Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
File:                     2Hwy4kled0lvwgKzAxZLpAjl0SI.mft (raw, json)
Hash identifier:          ADo21h4wKAiEGso8L2qOUnrIJrw4rNY5RuxfSrOgIcg=
Subject key identifier:   B0:1B:2A:4F:92:2C:6B:4C:54:00:BA:64:6D:E0:D0:2D:D8:F8:9A:E6
Authority key identifier: D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22
Certificate issuer:       /CN=d87c32e2495e77496fc202b303164ba408e5d122
Certificate serial:       019E1C46956D1512D58C81C8AF7F9833BC7A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
Manifest number:          1800
Signing time:             Tue 12 May 2026 13:00:48 +0000
Manifest this update:     Tue 12 May 2026 13:00:48 +0000
Manifest next update:     Wed 13 May 2026 13:00:48 +0000
Files and hashes:         1: 2Hwy4kled0lvwgKzAxZLpAjl0SI.crl (hash: BQITM+mVcDpMmmwbqLQTx4/rWwOSzqwYo2nY2q9Ii8o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 13:00:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1c:46:95:6d:15:12:d5:8c:81:c8:af:7f:98:33:bc:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d87c32e2495e77496fc202b303164ba408e5d122
        Validity
            Not Before: May 12 13:00:48 2026 GMT
            Not After : May 13 13:00:48 2026 GMT
        Subject: CN=b01b2a4f922c6b4c5400ba646de0d02dd8f89ae6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:00:75:25:9e:a1:75:c9:5d:95:d3:c8:99:22:
                    28:94:20:1b:f0:27:f3:89:73:de:f0:3b:d5:46:f9:
                    a1:f1:b7:0d:5a:fd:a6:62:b9:f1:b1:db:f5:53:0d:
                    5b:b4:48:f1:7c:9b:dd:31:ed:28:b9:75:dc:b4:0f:
                    98:f7:ce:71:8a:6b:5f:4b:a4:2c:45:55:94:02:14:
                    0d:66:2a:ca:fa:6f:3b:e4:fc:49:ed:27:8c:06:8f:
                    74:b7:12:76:64:8a:d1:ca:d0:48:6d:e4:5f:72:d2:
                    55:ef:dc:60:5a:ec:f0:bb:83:13:9f:d3:16:f9:d0:
                    8f:e0:5d:72:62:2a:54:2d:81:95:2d:f0:2d:3a:ba:
                    f2:46:a6:dd:58:10:47:63:79:01:79:26:6e:ff:f5:
                    ba:e5:05:15:a2:04:53:2d:77:09:75:71:4c:dd:47:
                    b2:02:db:88:aa:43:18:5d:b5:7a:ef:87:58:39:5b:
                    fd:9c:4d:e1:7a:a3:2b:fa:a0:fc:31:51:e7:2a:d5:
                    28:63:c7:65:3d:36:0a:97:92:b5:7f:ef:8f:1b:23:
                    25:de:40:b8:d9:8b:e9:c1:d1:29:5b:75:99:fa:f9:
                    18:32:74:d5:59:3e:4f:10:2b:d5:81:d6:f6:19:c2:
                    48:74:00:d1:a9:db:bd:32:f9:88:21:06:ad:34:c4:
                    c2:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:1B:2A:4F:92:2C:6B:4C:54:00:BA:64:6D:E0:D0:2D:D8:F8:9A:E6
            X509v3 Authority Key Identifier:
                keyid:D8:7C:32:E2:49:5E:77:49:6F:C2:02:B3:03:16:4B:A4:08:E5:D1:22

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Hwy4kled0lvwgKzAxZLpAjl0SI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/1e191e-113c-4433-aef0-7243b984a615/1/2Hwy4kled0lvwgKzAxZLpAjl0SI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:48:29:fa:d2:44:24:d0:71:59:64:08:17:4a:30:60:4e:80:
         5b:f1:79:3a:f2:2d:f5:1a:02:b4:99:b7:c9:1a:1d:01:2f:4c:
         7a:a7:55:9f:0b:8e:64:25:8b:ca:cb:10:3c:c2:62:1b:86:bf:
         f9:14:c8:e6:b5:ff:45:8d:26:d2:86:a2:9d:36:d3:46:b9:0b:
         8e:cd:94:3b:bd:3f:6a:d3:16:f7:26:47:9e:ff:7d:13:15:b8:
         08:73:67:7c:93:d9:9d:85:11:66:ea:13:e9:2f:1b:ca:b0:d8:
         c8:5b:cf:44:15:5e:c4:7a:1d:5f:19:16:18:c3:1f:12:f4:69:
         4d:dd:19:9e:4a:cc:bd:69:fb:4a:58:15:72:1c:cb:0c:b2:f1:
         6c:32:a7:3c:b3:a0:91:18:63:d4:71:7d:69:29:13:be:d2:00:
         97:92:6b:c9:7d:9c:63:98:ad:2e:a6:91:73:c0:f1:53:f5:5c:
         2d:a1:90:7e:1e:d2:a8:a5:cd:24:94:ec:6a:17:1b:dc:cd:ef:
         54:64:99:3d:77:1b:6b:fb:43:b0:b4:39:51:a9:fc:8e:49:4e:
         5e:69:a0:6f:00:7c:5b:04:25:2d:14:1f:90:3f:67:65:ac:3f:
         07:07:e0:78:f3:10:86:25:dc:f5:03:95:81:ff:e8:bd:d5:45:
         62:12:1d:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----