Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft
File:                     eXqQW0595YVil_bgOmViXeIsQvM.mft (raw, json)
Hash identifier:          EoGgeJWOPUJt3H+8t+hj4RQEu87vn+1d3tVNjk1AdQE=
Subject key identifier:   34:90:A6:CF:76:86:30:C2:04:0F:8A:AB:AF:1D:8C:CB:4A:49:9D:81
Authority key identifier: 79:7A:90:5B:4E:7D:E5:85:62:97:F6:E0:3A:65:62:5D:E2:2C:42:F3
Certificate issuer:       /CN=797a905b4e7de5856297f6e03a65625de22c42f3
Certificate serial:       019D2704AA3295769BA8A3464B679D8032F4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eXqQW0595YVil_bgOmViXeIsQvM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft
Manifest number:          1051
Signing time:             Wed 25 Mar 2026 22:01:50 +0000
Manifest this update:     Wed 25 Mar 2026 22:01:50 +0000
Manifest next update:     Thu 26 Mar 2026 22:01:50 +0000
Files and hashes:         1: eXqQW0595YVil_bgOmViXeIsQvM.crl (hash: k5UWWb6awV4K0T/Um3ec1Qc7jU57LAJsYPlnC1XpDW0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eXqQW0595YVil_bgOmViXeIsQvM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 26 Mar 2026 22:01:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:04:aa:32:95:76:9b:a8:a3:46:4b:67:9d:80:32:f4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=797a905b4e7de5856297f6e03a65625de22c42f3
        Validity
            Not Before: Mar 25 22:01:50 2026 GMT
            Not After : Mar 26 22:01:50 2026 GMT
        Subject: CN=3490a6cf768630c2040f8aabaf1d8ccb4a499d81
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:c9:af:f7:5c:2f:de:25:96:ef:65:28:3f:fd:
                    d5:b2:a3:2b:ed:4b:80:de:70:74:d7:66:10:ad:98:
                    44:ac:2c:40:82:6f:7e:d4:ab:ab:ce:17:7b:66:9e:
                    06:73:04:92:94:ab:7e:0d:23:73:b5:ee:90:6c:3c:
                    3f:dd:10:9b:9a:ab:c7:e1:26:e8:0e:7a:31:92:4b:
                    76:d5:be:f4:b9:6e:07:c2:84:5e:2e:d4:98:86:fa:
                    91:ce:bf:2d:d5:31:17:20:f3:86:81:67:57:de:74:
                    e1:4b:a2:60:32:b4:5a:7b:8c:d7:e2:9c:20:da:85:
                    9b:07:97:6b:83:0c:70:33:73:8f:34:1e:de:29:7a:
                    71:4e:ba:eb:d9:b3:70:72:6f:b3:a2:59:92:bc:3e:
                    2c:53:33:0e:ff:c6:24:48:c7:8b:27:8b:38:37:b9:
                    fe:2b:54:3a:c0:b0:7b:e5:41:9d:8b:72:c0:7b:af:
                    c1:30:cf:b7:7c:a9:18:52:ec:5f:d5:42:aa:07:ef:
                    93:f1:48:94:fa:66:e0:63:76:9d:64:fd:77:68:cf:
                    99:90:2c:23:38:73:ef:e7:18:aa:9b:21:37:53:7c:
                    12:fe:a5:c4:59:6d:32:2c:da:87:36:ed:5d:37:29:
                    d8:04:45:ff:11:6f:42:bd:21:c9:63:94:ce:cf:ff:
                    cc:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                34:90:A6:CF:76:86:30:C2:04:0F:8A:AB:AF:1D:8C:CB:4A:49:9D:81
            X509v3 Authority Key Identifier:
                keyid:79:7A:90:5B:4E:7D:E5:85:62:97:F6:E0:3A:65:62:5D:E2:2C:42:F3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXqQW0595YVil_bgOmViXeIsQvM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:42:f8:69:f0:7e:e6:52:06:55:2b:b5:f9:02:26:8e:06:db:
         03:cf:13:8f:d5:be:7a:be:62:1a:dc:c2:2b:0b:f9:79:05:e2:
         e7:6e:56:8b:4e:91:53:9b:90:52:1c:c6:a2:84:39:92:e4:64:
         8c:46:13:73:a5:a0:0a:3f:56:15:e2:ba:90:b6:4e:42:b4:da:
         c7:40:34:2f:d0:63:9f:2f:57:2d:00:2f:64:75:7d:4c:4c:85:
         bb:78:9d:7a:52:b2:8f:dc:92:c6:4b:d7:46:c7:69:9a:4a:f0:
         ce:0d:78:dd:fa:2b:b4:ef:2e:2d:95:e1:89:5d:1d:3c:08:e5:
         e5:dc:8c:1d:79:6b:26:9d:71:2f:1d:3d:aa:60:7f:5d:a7:d8:
         92:28:c4:29:43:05:1f:63:dc:38:35:fd:3b:a3:22:e5:6b:a1:
         a0:68:39:7e:f4:39:92:c0:1a:e2:32:aa:ca:88:e0:a7:a3:8b:
         a4:fa:4f:2f:f4:dd:d5:c5:c2:8c:1b:a4:04:20:a5:fc:d4:ca:
         28:e7:3d:94:c9:84:8c:93:1c:f2:d8:d4:88:c7:8a:bc:64:52:
         e7:3c:23:8b:28:de:c8:f2:4a:22:6d:ae:3e:05:2d:52:bb:7e:
         14:25:df:1a:ad:fb:e6:90:59:87:b2:18:88:68:01:e1:1d:14:
         56:11:85:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----