Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.mft
File:                     24tcHuy6hgz_8XR5ZtdjyagvbZo.mft (raw, json)
Hash identifier:          CWMVJdLxozxIYQeTWTxaK2OWbKAN7hsNbVhChgpNq8A=
Subject key identifier:   EC:62:0F:16:50:26:18:44:FD:3F:68:4B:7A:29:7B:1F:18:91:01:5B
Authority key identifier: DB:8B:5C:1E:EC:BA:86:0C:FF:F1:74:79:66:D7:63:C9:A8:2F:6D:9A
Certificate issuer:       /CN=db8b5c1eecba860cfff1747966d763c9a82f6d9a
Certificate serial:       019E1EA3744B1D6E8787057AAE093951B367
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/24tcHuy6hgz_8XR5ZtdjyagvbZo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.mft
Manifest number:          1902
Signing time:             Wed 13 May 2026 00:01:29 +0000
Manifest this update:     Wed 13 May 2026 00:01:29 +0000
Manifest next update:     Thu 14 May 2026 00:01:29 +0000
Files and hashes:         1: 24tcHuy6hgz_8XR5ZtdjyagvbZo.crl (hash: +L7R05EiDX5SD+wBDmA4opBEUvYNdNfXy0aN1grBOww=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/24tcHuy6hgz_8XR5ZtdjyagvbZo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 23:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1e:a3:74:4b:1d:6e:87:87:05:7a:ae:09:39:51:b3:67
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=db8b5c1eecba860cfff1747966d763c9a82f6d9a
        Validity
            Not Before: May 13 00:01:29 2026 GMT
            Not After : May 14 00:01:29 2026 GMT
        Subject: CN=ec620f1650261844fd3f684b7a297b1f1891015b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:5d:3f:01:b0:4f:24:e7:45:e4:82:aa:42:11:
                    1c:7c:24:ce:41:7c:63:8d:93:81:bd:89:0c:30:16:
                    af:4d:b7:50:44:2c:c9:80:00:43:8b:bc:96:e8:1b:
                    7b:13:1f:d2:71:53:e6:c2:09:17:ce:03:b7:81:5a:
                    53:80:33:1f:4e:d6:47:d8:c6:55:f1:e9:55:ae:53:
                    15:a2:4f:1f:98:a4:21:68:20:aa:7d:f7:17:c8:82:
                    34:f1:c8:b3:a1:51:d7:2d:6e:9f:42:91:66:40:cb:
                    8a:b5:92:72:5a:2d:90:0a:ae:4a:f7:55:fd:f9:88:
                    e5:91:79:33:75:41:27:2d:ec:39:a0:99:ba:7a:1c:
                    76:c9:15:3f:3c:60:03:ef:d4:4f:55:43:49:cb:43:
                    da:7e:d4:60:54:d6:d1:d3:39:ce:db:38:e0:03:8f:
                    45:9e:f5:56:bd:ab:3b:7f:a6:83:6b:80:eb:b5:43:
                    47:c7:29:1a:d0:b8:0b:fb:9c:e6:be:6e:be:86:10:
                    d1:06:b2:6b:a4:bc:09:e2:22:86:8d:6e:38:d7:30:
                    0a:61:57:f7:c3:e1:de:8b:6e:a7:44:82:ef:a3:d6:
                    7f:80:6b:2a:82:70:49:b4:8a:f1:96:a5:79:d8:26:
                    f6:14:a7:90:68:50:f5:9c:e6:54:a5:73:da:90:b5:
                    30:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:62:0F:16:50:26:18:44:FD:3F:68:4B:7A:29:7B:1F:18:91:01:5B
            X509v3 Authority Key Identifier:
                keyid:DB:8B:5C:1E:EC:BA:86:0C:FF:F1:74:79:66:D7:63:C9:A8:2F:6D:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/24tcHuy6hgz_8XR5ZtdjyagvbZo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/76/863b0c-b1ac-4d7c-abc2-fb6f037a287e/1/24tcHuy6hgz_8XR5ZtdjyagvbZo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2b:c2:24:ef:47:50:c4:7c:f2:93:af:00:93:9c:a4:13:b8:a6:
         09:0c:7e:1c:db:20:a6:db:aa:b2:27:13:6b:69:51:01:3b:bd:
         5f:c6:a2:26:ca:cc:3b:5b:f0:ab:a0:7b:7e:c3:f4:ff:56:b7:
         7e:09:e4:ca:a9:51:f7:08:3f:0c:e6:82:65:a9:13:cb:b2:8f:
         e6:d4:cd:05:dc:5a:09:a2:db:6c:be:0f:ee:9a:15:35:d1:a0:
         0a:b0:22:3d:da:a8:b4:09:96:e2:93:f6:30:92:cf:48:e2:a2:
         70:5f:7d:fc:2f:4f:14:a1:01:fe:3a:98:c2:2c:6e:39:99:02:
         bf:b9:0f:7c:9f:64:96:7c:62:d6:4d:76:e6:27:9d:76:df:ea:
         ec:3a:a6:ac:e0:f3:31:d9:c2:09:06:d9:ae:76:1f:5d:5c:91:
         29:5b:e2:4b:e1:39:7e:4b:22:86:cf:e3:5b:93:c4:57:c8:e0:
         01:0f:75:2c:4e:36:7b:82:0f:79:43:ca:db:94:92:28:2c:b8:
         b5:e6:f4:ac:53:77:33:13:f6:83:95:f7:bd:d6:9b:36:2a:8c:
         e4:36:51:29:e8:33:2d:25:66:9c:b6:d0:7a:d0:92:cf:df:62:
         0d:46:04:ca:3c:c5:d3:0f:ad:41:d1:e5:33:c6:26:9a:a2:87:
         5b:1b:ae:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eo3RLHW6HhwV6rgk5UbNnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiOGI1YzFlZWNiYTg2MGNmZmYxNzQ3OTY2ZDc2M2M5YTgy
ZjZkOWEwHhcNMjYwNTEzMDAwMTI5WhcNMjYwNTE0MDAwMTI5WjAzMTEwLwYDVQQD
EyhlYzYyMGYxNjUwMjYxODQ0ZmQzZjY4NGI3YTI5N2IxZjE4OTEwMTViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvl0/AbBPJOdF5IKqQhEcfCTOQXxj
jZOBvYkMMBavTbdQRCzJgABDi7yW6Bt7Ex/ScVPmwgkXzgO3gVpTgDMfTtZH2MZV
8elVrlMVok8fmKQhaCCqffcXyII08cizoVHXLW6fQpFmQMuKtZJyWi2QCq5K91X9
+YjlkXkzdUEnLew5oJm6ehx2yRU/PGAD79RPVUNJy0PaftRgVNbR0znO2zjgA49F
nvVWvas7f6aDa4DrtUNHxyka0LgL+5zmvm6+hhDRBrJrpLwJ4iKGjW441zAKYVf3
w+Hei26nRILvo9Z/gGsqgnBJtIrxlqV52Cb2FKeQaFD1nOZUpXPakLUw9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOxiDxZQJhhE/T9oS3opex8YkQFbMB8GA1UdIwQY
MBaAFNuLXB7suoYM//F0eWbXY8moL22aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjR0Y0h1eTZoZ3pfOFhSNVp0ZGp5YWd2YlpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni84NjNiMGMtYjFhYy00ZDdjLWFiYzIt
ZmI2ZjAzN2EyODdlLzEvMjR0Y0h1eTZoZ3pfOFhSNVp0ZGp5YWd2YlpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni84NjNiMGMtYjFhYy00ZDdjLWFiYzItZmI2ZjAzN2EyODdl
LzEvMjR0Y0h1eTZoZ3pfOFhSNVp0ZGp5YWd2YlpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK8Ik70dQ
xHzyk68Ak5ykE7imCQx+HNsgptuqsicTa2lRATu9X8aiJsrMO1vwq6B7fsP0/1a3
fgnkyqlR9wg/DOaCZakTy7KP5tTNBdxaCaLbbL4P7poVNdGgCrAiPdqotAmW4pP2
MJLPSOKicF99/C9PFKEB/jqYwixuOZkCv7kPfJ9klnxi1k125ieddt/q7DqmrODz
MdnCCQbZrnYfXVyRKVviS+E5fksihs/jW5PEV8jgAQ91LE42e4IPeUPK25SSKCy4
teb0rFN3MxP2g5X3vdabNiqM5DZRKegzLSVmnLbQetCSz99iDUYEyjzF0w+tQdHl
M8YmmqKHWxuuag==
-----END CERTIFICATE-----