Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
File:                     hfR7ZaUlMyab0hmBOlIDr92eXb4.mft (raw, json)
Hash identifier:          whUgKU7HWQFiq/AibcQtblVNGEq/KkOJdXAhSvaqQEI=
Subject key identifier:   AB:CC:17:EF:61:AB:90:FE:62:FD:0C:77:C2:68:DD:23:F6:EC:A0:E5
Authority key identifier: 85:F4:7B:65:A5:25:33:26:9B:D2:19:81:3A:52:03:AF:DD:9E:5D:BE
Certificate issuer:       /CN=85f47b65a52533269bd219813a5203afdd9e5dbe
Certificate serial:       019D29609DC29E5E74C3A23748B30D01DA31
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hfR7ZaUlMyab0hmBOlIDr92eXb4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
Manifest number:          1479
Signing time:             Thu 26 Mar 2026 09:01:30 +0000
Manifest this update:     Thu 26 Mar 2026 09:01:30 +0000
Manifest next update:     Fri 27 Mar 2026 09:01:30 +0000
Files and hashes:         1: hfR7ZaUlMyab0hmBOlIDr92eXb4.crl (hash: L3EwutQsd5VKxNOPwLWzsgBIkTxgYIp8biWUSCiQOuI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hfR7ZaUlMyab0hmBOlIDr92eXb4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 09:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:29:60:9d:c2:9e:5e:74:c3:a2:37:48:b3:0d:01:da:31
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85f47b65a52533269bd219813a5203afdd9e5dbe
        Validity
            Not Before: Mar 26 09:01:30 2026 GMT
            Not After : Mar 27 09:01:30 2026 GMT
        Subject: CN=abcc17ef61ab90fe62fd0c77c268dd23f6eca0e5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:b6:90:9e:89:5b:7b:e7:7c:56:37:9c:dc:59:
                    1c:8b:8f:14:d5:bd:9d:c8:41:ab:07:4c:22:be:2f:
                    c7:c9:e2:67:51:76:c3:04:20:b1:f7:cc:f9:4b:7d:
                    ab:30:a7:48:f3:a7:fe:ed:b2:95:83:9a:03:e8:a7:
                    0e:a6:67:02:e4:0c:65:dd:f5:15:06:af:83:77:f8:
                    f4:c8:60:28:82:be:f7:e2:46:e3:9b:74:c8:33:80:
                    02:0f:57:f8:a1:be:8d:2f:ed:14:6a:77:68:4f:8c:
                    40:36:3a:8e:c1:d7:94:e8:9a:90:1c:50:ae:48:27:
                    8c:4c:65:5c:ec:17:0c:b8:2f:20:44:d6:10:61:b0:
                    07:94:70:45:8b:00:3c:e5:de:23:04:3b:9a:12:59:
                    39:12:ea:2c:44:78:68:a2:b6:0e:d1:60:8d:a0:10:
                    b6:8d:9e:b4:ba:9e:8e:ed:d1:12:5f:8d:70:4b:5a:
                    5e:55:6f:8d:03:10:7b:7b:df:d6:ea:0a:fa:e1:c7:
                    c2:b7:c4:c7:66:6e:01:04:f7:67:f3:85:73:3f:50:
                    ad:ea:d0:c1:52:db:b0:98:c2:ae:ef:2a:f5:9e:22:
                    f8:72:0c:db:8f:b0:23:7d:13:da:e5:da:91:d3:2c:
                    09:37:34:28:11:e6:1e:0a:c2:9d:c0:8b:0c:24:da:
                    0f:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:CC:17:EF:61:AB:90:FE:62:FD:0C:77:C2:68:DD:23:F6:EC:A0:E5
            X509v3 Authority Key Identifier:
                keyid:85:F4:7B:65:A5:25:33:26:9B:D2:19:81:3A:52:03:AF:DD:9E:5D:BE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hfR7ZaUlMyab0hmBOlIDr92eXb4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/633ff4-46e8-4204-b636-2413782c7166/1/hfR7ZaUlMyab0hmBOlIDr92eXb4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:8f:cc:46:9b:6f:6c:94:18:5b:b7:23:d2:d8:83:9d:05:47:
         d4:67:60:96:55:2e:de:a3:94:f1:e2:00:16:60:77:43:18:c1:
         51:ff:14:0b:7a:14:ac:b4:b3:7f:bb:b7:c0:22:2b:7e:5d:f9:
         1c:6d:69:6b:21:87:7f:6d:1d:83:77:27:6e:46:04:85:fb:20:
         45:c8:2e:53:2e:99:da:0d:ee:07:6d:fe:65:e9:9f:97:77:12:
         56:56:28:c5:80:ac:15:6a:a3:f0:25:67:8a:10:82:aa:e9:3e:
         3e:5e:0d:10:cb:47:b5:ea:72:a6:12:c2:41:85:f7:63:5e:8d:
         f3:44:c2:90:27:0d:b9:6b:54:8c:7e:f3:7d:4a:e8:56:e9:06:
         2a:79:e1:e2:dd:56:72:70:19:ce:9b:e9:cc:71:13:f1:6c:58:
         f5:70:e8:26:ed:79:08:97:d1:f6:fa:c2:9d:b0:50:99:a3:33:
         56:e9:94:74:6d:7e:6f:89:9e:f1:65:6b:74:56:95:98:49:67:
         10:1e:a8:87:f4:b3:ff:6a:2e:ed:17:12:47:57:9c:98:98:ec:
         49:42:c3:aa:61:92:07:f7:e2:a0:01:46:43:cf:c5:ab:f3:dc:
         99:15:40:35:9e:e8:d1:4b:8b:eb:f6:9c:e7:f1:dd:4a:39:78:
         d2:32:4c:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----