Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/1ed883-376a-45f9-8884-b8162260124f/1/8Dd0onYhS4bgpbT6dyG9sOMi4IA.mft
File:                     8Dd0onYhS4bgpbT6dyG9sOMi4IA.mft (raw, json)
Hash identifier:          WZsUo2jXPx5Anau0HfM/iYLzn5iUb/1MKBh7MdYHHnA=
Subject key identifier:   B3:E6:2C:D2:99:48:19:BF:02:10:C5:EE:B2:FB:BC:F6:FE:E9:B5:AE
Authority key identifier: F0:37:74:A2:76:21:4B:86:E0:A5:B4:FA:77:21:BD:B0:E3:22:E0:80
Certificate issuer:       /CN=f03774a276214b86e0a5b4fa7721bdb0e322e080
Certificate serial:       019E1CB463BEA956047E4BE53CD80E08F62F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8Dd0onYhS4bgpbT6dyG9sOMi4IA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/90/1ed883-376a-45f9-8884-b8162260124f/1/8Dd0onYhS4bgpbT6dyG9sOMi4IA.mft
Manifest number:          0DE5
Signing time:             Tue 12 May 2026 15:00:44 +0000
Manifest this update:     Tue 12 May 2026 15:00:44 +0000
Manifest next update:     Wed 13 May 2026 15:00:44 +0000
Files and hashes:         1: 8Dd0onYhS4bgpbT6dyG9sOMi4IA.crl (hash: +PAv3FYBKFhP/bPz9LQ1OYceupUIJcEUkyDunS8s+UI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/90/1ed883-376a-45f9-8884-b8162260124f/1/8Dd0onYhS4bgpbT6dyG9sOMi4IA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/90/1ed883-376a-45f9-8884-b8162260124f/1/8Dd0onYhS4bgpbT6dyG9sOMi4IA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8Dd0onYhS4bgpbT6dyG9sOMi4IA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1c:b4:63:be:a9:56:04:7e:4b:e5:3c:d8:0e:08:f6:2f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f03774a276214b86e0a5b4fa7721bdb0e322e080
        Validity
            Not Before: May 12 15:00:44 2026 GMT
            Not After : May 13 15:00:44 2026 GMT
        Subject: CN=b3e62cd2994819bf0210c5eeb2fbbcf6fee9b5ae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:a6:93:82:9a:33:80:10:b6:7c:a6:43:8a:33:
                    96:a4:ff:ca:e1:5f:13:15:3f:73:3c:e9:d8:38:3f:
                    38:fe:9e:14:0d:c0:45:dc:61:0e:6b:d5:7e:8e:b0:
                    9f:da:7f:f5:f7:ce:94:fc:b8:ec:cc:b8:2a:ba:75:
                    bb:31:dc:f8:b9:17:48:9b:7b:18:1b:6a:ee:f1:67:
                    66:d3:24:14:14:cd:10:6f:42:5a:a0:0a:f4:c3:16:
                    4b:a1:05:ec:75:23:7e:1e:a1:2b:ce:fb:42:3e:fa:
                    6d:a8:8a:3a:2d:77:52:a9:48:ed:29:be:bc:93:a6:
                    0c:e0:99:a3:1a:24:dc:61:2c:83:44:f5:b6:49:3d:
                    cb:37:7c:8d:47:0a:17:8b:b3:2b:f1:43:79:ad:08:
                    22:82:2f:de:53:e3:58:fb:3c:2c:06:ac:62:d5:17:
                    f6:03:cb:89:47:06:09:1a:71:82:35:fe:fd:c1:ca:
                    1a:f5:bc:51:87:5a:9d:6e:be:a8:a7:1f:79:22:4c:
                    4a:4d:e5:a3:28:08:7a:e5:a2:8b:57:d5:97:b9:23:
                    cb:6d:cb:64:47:b6:bf:2f:0f:bf:67:e9:26:88:ff:
                    5d:0b:97:cb:19:44:41:13:16:c2:ea:c1:5c:01:4f:
                    20:62:99:2c:4f:88:aa:42:bf:f2:d9:0b:52:32:06:
                    ff:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:E6:2C:D2:99:48:19:BF:02:10:C5:EE:B2:FB:BC:F6:FE:E9:B5:AE
            X509v3 Authority Key Identifier:
                keyid:F0:37:74:A2:76:21:4B:86:E0:A5:B4:FA:77:21:BD:B0:E3:22:E0:80

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Dd0onYhS4bgpbT6dyG9sOMi4IA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/1ed883-376a-45f9-8884-b8162260124f/1/8Dd0onYhS4bgpbT6dyG9sOMi4IA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/90/1ed883-376a-45f9-8884-b8162260124f/1/8Dd0onYhS4bgpbT6dyG9sOMi4IA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:e0:dc:de:3b:f0:55:70:63:ff:60:34:50:76:46:39:5d:bc:
         65:47:7e:07:64:da:36:e0:1e:84:e1:58:13:d5:ee:15:fd:7e:
         3c:20:3b:ce:5d:a7:be:73:f6:ac:53:37:30:d3:b6:82:53:ef:
         cb:af:fb:2d:99:fa:0c:ff:25:c2:9b:12:65:73:90:32:82:7f:
         c6:b8:f8:98:b8:df:7b:d2:03:a9:13:47:57:fc:d9:fa:3c:5d:
         30:23:b3:79:69:82:67:4a:9d:d1:67:40:f4:e1:ab:a4:44:15:
         a9:b7:d6:96:eb:91:59:42:1b:c2:cd:48:f7:89:54:b9:66:b0:
         5a:73:3e:16:7f:71:cf:ac:7b:f3:d2:ef:15:9d:92:84:14:39:
         ce:af:87:d1:bb:ca:28:08:53:93:ed:ad:ad:3b:11:c6:a8:2d:
         40:60:05:69:76:09:8b:49:8b:e2:ca:3e:d9:6c:ff:ff:be:1a:
         df:08:f4:c4:ca:b0:ac:da:ee:3c:6c:6e:3e:e1:67:1a:59:ae:
         5b:92:0d:8e:d4:ec:03:2a:96:22:1e:37:ff:8a:44:0b:79:76:
         9b:49:15:a5:18:cd:44:52:15:1f:93:0d:dc:f4:13:a8:1a:48:
         d4:30:a8:93:ae:0b:21:23:1d:79:9a:ea:dd:e8:61:cd:e5:02:
         68:00:25:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4ctGO+qVYEfkvlPNgOCPYvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwMzc3NGEyNzYyMTRiODZlMGE1YjRmYTc3MjFiZGIwZTMy
MmUwODAwHhcNMjYwNTEyMTUwMDQ0WhcNMjYwNTEzMTUwMDQ0WjAzMTEwLwYDVQQD
EyhiM2U2MmNkMjk5NDgxOWJmMDIxMGM1ZWViMmZiYmNmNmZlZTliNWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsaaTgpozgBC2fKZDijOWpP/K4V8T
FT9zPOnYOD84/p4UDcBF3GEOa9V+jrCf2n/1986U/LjszLgqunW7Mdz4uRdIm3sY
G2ru8Wdm0yQUFM0Qb0JaoAr0wxZLoQXsdSN+HqErzvtCPvptqIo6LXdSqUjtKb68
k6YM4JmjGiTcYSyDRPW2ST3LN3yNRwoXi7Mr8UN5rQgigi/eU+NY+zwsBqxi1Rf2
A8uJRwYJGnGCNf79wcoa9bxRh1qdbr6opx95IkxKTeWjKAh65aKLV9WXuSPLbctk
R7a/Lw+/Z+kmiP9dC5fLGURBExbC6sFcAU8gYpksT4iqQr/y2QtSMgb/DQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLPmLNKZSBm/AhDF7rL7vPb+6bWuMB8GA1UdIwQY
MBaAFPA3dKJ2IUuG4KW0+nchvbDjIuCAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOERkMG9uWWhTNGJncGJUNmR5RzlzT01pNElBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8xZWQ4ODMtMzc2YS00NWY5LTg4ODQt
YjgxNjIyNjAxMjRmLzEvOERkMG9uWWhTNGJncGJUNmR5RzlzT01pNElBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC8xZWQ4ODMtMzc2YS00NWY5LTg4ODQtYjgxNjIyNjAxMjRm
LzEvOERkMG9uWWhTNGJncGJUNmR5RzlzT01pNElBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMODc3jvw
VXBj/2A0UHZGOV28ZUd+B2TaNuAehOFYE9XuFf1+PCA7zl2nvnP2rFM3MNO2glPv
y6/7LZn6DP8lwpsSZXOQMoJ/xrj4mLjfe9IDqRNHV/zZ+jxdMCOzeWmCZ0qd0WdA
9OGrpEQVqbfWluuRWUIbws1I94lUuWawWnM+Fn9xz6x789LvFZ2ShBQ5zq+H0bvK
KAhTk+2trTsRxqgtQGAFaXYJi0mL4so+2Wz//74a3wj0xMqwrNruPGxuPuFnGlmu
W5INjtTsAyqWIh43/4pEC3l2m0kVpRjNRFIVH5MN3PQTqBpI1DCok64LISMdeZrq
3ehhzeUCaAAltA==
-----END CERTIFICATE-----