Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
File:                     3q91C1wrlTnZblZJdyr34Q7-D-o.mft (raw, json)
Hash identifier:          YlBNqUIKafrXXD4aEkWUozTV4LhSyZ4QCgTFnzokAHg=
Subject key identifier:   1B:DC:6C:D2:D3:9B:82:B8:01:05:03:6E:FD:24:24:1F:AC:BF:A2:11
Authority key identifier: DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA
Certificate issuer:       /CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
Certificate serial:       019E1CB46E7EC6046D7FABA29DB9F1F0BB9F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
Manifest number:          0F96
Signing time:             Tue 12 May 2026 15:00:47 +0000
Manifest this update:     Tue 12 May 2026 15:00:47 +0000
Manifest next update:     Wed 13 May 2026 15:00:47 +0000
Files and hashes:         1: 3q91C1wrlTnZblZJdyr34Q7-D-o.crl (hash: 2vMRMQ/CViuFET33flhsrMUG383LvFWcvsiAwwHYYiA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1c:b4:6e:7e:c6:04:6d:7f:ab:a2:9d:b9:f1:f0:bb:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=deaf750b5c2b9539d96e5649772af7e10efe0fea
        Validity
            Not Before: May 12 15:00:47 2026 GMT
            Not After : May 13 15:00:47 2026 GMT
        Subject: CN=1bdc6cd2d39b82b80105036efd24241facbfa211
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:12:18:a8:cf:2e:14:32:b1:b9:e4:25:0b:f0:
                    b7:1a:8c:5c:9f:48:ca:fb:09:ab:81:30:f6:70:0d:
                    35:22:c7:f3:42:80:b6:11:e6:bd:0a:2a:44:68:af:
                    e6:34:48:b5:fa:73:2b:86:89:72:84:51:e0:a5:6f:
                    bc:c9:4f:0e:83:05:d7:4a:96:5e:7b:b7:47:82:77:
                    09:3e:ae:00:c5:04:36:d4:15:46:a1:a6:d8:14:73:
                    e7:46:c6:98:7e:b3:5e:29:ee:e4:7b:ee:46:bc:08:
                    f9:6c:c8:ca:af:6f:96:29:3d:77:fb:c2:f1:e3:fc:
                    de:c1:7a:4d:f7:73:c2:94:e7:03:41:ab:75:fa:cc:
                    07:b2:5a:52:6c:1f:b3:c0:12:5f:11:54:32:d2:fd:
                    1b:01:fe:03:83:0c:c6:1f:b7:7c:18:30:5f:75:03:
                    31:67:dc:a5:d9:0f:1d:98:87:db:6c:1e:b9:d7:f4:
                    0c:98:55:50:31:7e:81:55:90:f0:21:92:65:03:92:
                    42:4e:70:f9:8e:63:70:d6:a7:d7:8f:4e:c1:44:09:
                    55:7c:10:17:5a:2d:af:33:2e:1b:05:53:b6:f0:0e:
                    80:24:79:bf:19:02:2a:a8:be:31:04:f8:fe:a9:bf:
                    97:c4:54:7c:4d:b0:58:84:a8:e7:68:44:29:e2:3c:
                    01:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:DC:6C:D2:D3:9B:82:B8:01:05:03:6E:FD:24:24:1F:AC:BF:A2:11
            X509v3 Authority Key Identifier:
                keyid:DE:AF:75:0B:5C:2B:95:39:D9:6E:56:49:77:2A:F7:E1:0E:FE:0F:EA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3q91C1wrlTnZblZJdyr34Q7-D-o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0309fb-6f84-47bc-a7c9-5d31d1fe428f/1/3q91C1wrlTnZblZJdyr34Q7-D-o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:63:bb:08:06:1a:69:34:25:4b:a5:63:1d:8b:68:80:c1:ba:
         4c:51:9a:e6:0a:e3:2f:a1:98:55:25:45:5f:8d:0d:11:8e:f6:
         66:a8:5a:70:c4:58:0c:26:7f:79:99:6c:ec:93:7d:a4:af:df:
         65:fb:71:7e:14:e3:81:4a:11:d5:b9:f5:91:a8:53:5d:79:98:
         bd:02:52:d7:20:d4:5a:ab:af:39:e8:c8:8f:78:60:57:60:69:
         ce:94:0a:f1:4a:06:b2:37:76:6f:5f:70:ea:a9:79:50:ae:e9:
         82:a5:73:cb:26:bf:db:4a:59:04:45:3c:9e:8d:34:ba:f8:af:
         84:00:26:21:ac:51:4d:f3:17:1e:2e:e5:08:ea:8a:18:f8:6a:
         8f:c7:a4:6b:be:48:90:9a:d5:47:25:a6:8e:ff:b3:f5:b3:c6:
         ab:a8:51:95:6e:b5:7a:be:48:9f:08:9f:34:f6:1f:b4:a8:ca:
         e6:29:e2:87:66:b8:fc:ad:0f:da:8b:61:0a:53:75:aa:6c:72:
         f6:74:6d:96:29:90:ae:5d:06:1c:37:07:e0:16:0b:b5:2e:18:
         b1:90:f7:98:47:00:76:fb:70:52:2d:c8:76:82:bf:1a:57:f7:
         5b:85:21:6c:6b:80:2a:e5:8e:ff:03:1c:24:00:10:dd:73:f4:
         76:47:13:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----