Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft
File:                     yTLAXdVS5YBU2FWljWFhlVP1HGM.mft (raw, json)
Hash identifier:          15KtJ+NGZIB92CYY6p+i2vX5gl83kiIiHnTj51kLkq8=
Subject key identifier:   25:D1:22:D3:2E:C1:7D:A1:3E:B2:87:0F:5C:4C:18:86:D0:76:F9:E2
Authority key identifier: C9:32:C0:5D:D5:52:E5:80:54:D8:55:A5:8D:61:61:95:53:F5:1C:63
Certificate issuer:       /CN=c932c05dd552e58054d855a58d61619553f51c63
Certificate serial:       019D2695D87EABF048FB995F3AEDBD682AE8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yTLAXdVS5YBU2FWljWFhlVP1HGM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft
Manifest number:          030C
Signing time:             Wed 25 Mar 2026 20:00:47 +0000
Manifest this update:     Wed 25 Mar 2026 20:00:47 +0000
Manifest next update:     Thu 26 Mar 2026 20:00:47 +0000
Files and hashes:         1: yTLAXdVS5YBU2FWljWFhlVP1HGM.crl (hash: kad7/hMt8GhOYGIfiyT2M75JvCfkE8/qZqu3GgLSA2s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yTLAXdVS5YBU2FWljWFhlVP1HGM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 26 Mar 2026 15:17:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:26:95:d8:7e:ab:f0:48:fb:99:5f:3a:ed:bd:68:2a:e8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c932c05dd552e58054d855a58d61619553f51c63
        Validity
            Not Before: Mar 25 20:00:47 2026 GMT
            Not After : Mar 26 20:00:47 2026 GMT
        Subject: CN=25d122d32ec17da13eb2870f5c4c1886d076f9e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:9a:b0:33:14:36:21:70:91:47:17:37:ac:d8:
                    7c:7e:8b:f9:a4:d2:49:3b:0e:7b:08:22:62:89:a9:
                    e6:19:bf:ed:c3:65:f7:3b:27:25:6f:c3:35:3c:85:
                    8c:d5:fd:da:db:62:9c:42:ab:b0:fd:b3:98:3d:3b:
                    cd:ee:53:46:e7:0c:0e:2a:b6:f0:c1:ad:60:fe:c1:
                    01:7e:58:1c:dc:97:22:f0:5e:48:e4:fd:59:97:a0:
                    f2:72:de:07:bb:64:64:e1:d7:33:59:4a:8c:b7:1d:
                    a7:5e:a7:ad:7a:79:c7:4f:29:d0:85:4f:e3:98:99:
                    1a:9b:92:ff:43:02:ae:96:4d:24:9e:b8:35:01:04:
                    5c:58:79:d5:f8:76:e6:ce:80:8a:ac:e4:3c:29:e0:
                    f4:c8:47:c1:00:97:35:9d:61:ad:93:aa:ee:17:ee:
                    e5:2e:47:41:0f:bb:ab:f3:be:76:99:e7:13:9c:60:
                    ba:fc:7c:49:a5:77:f2:41:65:2c:4f:df:9d:c4:f7:
                    82:97:e9:76:ed:56:8d:44:b4:74:78:4c:70:83:a4:
                    86:49:e1:9b:48:96:47:5e:c6:ad:95:ff:4c:34:b7:
                    96:f8:91:36:be:a1:22:09:c4:1e:4f:69:a6:b0:53:
                    94:48:ed:c4:e3:b8:b4:bb:19:17:59:5e:91:9a:43:
                    b2:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                25:D1:22:D3:2E:C1:7D:A1:3E:B2:87:0F:5C:4C:18:86:D0:76:F9:E2
            X509v3 Authority Key Identifier:
                keyid:C9:32:C0:5D:D5:52:E5:80:54:D8:55:A5:8D:61:61:95:53:F5:1C:63

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yTLAXdVS5YBU2FWljWFhlVP1HGM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/91332b-3456-4651-9305-fa6b98f8470e/1/yTLAXdVS5YBU2FWljWFhlVP1HGM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:e7:6b:da:23:8e:0b:70:dc:1a:22:d2:d8:7f:d1:29:07:c0:
         cb:75:8b:50:ae:b2:f4:48:fc:f9:0b:6e:93:2a:e6:f2:b6:1e:
         3c:8d:79:96:b3:0c:50:d8:a6:f1:5a:d0:00:67:ed:53:d3:88:
         bb:d6:0f:3a:f3:5d:48:30:bd:37:44:d5:c0:6d:00:60:76:e0:
         8c:5b:d3:28:00:2c:1c:7d:8e:c2:e8:c3:ac:9e:ad:04:70:09:
         a8:62:b6:2c:b0:5a:a2:91:eb:2c:ef:a8:fc:f1:28:a3:4e:19:
         e9:89:7b:15:74:40:60:1f:d1:48:4f:36:e0:9d:9b:c8:71:cb:
         f1:55:66:fd:7f:19:10:61:d5:fe:b1:8d:e3:a8:cc:a4:50:2c:
         7d:19:af:c0:dd:96:12:61:08:49:7f:e9:26:e2:ce:e4:22:33:
         20:4f:8c:b2:ff:b4:f2:46:fc:82:86:73:89:a5:88:ab:ff:14:
         f4:b8:7f:dd:db:cd:63:02:de:77:cc:0c:ee:73:c9:a1:4d:69:
         bf:0a:a5:11:98:35:c1:ab:fc:33:67:eb:d2:ec:ff:98:2d:da:
         4a:3e:51:ea:67:11:17:0a:bb:74:1a:b1:28:d0:8b:54:40:22:
         cc:5b:43:67:36:15:53:fd:cd:ba:6a:43:cf:b5:ea:03:e5:78:
         fa:4d:95:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----