Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.mft
File:                     24tcHuy6hgz_8XR5ZtdjyagvbZo.mft (raw, json)
Hash identifier:          uUGF1oono2SC+82PSYzCN2HRAbgF4gKXXAFD/MWWUFU=
Subject key identifier:   57:F3:A8:28:26:00:0B:6C:61:05:0E:42:B8:4E:70:62:AA:86:B4:6C
Authority key identifier: DB:8B:5C:1E:EC:BA:86:0C:FF:F1:74:79:66:D7:63:C9:A8:2F:6D:9A
Certificate issuer:       /CN=db8b5c1eecba860cfff1747966d763c9a82f6d9a
Certificate serial:       019D27728A310B9EC37C41BB0109CA877565
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/24tcHuy6hgz_8XR5ZtdjyagvbZo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.mft
Manifest number:          1882
Signing time:             Thu 26 Mar 2026 00:01:50 +0000
Manifest this update:     Thu 26 Mar 2026 00:01:50 +0000
Manifest next update:     Fri 27 Mar 2026 00:01:50 +0000
Files and hashes:         1: 24tcHuy6hgz_8XR5ZtdjyagvbZo.crl (hash: Q55Ef2z60QqbtHmi3djBw9lnSakvhtwJmxaamR42Sdw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/24tcHuy6hgz_8XR5ZtdjyagvbZo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 00:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:72:8a:31:0b:9e:c3:7c:41:bb:01:09:ca:87:75:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=db8b5c1eecba860cfff1747966d763c9a82f6d9a
        Validity
            Not Before: Mar 26 00:01:50 2026 GMT
            Not After : Mar 27 00:01:50 2026 GMT
        Subject: CN=57f3a82826000b6c61050e42b84e7062aa86b46c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:69:d7:ef:cb:b9:10:54:88:f2:dc:fb:2b:41:
                    7a:fc:74:68:f7:b1:7f:65:90:78:28:4f:9c:22:9b:
                    b0:01:d7:d1:d7:03:a0:45:05:cf:50:3b:5c:c8:1c:
                    1d:93:65:8a:61:be:bb:05:3e:bf:f1:b0:17:9a:8c:
                    42:da:4c:de:b1:f7:7a:55:6b:c0:ca:5e:20:da:fa:
                    8d:a0:22:cb:85:af:4f:16:44:a5:8d:c7:3e:da:41:
                    c3:a9:17:7b:ef:ef:d5:6c:76:61:b0:79:35:4b:c7:
                    c0:59:bd:a0:30:94:ce:c7:eb:a9:db:73:b0:ef:1f:
                    23:1a:42:a5:86:de:dc:d7:28:e2:64:7d:eb:82:b1:
                    bd:13:e6:de:ef:28:9c:40:1b:7b:b4:6e:6c:26:36:
                    ac:c9:74:40:0c:e7:8b:97:45:64:32:ac:09:59:3a:
                    78:59:63:8a:f4:12:22:99:01:64:7e:51:f9:10:2a:
                    ad:4a:4a:26:95:15:17:de:06:aa:e7:db:32:aa:09:
                    ee:e4:1c:b7:d7:89:b5:a1:29:e4:31:62:6a:81:60:
                    42:33:9b:bf:49:96:b6:e4:c7:b6:cd:b8:30:b0:48:
                    21:ac:59:35:73:a6:7e:f2:5a:08:6e:68:1c:75:86:
                    c8:6b:a1:fb:86:b5:d0:a8:90:e4:26:c2:92:43:44:
                    6a:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:F3:A8:28:26:00:0B:6C:61:05:0E:42:B8:4E:70:62:AA:86:B4:6C
            X509v3 Authority Key Identifier:
                keyid:DB:8B:5C:1E:EC:BA:86:0C:FF:F1:74:79:66:D7:63:C9:A8:2F:6D:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/24tcHuy6hgz_8XR5ZtdjyagvbZo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         24:e8:63:b6:e3:7e:db:10:65:20:a6:c3:70:0f:13:44:d6:1b:
         33:54:a0:fd:b1:7b:31:b0:f6:f9:71:06:dd:39:3b:64:0b:93:
         d3:df:ae:6b:f4:34:6c:a9:18:0c:88:45:52:f4:4b:62:d6:96:
         87:c8:f3:b3:47:cd:69:86:ed:7e:a6:38:af:b8:60:ec:b9:8e:
         dc:a2:bb:72:97:12:1c:1e:30:70:8d:0e:f3:9c:4e:e4:c0:c3:
         61:7c:02:72:ec:c9:a0:b3:f8:67:da:2e:fa:e4:4a:5f:c4:74:
         d2:a1:af:bb:17:bb:fa:90:77:7d:21:63:95:73:55:68:dd:64:
         26:7a:06:6b:89:b2:f6:26:e7:01:d2:6d:15:b5:f6:99:22:7e:
         de:5b:75:df:0d:f6:c2:88:51:16:ad:77:66:5d:a5:99:ec:6e:
         aa:c2:19:2e:da:34:a9:d2:5e:6a:d9:07:d0:89:41:c9:e1:e5:
         75:60:2a:4a:52:a4:fb:e8:6c:de:a7:1b:31:d7:de:6d:c3:ea:
         98:96:49:85:df:c9:68:5c:1a:c4:61:77:99:75:63:62:82:cb:
         77:24:db:8f:0d:8e:73:a1:c3:de:1c:25:26:2e:2e:40:be:c4:
         09:b4:fc:c6:bc:9d:e8:28:aa:7e:39:2d:78:63:42:7f:c0:4c:
         c2:6a:0d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----