Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.mft
File:                     83MAhqFPMbJWQMFC7f0XvJMyDFo.mft (raw, json)
Hash identifier:          sb/WzxgOynkIRg8tJ/fCr3kxmTkufZdl0a6ugt8PbW8=
Subject key identifier:   48:9E:D3:3C:34:D9:CC:2D:D4:91:E1:71:7F:9D:45:E3:3A:DD:95:BF
Authority key identifier: F3:73:00:86:A1:4F:31:B2:56:40:C1:42:ED:FD:17:BC:93:32:0C:5A
Certificate issuer:       /CN=f3730086a14f31b25640c142edfd17bc93320c5a
Certificate serial:       019D25F13F76E816EF587A355A96A3C6DE79
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/83MAhqFPMbJWQMFC7f0XvJMyDFo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.mft
Manifest number:          112C
Signing time:             Wed 25 Mar 2026 17:01:00 +0000
Manifest this update:     Wed 25 Mar 2026 17:01:00 +0000
Manifest next update:     Thu 26 Mar 2026 17:01:00 +0000
Files and hashes:         1: 83MAhqFPMbJWQMFC7f0XvJMyDFo.crl (hash: M6wu3AZdiECMyZwkTJm9xRtSJuoN/FwB+1tSvlu6TwY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/83MAhqFPMbJWQMFC7f0XvJMyDFo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 26 Mar 2026 17:01:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:25:f1:3f:76:e8:16:ef:58:7a:35:5a:96:a3:c6:de:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f3730086a14f31b25640c142edfd17bc93320c5a
        Validity
            Not Before: Mar 25 17:01:00 2026 GMT
            Not After : Mar 26 17:01:00 2026 GMT
        Subject: CN=489ed33c34d9cc2dd491e1717f9d45e33add95bf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:75:de:59:47:43:cb:5e:76:2f:0f:d2:03:b3:
                    f0:a4:e4:28:49:2b:3d:43:6e:df:39:73:d0:a8:0f:
                    1a:86:cd:09:65:41:b2:34:0d:69:e0:e6:6c:9a:b6:
                    f0:6d:30:da:e7:ba:f9:f2:c8:72:bc:22:f1:08:9d:
                    30:7f:08:d4:92:d0:8e:4d:d4:24:84:08:d8:73:9f:
                    58:e8:c4:41:44:0a:74:9c:66:12:55:d8:53:85:3d:
                    b4:1f:7e:78:7d:1d:bc:e6:5d:bc:59:c4:e2:e4:2a:
                    d3:4d:d6:88:92:16:e9:3f:af:3d:39:3e:d6:11:db:
                    93:c0:ce:07:b9:eb:93:b1:50:4d:f8:0f:35:8e:73:
                    bc:ca:c6:68:e7:de:2b:48:bc:cc:60:12:5a:05:e2:
                    5a:17:2f:fc:58:0e:36:5d:5a:52:89:7c:30:78:5e:
                    e7:69:bd:08:96:2a:46:3c:44:be:88:b0:b3:70:a8:
                    13:e3:60:df:85:d5:a8:53:09:31:4c:55:02:0f:f2:
                    e6:48:86:31:3c:1a:24:16:41:83:8b:b1:9f:5a:d3:
                    c0:73:92:a5:23:e7:e4:f7:69:08:8f:6a:95:6a:e2:
                    39:e8:4d:24:e0:c8:63:5e:f5:ba:04:25:6d:bf:e9:
                    d9:33:f0:16:a6:22:3a:ee:84:5e:b7:b6:1d:eb:e2:
                    09:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:9E:D3:3C:34:D9:CC:2D:D4:91:E1:71:7F:9D:45:E3:3A:DD:95:BF
            X509v3 Authority Key Identifier:
                keyid:F3:73:00:86:A1:4F:31:B2:56:40:C1:42:ED:FD:17:BC:93:32:0C:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/83MAhqFPMbJWQMFC7f0XvJMyDFo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1a8cef-bc09-42b8-b76d-79f32fd4e33d/1/83MAhqFPMbJWQMFC7f0XvJMyDFo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:5f:f0:67:5a:ad:b8:81:69:f8:76:7c:a0:b0:9f:78:71:ef:
         3f:0d:11:b2:44:cd:36:ad:07:65:e5:62:18:5a:fb:ea:79:bd:
         3a:43:9a:86:33:a2:38:18:9f:f5:31:62:9e:85:d0:39:83:94:
         61:13:7f:dc:2d:02:b5:bf:84:48:32:40:76:ca:9b:e4:67:6f:
         9e:6b:56:ea:33:fb:e1:f0:c1:d8:67:da:43:54:56:40:bf:36:
         ee:d4:08:ee:5e:5a:82:bc:de:53:a7:0e:17:f2:06:05:93:c3:
         b4:15:a0:0c:46:1d:e7:d9:be:b1:d2:dd:ef:a2:c1:b3:fc:ef:
         d1:68:84:07:69:9f:10:f0:91:5f:ed:cf:7b:9f:f0:f9:6b:4b:
         33:55:d2:36:b9:d8:b0:1a:e2:ea:cb:25:e4:b9:b2:f5:4a:ea:
         87:6b:2c:3a:70:c2:6b:60:49:4e:00:4e:d0:ea:8b:ab:b2:f2:
         06:ac:5e:f3:84:dd:ea:a4:b6:40:14:d0:34:b7:ed:df:bd:ba:
         87:aa:b9:4a:0c:39:5e:c9:de:f4:b6:2e:a8:ac:34:b6:9d:26:
         5e:f0:d0:1c:e0:f6:cd:e3:74:0f:9b:c2:dd:e0:dd:3a:4d:3c:
         cb:ba:d3:c8:cf:05:3d:91:aa:89:30:e5:e0:36:03:96:a7:d6:
         43:6c:d8:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----