Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft
File:                     A1mTnOHGqpvru2WA4VbuvYcd87I.mft (raw, json)
Hash identifier:          LwskaZ5xoBdscQUFCA7dE4oMgjC5GTjrH9fcKuqq0WA=
Subject key identifier:   38:E2:02:7C:44:91:10:2E:98:B4:FA:DD:16:7A:7A:52:26:89:0B:6B
Authority key identifier: 03:59:93:9C:E1:C6:AA:9B:EB:BB:65:80:E1:56:EE:BD:87:1D:F3:B2
Certificate issuer:       /CN=0359939ce1c6aa9bebbb6580e156eebd871df3b2
Certificate serial:       019E1EA30CF9741B90C6B9C5818DECC91928
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A1mTnOHGqpvru2WA4VbuvYcd87I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft
Manifest number:          075D
Signing time:             Wed 13 May 2026 00:01:02 +0000
Manifest this update:     Wed 13 May 2026 00:01:02 +0000
Manifest next update:     Thu 14 May 2026 00:01:02 +0000
Files and hashes:         1: A1mTnOHGqpvru2WA4VbuvYcd87I.crl (hash: 1DxOO8li5tHekAXYWSYnjRgtQePLiNq6Io6gcCA4TQA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A1mTnOHGqpvru2WA4VbuvYcd87I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 23:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1e:a3:0c:f9:74:1b:90:c6:b9:c5:81:8d:ec:c9:19:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0359939ce1c6aa9bebbb6580e156eebd871df3b2
        Validity
            Not Before: May 13 00:01:02 2026 GMT
            Not After : May 14 00:01:02 2026 GMT
        Subject: CN=38e2027c4491102e98b4fadd167a7a5226890b6b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:23:ad:41:1f:63:70:36:a6:0c:1d:21:ff:17:
                    86:88:24:a5:77:04:ce:69:68:8a:cf:f5:f4:62:70:
                    77:b4:29:d4:78:55:57:04:75:eb:58:c1:f0:ac:3d:
                    91:44:8b:0e:a3:00:8e:b8:75:52:c3:82:58:39:d6:
                    12:af:7f:c9:2a:21:aa:7a:0a:8f:33:b6:7c:15:b2:
                    ba:02:5c:56:ca:b3:64:8e:11:59:0b:50:21:b1:b0:
                    34:f5:a6:4e:9d:91:e3:eb:69:cd:f0:88:05:76:07:
                    5d:b6:f4:04:e7:ff:d2:fe:4d:f4:ae:9a:8c:0a:d6:
                    76:36:64:86:b5:0c:33:b4:f8:7d:a4:b8:40:ea:fe:
                    12:1b:32:f6:ee:70:43:c2:0f:24:0d:82:88:a2:70:
                    2b:86:82:1e:80:76:a9:cc:10:e1:4c:bf:cd:54:e7:
                    c1:3a:76:20:4e:3f:42:1f:f7:2d:8e:7b:69:e0:c3:
                    06:1f:14:9f:6a:e4:60:2f:40:37:e0:22:6a:8f:63:
                    8a:86:f7:e2:6f:92:5a:14:16:99:b5:68:32:70:83:
                    03:b6:38:75:cc:1e:66:ef:9c:bf:e6:33:bf:b0:8f:
                    5d:96:66:2d:d4:48:f9:6d:f2:9d:1a:b1:ee:60:53:
                    8d:1f:67:da:2a:d3:df:d9:34:ff:35:a1:a4:ca:b8:
                    5a:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:E2:02:7C:44:91:10:2E:98:B4:FA:DD:16:7A:7A:52:26:89:0B:6B
            X509v3 Authority Key Identifier:
                keyid:03:59:93:9C:E1:C6:AA:9B:EB:BB:65:80:E1:56:EE:BD:87:1D:F3:B2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1mTnOHGqpvru2WA4VbuvYcd87I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/91/65bb4c-b281-4b84-81c0-a962c2b7b153/1/A1mTnOHGqpvru2WA4VbuvYcd87I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:80:88:a9:65:3f:d2:ae:5d:72:3d:7a:72:c7:2d:b3:8f:94:
         66:c4:dc:bc:ad:69:37:00:ba:06:70:43:0a:39:99:ab:55:ce:
         d9:71:0c:2d:3b:fe:18:b9:82:a2:70:07:cc:21:d7:02:11:49:
         da:4b:78:8f:e0:9c:87:69:e7:fa:fa:37:8f:4a:69:c5:de:2e:
         47:34:14:44:47:fb:1f:f0:f4:69:4a:c8:f2:90:1c:ee:9d:af:
         69:c6:79:0c:94:a2:f1:bf:dc:b4:dc:ad:e7:e3:85:02:60:5e:
         d9:dd:31:2c:78:45:c5:cb:da:eb:54:08:19:36:d2:e7:1b:9d:
         1f:9a:63:82:1f:b4:55:ea:72:8d:c9:30:e7:0a:0f:8c:9a:74:
         0b:66:fe:b9:78:31:a0:71:05:00:0e:a6:a4:b8:4f:f7:2a:b0:
         46:1f:50:ec:c5:16:2d:c5:7d:33:53:5a:d9:fa:57:06:d6:a4:
         d2:d5:f0:d5:72:59:65:95:47:9f:59:0c:a1:f7:8c:f2:d6:7f:
         e7:64:98:d1:38:e9:3b:2a:2f:1d:6d:7f:b2:13:7d:f4:b8:41:
         8f:86:f6:9c:a0:3d:2c:42:0c:0c:80:4e:d9:12:c7:73:fd:af:
         8b:e7:37:04:5b:d5:a9:06:38:cf:15:2f:99:93:a7:7d:5c:b9:
         6e:d8:5a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----