Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft
File:                     6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft (raw, json)
Hash identifier:          eqFcwl/pHiMwsIRKTe5zkRV/N3Gzetw7Y9/icFB2mko=
Subject key identifier:   C1:8D:56:5D:EF:FE:CE:78:F0:30:88:64:36:AF:3E:C0:E6:FA:92:1D
Authority key identifier: E9:72:A6:C2:EB:EA:46:41:30:72:F9:0D:D5:26:D7:8F:11:02:F4:F2
Certificate issuer:       /CN=e972a6c2ebea46413072f90dd526d78f1102f4f2
Certificate serial:       019D29CDD650FF26A9D1315CF4752A11C078
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6XKmwuvqRkEwcvkN1SbXjxEC9PI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft
Manifest number:          0946
Signing time:             Thu 26 Mar 2026 11:00:48 +0000
Manifest this update:     Thu 26 Mar 2026 11:00:48 +0000
Manifest next update:     Fri 27 Mar 2026 11:00:48 +0000
Files and hashes:         1: 6XKmwuvqRkEwcvkN1SbXjxEC9PI.crl (hash: Uaex1pSjxDmKy/I23FaHtafEc19oOJlsJ1hi/dLTitU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6XKmwuvqRkEwcvkN1SbXjxEC9PI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 09:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:29:cd:d6:50:ff:26:a9:d1:31:5c:f4:75:2a:11:c0:78
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e972a6c2ebea46413072f90dd526d78f1102f4f2
        Validity
            Not Before: Mar 26 11:00:48 2026 GMT
            Not After : Mar 27 11:00:48 2026 GMT
        Subject: CN=c18d565deffece78f030886436af3ec0e6fa921d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:95:56:2e:ca:f7:d5:dc:57:99:4e:3b:1b:fd:
                    bb:19:37:b6:11:92:e9:50:55:2f:dc:f3:2c:e9:67:
                    42:3b:0f:ab:3d:0c:2d:ec:37:d7:a4:00:ca:94:3a:
                    50:32:85:d6:d0:2a:1b:91:68:1f:c6:82:f1:c5:fa:
                    98:6f:4b:ad:31:0e:25:bb:1e:40:a0:4a:67:60:cc:
                    c0:30:c1:47:4f:8c:f2:b5:6f:b1:24:c3:67:a4:58:
                    67:75:9b:6a:d8:96:37:f4:3d:f3:5d:cb:2b:32:da:
                    eb:04:8f:aa:2d:8e:76:f2:d9:22:f7:8f:b6:e2:4f:
                    36:a5:a2:d8:e3:a7:22:85:1e:2f:f2:77:2a:20:95:
                    a3:30:05:5f:f3:2f:83:fd:4f:99:4a:13:dd:0c:fd:
                    4f:d2:07:f2:be:fd:23:7e:79:d8:f9:59:5f:bd:61:
                    54:d3:ee:7a:46:38:72:dd:38:79:e3:e0:72:2b:84:
                    c3:a8:21:8c:b2:86:5f:b4:31:b4:f0:de:bc:bf:c5:
                    e1:75:23:ab:f7:ce:e5:75:03:ce:ae:c5:c6:75:b1:
                    ad:9a:0b:1d:f7:64:7d:c3:cf:54:cb:ea:3a:a4:7d:
                    d4:18:58:a5:de:a4:ae:99:01:7e:76:d2:32:29:79:
                    c9:4e:43:56:34:56:f8:6b:ef:88:fd:0d:86:fe:82:
                    6d:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:8D:56:5D:EF:FE:CE:78:F0:30:88:64:36:AF:3E:C0:E6:FA:92:1D
            X509v3 Authority Key Identifier:
                keyid:E9:72:A6:C2:EB:EA:46:41:30:72:F9:0D:D5:26:D7:8F:11:02:F4:F2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XKmwuvqRkEwcvkN1SbXjxEC9PI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:3d:9e:aa:98:d1:d2:df:81:53:16:10:30:57:b6:88:a3:2c:
         56:1a:57:ae:c4:48:f4:f6:d3:b4:21:19:96:86:ef:0f:10:83:
         85:ce:a0:3e:59:d6:0f:14:43:f3:82:3f:a4:fa:44:96:5d:4b:
         c0:cb:6d:f8:73:4b:d2:c3:59:10:58:23:b6:40:af:64:de:02:
         cf:20:ea:63:74:8a:e9:00:f1:49:b9:01:d1:e6:94:00:b5:f7:
         ea:88:48:1c:27:f9:39:4c:ce:f8:e8:57:1e:25:fe:86:f3:b8:
         79:fb:cc:59:6f:12:fc:27:fa:b6:03:8f:c6:60:24:e4:e3:69:
         54:6f:be:39:39:4c:f4:d4:d8:05:0f:74:94:22:1e:e4:a9:66:
         d7:d9:7a:55:e7:b9:10:4f:30:57:dd:c9:46:b7:92:a1:88:b6:
         50:f1:8e:89:a4:9c:ab:8b:ab:a0:3d:cc:20:40:fd:cd:07:7b:
         29:3e:43:56:7b:2f:4d:6e:3b:48:b3:12:75:4b:3a:0f:e0:06:
         de:dd:c1:d3:f1:c5:2f:12:10:d5:2e:e5:c0:39:e7:aa:fb:af:
         ee:6a:80:53:bb:8b:ca:61:43:09:01:7e:19:3d:b0:fe:c8:42:
         65:38:57:5f:cc:6a:05:1c:cf:a5:9a:4b:95:d6:d4:ed:53:df:
         9a:0a:c2:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----