026 16:00:42 +0000
Files and hashes:         1: 4UYAGfiAaeNhThUQkhzH5E0cq-I.crl (hash: bybMn1LvtB21kGHBOEOXWCyV+I4EX4VsIep4FuoN1WI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4UYAGfiAaeNhThUQkhzH5E0cq-I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1c:eb:49:12:f0:23:50:65:04:dc:af:96:3e:ca:5f:16
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e1460019f88069e3614e1510921cc7e44d1cabe2
        Validity
            Not Before: May 12 16:00:42 2026 GMT
            Not After : May 13 16:00:42 2026 GMT
        Subject: CN=e8e045a543e364ca9041b8adf3bc6991f124b549
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:d4:9b:37:d6:df:44:03:97:9c:91:9a:cd:12:
                    a8:9a:d0:0b:5a:21:eb:82:78:cd:dc:89:bb:a8:c6:
                    92:8e:29:e6:aa:ac:69:ee:d8:a3:8c:07:1d:62:82:
                    4b:d2:e7:bf:32:1f:10:88:20:84:46:68:1a:14:f9:
                    2c:f2:d3:e5:c1:bb:80:14:06:19:d8:2c:f2:76:70:
                    b6:fd:14:0f:be:9d:aa:eb:55:2d:e3:7f:4f:ef:49:
                    86:a4:50:52:ab:a2:9a:03:d9:a4:b5:0c:a4:fd:5c:
                    2e:4b:a8:0e:2d:14:93:eb:24:e6:44:49:c8:76:6d:
                    da:a9:3d:67:67:ef:87:72:66:cf:6d:3c:8b:7c:3e:
                    e9:91:72:f5:1f:b4:bb:99:5d:91:6c:b8:f9:ac:9c:
                    b8:a3:d3:0e:a9:9f:81:b2:7d:8c:68:c6:05:db:aa:
                    7b:50:8b:09:c2:1c:61:4b:b0:13:76:b5:fa:59:19:
                    f0:ca:7c:8b:79:c6:5f:15:ae:02:4c:87:b3:a4:50:
                    1f:4f:68:96:c3:6d:d7:a8:f3:86:3a:f6:92:b4:fa:
                    b9:e2:34:11:50:42:ed:4c:ee:57:24:5c:0d:9d:a0:
                    35:6a:16:f6:ad:ee:2e:b3:4a:e8:37:dd:3a:a8:4a:
                    59:77:98:97:f8:18:7e:b3:b6:cc:e6:0b:0c:8e:0d:
                    36:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:E0:45:A5:43:E3:64:CA:90:41:B8:AD:F3:BC:69:91:F1:24:B5:49
            X509v3 Authority Key Identifier:
                keyid:E1:46:00:19:F8:80:69:E3:61:4E:15:10:92:1C:C7:E4:4D:1C:AB:E2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UYAGfiAaeNhThUQkhzH5E0cq-I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:6c:d9:9b:cf:af:62:e0:db:f4:23:ca:4a:d2:41:9a:12:6d:
         e3:3f:6b:f9:70:6d:a7:2e:dc:3b:12:e2:43:cf:79:2c:99:86:
         b9:d8:ab:fb:a5:1a:00:1e:77:f0:7d:ed:eb:91:d4:1c:b7:d2:
         51:1f:e0:61:aa:1f:de:d0:aa:00:1d:4c:07:e2:8f:80:2d:eb:
         e0:4a:69:4a:e8:86:f7:4f:3d:e8:7e:f8:8e:10:31:ca:ea:ef:
         bd:d8:30:06:e6:bb:85:67:5c:73:b8:d8:4a:de:47:5d:73:fa:
         0e:e0:38:2c:3d:a9:e3:74:f2:e1:94:d7:ae:cb:2f:b4:a0:18:
         ca:94:d4:78:21:ac:c0:e1:68:82:21:ee:ad:e9:2c:93:38:d8:
         d6:05:b6:11:01:ab:83:27:20:52:98:4f:9d:65:f4:3c:2d:06:
         01:45:02:55:04:2f:4e:7b:65:42:a5:cd:bb:fa:1b:d8:51:67:
         a2:94:66:e1:34:95:27:d1:7a:d1:c1:a7:a2:56:be:ce:57:08:
         9c:69:7a:d5:14:66:04:16:c2:0b:bb:5e:e8:ab:bc:2b:94:70:
         c0:44:ef:da:ca:8b:e8:b2:9d:8b:4f:ae:c1:9d:4d:94:b3:bb:
         dd:3e:4d:35:fc:77:25:92:05:0e:10:7a:0f:7d:da:44:ec:7c:
         e5:50:e3:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----