Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
File:                     APfVbNN-MeClJfW7GluvX0meQG0.mft (raw, json)
Hash identifier:          0cJl+bFY3IYQGv2ZYVAxaGHhopzlQysfrxV5Yp9G/e0=
Subject key identifier:   C3:58:94:C3:24:CA:04:D6:85:50:8A:CA:E3:FE:2F:47:3E:35:EB:CF
Authority key identifier: 00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D
Certificate issuer:       /CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
Certificate serial:       019E1CEBDD195F7902811B8378547CAC6B32
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
Manifest number:          185A
Signing time:             Tue 12 May 2026 16:01:20 +0000
Manifest this update:     Tue 12 May 2026 16:01:20 +0000
Manifest next update:     Wed 13 May 2026 16:01:20 +0000
Files and hashes:         1: APfVbNN-MeClJfW7GluvX0meQG0.crl (hash: rBUesI5+IqfiWVreQJTnyg5SKeDQfip58R+pdFlKL64=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1c:eb:dd:19:5f:79:02:81:1b:83:78:54:7c:ac:6b:32
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
        Validity
            Not Before: May 12 16:01:20 2026 GMT
            Not After : May 13 16:01:20 2026 GMT
        Subject: CN=c35894c324ca04d685508acae3fe2f473e35ebcf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:02:ff:de:72:4e:12:c7:c2:00:7f:fd:65:6b:
                    c2:cd:0a:55:08:35:35:1c:75:5a:99:f3:76:5e:f5:
                    bb:84:31:de:72:e7:65:a1:04:96:b8:d8:e0:03:f9:
                    fd:7f:b7:22:a9:b1:08:9c:1d:c4:09:9c:2b:27:a3:
                    6a:b4:9b:e0:49:78:07:36:4a:98:ba:e7:f5:c9:3d:
                    bd:2c:29:df:cb:a2:ef:53:39:15:1b:49:40:96:d4:
                    a0:bf:3a:6d:60:d7:98:8b:65:43:89:a6:c1:8e:a8:
                    16:61:c1:7e:88:78:b5:7e:0f:71:da:8b:6d:ee:2c:
                    4b:f0:6e:9d:3f:50:e7:5f:bc:6c:bf:4f:30:ed:09:
                    a1:25:07:5d:a0:9e:1e:10:01:a2:7e:fd:c4:d6:89:
                    97:57:74:68:8e:d4:c3:2a:89:5c:91:04:fb:92:c7:
                    0a:9a:cd:6c:21:08:92:e4:74:eb:f9:30:d5:4c:3e:
                    b0:b2:da:35:ab:c5:ae:47:a1:47:c0:97:57:b8:fc:
                    8c:6f:8d:e0:c7:3e:af:92:a3:e1:20:ae:81:79:12:
                    d8:a2:37:ca:92:cd:8c:7a:c8:18:ed:e1:55:ed:ad:
                    8c:6f:5d:d1:8d:08:b5:e8:bb:3a:ce:29:e8:39:8d:
                    6c:14:b8:68:ee:1e:8d:0c:0b:b3:16:8e:94:6c:11:
                    29:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C3:58:94:C3:24:CA:04:D6:85:50:8A:CA:E3:FE:2F:47:3E:35:EB:CF
            X509v3 Authority Key Identifier:
                keyid:00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:41:00:eb:89:49:1e:eb:bb:c4:f6:e2:15:c9:62:83:fc:c5:
         4a:42:7d:a7:5b:82:4b:fc:b6:c0:c6:0f:a1:fb:b8:b6:e0:89:
         e1:4b:4e:f5:e3:83:2f:81:ba:0e:15:f5:3b:04:3f:43:c4:de:
         64:13:7d:ec:6a:c9:de:89:b7:3f:ee:89:a5:9d:e7:15:c1:df:
         6d:37:fe:4f:dc:32:7e:5c:0a:0a:74:73:ba:fd:57:32:ab:18:
         67:f7:81:43:4a:28:de:e2:9b:b5:dc:e2:ab:6d:bd:92:74:94:
         c0:3a:0a:7a:7a:71:e6:66:6d:d0:04:eb:65:47:1e:04:eb:96:
         1a:2d:97:e4:28:04:2d:19:ee:f9:fd:b4:40:7f:91:06:74:b1:
         76:74:bb:ba:2a:0c:6c:cf:30:8e:1b:36:b6:9a:27:a5:62:a6:
         7a:14:09:a2:1f:15:ef:af:ac:4e:f3:30:25:1a:a2:60:6f:ad:
         97:f4:e9:a5:80:5a:d4:74:2c:3d:dd:70:4f:0d:e1:c0:11:17:
         c6:25:4a:5c:7b:dd:bd:8f:53:64:e0:a5:79:a7:2c:9f:17:45:
         3d:6b:d6:da:e4:b2:7c:51:ce:3e:aa:0d:43:14:9e:c2:c6:3c:
         9c:02:c6:16:99:8b:fc:6c:ad:33:1b:61:80:de:66:60:96:83:
         1e:bf:90:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----