Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/2fb352-ef94-42de-89ac-d9af710ba1de/1/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.mft
File:                     Ou8xs2gmh5x-vBEsYpQaHNOiuzM.mft (raw, json)
Hash identifier:          dP4ccO2U24S8Sd/geTcnczuTNPPkKGMzYj0p13Q1rP4=
Subject key identifier:   5C:ED:0A:EC:72:86:DC:FE:AB:7B:D7:7B:1D:FB:7A:FB:C1:8C:3E:D5
Authority key identifier: 3A:EF:31:B3:68:26:87:9C:7E:BC:11:2C:62:94:1A:1C:D3:A2:BB:33
Certificate issuer:       /CN=3aef31b36826879c7ebc112c62941a1cd3a2bb33
Certificate serial:       019D28F2CDB03D63BA127CBF5EEF945DFCD3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9b/2fb352-ef94-42de-89ac-d9af710ba1de/1/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.mft
Manifest number:          0C93
Signing time:             Thu 26 Mar 2026 07:01:34 +0000
Manifest this update:     Thu 26 Mar 2026 07:01:34 +0000
Manifest next update:     Fri 27 Mar 2026 07:01:34 +0000
Files and hashes:         1: Ou8xs2gmh5x-vBEsYpQaHNOiuzM.crl (hash: MLsxLZGSMFz0wvCUfOoAu1tmqSfZKdZ7NzVbyQ1PBVM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9b/2fb352-ef94-42de-89ac-d9af710ba1de/1/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9b/2fb352-ef94-42de-89ac-d9af710ba1de/1/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 07:01:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:28:f2:cd:b0:3d:63:ba:12:7c:bf:5e:ef:94:5d:fc:d3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3aef31b36826879c7ebc112c62941a1cd3a2bb33
        Validity
            Not Before: Mar 26 07:01:34 2026 GMT
            Not After : Mar 27 07:01:34 2026 GMT
        Subject: CN=5ced0aec7286dcfeab7bd77b1dfb7afbc18c3ed5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:e6:36:17:91:06:1a:cb:2b:ab:79:be:f9:25:
                    59:99:d5:b9:28:e0:3d:ed:f0:d5:15:0d:37:5e:aa:
                    c7:0c:3d:f4:62:c8:50:cb:97:bd:92:40:ef:f4:f7:
                    f8:d0:3b:ba:48:09:2e:c4:f8:d0:e9:0f:a0:c7:7f:
                    cf:db:df:55:95:41:23:d0:8d:b4:ad:f9:d0:7e:78:
                    1c:a2:38:8a:87:9f:65:a1:88:ad:4d:e1:e4:8f:28:
                    36:14:37:c9:eb:65:3c:0f:53:3f:84:c0:fa:08:31:
                    6d:c0:8e:f3:6e:5a:9f:af:e2:ad:a2:3d:f1:c8:e4:
                    90:16:9f:79:75:e2:24:9d:73:bd:47:b6:ec:ab:6e:
                    55:ea:5f:d7:a2:5b:a0:3a:9a:9a:1f:d6:d7:ce:4a:
                    3d:45:47:dd:2b:02:cb:56:96:94:e9:b5:a0:76:c8:
                    d4:d4:67:29:76:d5:27:08:a6:16:54:4d:c8:51:f3:
                    f2:01:b0:d0:75:f9:99:bd:e6:c4:22:b6:4c:85:26:
                    e1:e1:c0:09:97:2f:15:33:93:20:52:f2:ac:bd:fe:
                    5b:49:29:6d:cc:eb:e7:4c:c6:16:39:0d:56:02:3d:
                    18:39:1d:82:9d:bf:9d:f9:51:5e:50:45:7c:88:f4:
                    d1:4d:37:d5:ad:22:95:34:58:44:dd:b0:9b:f7:11:
                    a0:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:ED:0A:EC:72:86:DC:FE:AB:7B:D7:7B:1D:FB:7A:FB:C1:8C:3E:D5
            X509v3 Authority Key Identifier:
                keyid:3A:EF:31:B3:68:26:87:9C:7E:BC:11:2C:62:94:1A:1C:D3:A2:BB:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2fb352-ef94-42de-89ac-d9af710ba1de/1/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/2fb352-ef94-42de-89ac-d9af710ba1de/1/Ou8xs2gmh5x-vBEsYpQaHNOiuzM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:18:11:7f:05:b9:fa:b2:51:99:9a:d8:70:a2:a8:ef:04:c7:
         c6:89:7f:b1:1f:7e:4f:75:69:65:c8:4f:e8:94:47:d5:07:43:
         22:d4:80:2d:bc:dd:d2:c3:93:a2:f3:07:d5:a8:54:5a:8a:80:
         ce:aa:2c:3f:70:a4:af:02:36:6d:81:93:a6:b2:bd:14:7e:72:
         d2:57:17:85:c5:13:e4:d4:a8:a8:11:92:81:ff:12:2d:a9:99:
         a5:27:d4:cd:ce:80:89:81:1d:8e:d6:29:fb:99:db:e2:18:bf:
         a6:60:14:16:10:50:e6:bf:49:13:b0:63:61:33:cd:4b:bc:a7:
         fc:50:62:fa:d8:b7:22:27:6c:c3:e0:26:90:12:3b:74:e7:84:
         f3:eb:0d:88:40:95:d9:5f:6f:4c:d6:5f:4f:f5:ba:4f:56:40:
         8f:33:b6:a4:0a:b3:86:92:37:a2:e6:79:2f:d9:d0:7c:65:f5:
         42:33:c9:f0:ef:43:d2:00:57:d3:7b:ac:7f:5b:50:ff:5b:ad:
         e5:17:35:41:93:aa:ab:4b:fe:1f:42:59:00:3f:59:b6:ae:59:
         78:6d:d0:16:8c:ad:6f:3e:de:86:96:a2:ce:05:2e:56:33:b1:
         9a:ac:07:df:a9:fe:5e:ce:90:6f:05:c5:73:b0:a0:21:5b:d0:
         02:c2:72:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8s2wPWO6Eny/Xu+UXfzTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhZWYzMWIzNjgyNjg3OWM3ZWJjMTEyYzYyOTQxYTFjZDNh
MmJiMzMwHhcNMjYwMzI2MDcwMTM0WhcNMjYwMzI3MDcwMTM0WjAzMTEwLwYDVQQD
Eyg1Y2VkMGFlYzcyODZkY2ZlYWI3YmQ3N2IxZGZiN2FmYmMxOGMzZWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkeY2F5EGGssrq3m++SVZmdW5KOA9
7fDVFQ03XqrHDD30YshQy5e9kkDv9Pf40Du6SAkuxPjQ6Q+gx3/P299VlUEj0I20
rfnQfngcojiKh59loYitTeHkjyg2FDfJ62U8D1M/hMD6CDFtwI7zblqfr+Ktoj3x
yOSQFp95deIknXO9R7bsq25V6l/XolugOpqaH9bXzko9RUfdKwLLVpaU6bWgdsjU
1GcpdtUnCKYWVE3IUfPyAbDQdfmZvebEIrZMhSbh4cAJly8VM5MgUvKsvf5bSSlt
zOvnTMYWOQ1WAj0YOR2Cnb+d+VFeUEV8iPTRTTfVrSKVNFhE3bCb9xGg1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFztCuxyhtz+q3vXex37evvBjD7VMB8GA1UdIwQY
MBaAFDrvMbNoJoecfrwRLGKUGhzTorszMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3U4eHMyZ21oNXgtdkJFc1lwUWFITk9pdXpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8yZmIzNTItZWY5NC00MmRlLTg5YWMt
ZDlhZjcxMGJhMWRlLzEvT3U4eHMyZ21oNXgtdkJFc1lwUWFITk9pdXpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8yZmIzNTItZWY5NC00MmRlLTg5YWMtZDlhZjcxMGJhMWRl
LzEvT3U4eHMyZ21oNXgtdkJFc1lwUWFITk9pdXpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAABgRfwW5
+rJRmZrYcKKo7wTHxol/sR9+T3VpZchP6JRH1QdDItSALbzd0sOTovMH1ahUWoqA
zqosP3CkrwI2bYGTprK9FH5y0lcXhcUT5NSoqBGSgf8SLamZpSfUzc6AiYEdjtYp
+5nb4hi/pmAUFhBQ5r9JE7BjYTPNS7yn/FBi+ti3Iidsw+AmkBI7dOeE8+sNiECV
2V9vTNZfT/W6T1ZAjzO2pAqzhpI3ouZ5L9nQfGX1QjPJ8O9D0gBX03usf1tQ/1ut
5Rc1QZOqq0v+H0JZAD9Ztq5ZeG3QFoytbz7ehpaizgUuVjOxmqwH36n+Xs6QbwXF
c7CgIVvQAsJy+w==
-----END CERTIFICATE-----