Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
File:                     aomTYnatLRhxB9-3QAeTADrBSac.mft (raw, json)
Hash identifier:          toyYWqp1FTTBZnbrAOsyIl+m+doyDNrkyn8CpOFASX0=
Subject key identifier:   07:88:FB:B4:1F:57:DE:F8:05:E2:9A:9D:23:00:9C:B1:26:55:7F:2F
Authority key identifier: 6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7
Certificate issuer:       /CN=6a89936276ad2d187107dfb7400793003ac149a7
Certificate serial:       019D284DC0564EB628D726671CF3F357D962
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
Manifest number:          1815
Signing time:             Thu 26 Mar 2026 04:01:17 +0000
Manifest this update:     Thu 26 Mar 2026 04:01:17 +0000
Manifest next update:     Fri 27 Mar 2026 04:01:17 +0000
Files and hashes:         1: aomTYnatLRhxB9-3QAeTADrBSac.crl (hash: QhCfPWu4drCVg5VDpBTcx6J7ObeEiYuChj17XR3bfq4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 04:01:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:28:4d:c0:56:4e:b6:28:d7:26:67:1c:f3:f3:57:d9:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6a89936276ad2d187107dfb7400793003ac149a7
        Validity
            Not Before: Mar 26 04:01:17 2026 GMT
            Not After : Mar 27 04:01:17 2026 GMT
        Subject: CN=0788fbb41f57def805e29a9d23009cb126557f2f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:d9:18:db:58:72:e2:a8:8b:30:8e:5a:97:86:
                    d1:f4:b4:a0:5f:68:37:b7:01:53:40:fb:41:22:10:
                    35:ac:85:ca:04:4b:24:7f:4c:3c:5b:e9:57:30:09:
                    12:cf:ed:f8:d3:c3:45:a8:a8:c1:0f:c7:87:53:9b:
                    e0:57:49:13:71:58:48:6e:bf:25:79:7f:42:3c:ab:
                    8e:55:64:b8:b9:e8:19:d7:74:57:3a:c4:82:4b:ba:
                    a9:76:de:37:42:4b:49:47:a7:c6:08:d1:4f:45:fa:
                    bd:6e:e5:a3:ae:dd:1c:40:c6:97:24:88:31:f4:23:
                    b9:4b:d1:1a:ff:06:f2:9e:6a:f0:07:95:7b:f8:09:
                    cb:86:0e:5b:9d:b1:c6:8e:ee:a4:58:15:42:b2:d7:
                    a2:9e:73:79:51:3c:5a:6c:ba:a8:76:aa:6f:51:64:
                    3a:a4:76:37:0e:34:5e:32:3c:de:5e:8b:44:3e:c9:
                    c8:a5:dc:c2:50:ee:fc:64:ec:ee:da:df:42:8d:c0:
                    fa:97:1c:ed:d8:d6:2d:59:9e:70:46:01:30:6b:6f:
                    58:43:d5:46:01:83:35:a9:ff:38:fb:c2:ba:73:4f:
                    06:c1:cd:66:57:ec:e9:9d:f1:af:f0:78:0e:4c:91:
                    9d:95:b2:cf:5d:e2:33:fd:eb:57:be:bc:31:fb:76:
                    f7:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:88:FB:B4:1F:57:DE:F8:05:E2:9A:9D:23:00:9C:B1:26:55:7F:2F
            X509v3 Authority Key Identifier:
                keyid:6A:89:93:62:76:AD:2D:18:71:07:DF:B7:40:07:93:00:3A:C1:49:A7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aomTYnatLRhxB9-3QAeTADrBSac.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/2ab62d-070c-4b06-b38a-73a7a4736038/1/aomTYnatLRhxB9-3QAeTADrBSac.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:d9:90:92:a3:f4:28:85:e2:f2:1a:ff:4a:36:3a:ab:7d:78:
         06:db:9a:3a:b0:c5:a3:44:50:65:50:ee:97:3d:fe:c6:21:99:
         aa:8f:77:f7:6c:a7:c1:80:3a:50:8c:ca:80:67:17:0f:59:29:
         7e:10:cc:66:0b:b0:68:17:0c:3b:72:97:3a:03:bf:c6:1a:e8:
         cc:a0:68:c1:5e:de:d8:36:96:39:8d:fc:49:a6:05:41:de:a2:
         59:d8:5f:99:fd:bf:1d:8f:4f:11:d5:c8:69:be:82:a1:0d:65:
         4a:57:a5:ff:3a:2f:b4:cc:5d:c9:89:4f:09:8d:85:08:0e:2b:
         58:88:3b:1c:52:61:00:18:c8:97:33:bc:bf:51:b8:9a:04:46:
         73:e8:8e:99:7d:35:a9:6a:8b:63:89:0e:ee:ec:44:49:37:06:
         89:91:cd:c0:f4:20:57:8d:96:1e:18:26:4e:6f:1b:94:f2:c1:
         f1:4f:79:c9:cb:cb:1b:13:a3:05:a5:e5:ba:88:62:60:a4:a5:
         4e:8b:5a:f1:db:85:21:53:f5:1f:97:d2:05:96:00:44:25:de:
         a2:02:ff:84:a7:ac:93:b0:4d:9b:42:9f:8c:27:1f:3c:91:91:
         19:b1:75:c6:a7:ee:78:06:a8:57:45:63:dd:e4:79:bd:0a:b0:
         fa:86:30:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----