Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/efb13b-5dbc-411b-b238-655d53698fda/1/GGr6K4fO01gj1aLMCghE56FRa_M.mft
File:                     GGr6K4fO01gj1aLMCghE56FRa_M.mft (raw, json)
Hash identifier:          Up2ejnO6ftdq+0NOhKV9h8MrSxRnItr8nSc2vR9qcMk=
Subject key identifier:   13:AC:E4:76:C0:0C:38:72:B6:64:3B:9E:8E:E6:6F:BE:73:6D:79:55
Authority key identifier: 18:6A:FA:2B:87:CE:D3:58:23:D5:A2:CC:0A:08:44:E7:A1:51:6B:F3
Certificate issuer:       /CN=186afa2b87ced35823d5a2cc0a0844e7a1516bf3
Certificate serial:       019D2704B355314090EEFECF80666F24CFB6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/GGr6K4fO01gj1aLMCghE56FRa_M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9a/efb13b-5dbc-411b-b238-655d53698fda/1/GGr6K4fO01gj1aLMCghE56FRa_M.mft
Manifest number:          0FE6
Signing time:             Wed 25 Mar 2026 22:01:52 +0000
Manifest this update:     Wed 25 Mar 2026 22:01:52 +0000
Manifest next update:     Thu 26 Mar 2026 22:01:52 +0000
Files and hashes:         1: GGr6K4fO01gj1aLMCghE56FRa_M.crl (hash: jnlabLSMCHeh8sp4xv9asUcaYi9qiuwxDtBMicbG33o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9a/efb13b-5dbc-411b-b238-655d53698fda/1/GGr6K4fO01gj1aLMCghE56FRa_M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9a/efb13b-5dbc-411b-b238-655d53698fda/1/GGr6K4fO01gj1aLMCghE56FRa_M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/GGr6K4fO01gj1aLMCghE56FRa_M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 26 Mar 2026 22:01:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:04:b3:55:31:40:90:ee:fe:cf:80:66:6f:24:cf:b6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=186afa2b87ced35823d5a2cc0a0844e7a1516bf3
        Validity
            Not Before: Mar 25 22:01:52 2026 GMT
            Not After : Mar 26 22:01:52 2026 GMT
        Subject: CN=13ace476c00c3872b6643b9e8ee66fbe736d7955
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:83:b5:16:c5:34:8e:cd:54:86:9a:92:79:ca:30:
                    78:b8:5e:ed:57:76:4e:39:3d:0f:d7:61:98:71:d1:
                    18:ec:42:33:10:6e:f2:aa:b2:c9:83:ef:07:6d:f7:
                    d2:7d:91:ee:e1:7c:26:63:25:f7:ef:15:61:69:2a:
                    20:e0:3b:71:d5:70:e4:24:8a:2b:55:bb:43:65:fd:
                    0e:f2:3a:d9:36:fd:20:07:de:a9:17:d3:c3:f9:f2:
                    a0:5b:2f:2b:f7:8b:60:e4:7c:bf:2c:d0:8b:37:5f:
                    f9:dc:e7:b6:75:c9:c7:ce:d8:a3:64:0b:5d:65:e9:
                    f7:00:2d:da:bb:10:86:49:33:7b:5b:e7:2f:a4:b2:
                    10:d7:48:09:28:31:6b:e3:03:f3:37:4b:37:13:80:
                    7e:2a:2a:50:2d:89:1d:17:ee:b0:9d:75:3e:05:73:
                    da:56:fb:a6:af:8a:a8:54:c9:e9:f5:d7:40:6c:79:
                    e7:2b:ec:79:85:76:d9:c2:85:e6:c8:70:84:f2:2f:
                    4c:d4:c8:96:fe:6f:ed:cd:10:e2:a9:ef:ff:76:9b:
                    72:73:0a:d1:6c:59:5d:93:c3:3c:2a:ff:45:bd:d8:
                    2e:63:50:10:3c:70:bb:fc:96:76:02:1f:b2:d9:4a:
                    85:b1:be:8f:8c:bf:82:c5:2a:9a:9f:a9:eb:b8:af:
                    bc:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:AC:E4:76:C0:0C:38:72:B6:64:3B:9E:8E:E6:6F:BE:73:6D:79:55
            X509v3 Authority Key Identifier:
                keyid:18:6A:FA:2B:87:CE:D3:58:23:D5:A2:CC:0A:08:44:E7:A1:51:6B:F3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GGr6K4fO01gj1aLMCghE56FRa_M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/efb13b-5dbc-411b-b238-655d53698fda/1/GGr6K4fO01gj1aLMCghE56FRa_M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/efb13b-5dbc-411b-b238-655d53698fda/1/GGr6K4fO01gj1aLMCghE56FRa_M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:b9:68:dc:72:21:0e:7a:96:e2:dc:97:22:7b:38:01:04:44:
         a1:4b:39:fa:84:90:af:91:c8:5c:a3:b6:ef:ef:43:66:04:89:
         16:c2:37:67:00:4d:0d:1c:8b:9e:bf:1b:19:66:d2:b5:cb:b7:
         33:98:85:d3:f0:01:be:6a:3a:d6:d1:ef:17:af:a6:7c:3f:11:
         d1:85:08:2e:9a:7c:b4:a4:fe:fb:6a:80:41:b5:fb:1d:1d:e5:
         3f:b5:ac:f8:a2:95:cd:64:7e:38:83:b2:80:98:8d:46:eb:da:
         a5:59:0f:82:f7:d0:08:f4:b6:02:c0:c5:6d:86:6f:de:af:a6:
         a3:75:e3:30:f7:73:97:34:07:84:0c:3f:33:4f:ac:ff:30:26:
         17:2e:41:7c:9c:e2:50:39:b5:17:e1:d2:ed:8f:8c:90:66:00:
         ba:26:93:c4:dd:68:b6:8b:2e:73:a1:ee:39:45:3d:1d:26:62:
         ea:13:8f:7e:9b:31:1b:54:83:e9:23:e5:c7:03:d7:f1:21:49:
         32:6b:0f:de:e7:1f:c5:96:53:6e:e6:fc:2b:6a:2d:89:f7:1d:
         66:21:ae:ba:bf:4f:64:c4:ad:e3:23:bc:d8:02:b3:3f:26:24:
         2e:8d:48:88:29:83:2f:75:6c:1f:bd:89:45:ef:95:45:0e:7b:
         3a:c2:7f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----