Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
File:                     tRm7YH6Ot267nMsgIsxkbDzOC2A.mft (raw, json)
Hash identifier:          UH5SyOm8Dux01WzUu5JdoOXsWaKrlivoPYlon61aphg=
Subject key identifier:   55:D7:D0:A9:71:3C:88:21:5D:20:2C:09:85:6B:3D:40:89:02:16:6F
Authority key identifier: B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60
Certificate issuer:       /CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60
Certificate serial:       019D270458A2A8855B6253651EF50740BAEF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
Manifest number:          1882
Signing time:             Wed 25 Mar 2026 22:01:29 +0000
Manifest this update:     Wed 25 Mar 2026 22:01:29 +0000
Manifest next update:     Thu 26 Mar 2026 22:01:29 +0000
Files and hashes:         1: tRm7YH6Ot267nMsgIsxkbDzOC2A.crl (hash: GITtJ0F4qeZVcQvu7btowaEL2pJh9cMO+lHSB0aPzrU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 26 Mar 2026 22:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:04:58:a2:a8:85:5b:62:53:65:1e:f5:07:40:ba:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60
        Validity
            Not Before: Mar 25 22:01:29 2026 GMT
            Not After : Mar 26 22:01:29 2026 GMT
        Subject: CN=55d7d0a9713c88215d202c09856b3d408902166f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:79:01:db:d5:56:d7:bb:64:77:8a:e0:3b:43:
                    78:58:1d:a7:16:78:b4:b0:96:99:56:f0:3e:2f:b3:
                    06:c4:80:bd:6e:b2:f3:6b:c3:c1:cb:ef:26:a3:f5:
                    33:24:2d:17:98:56:e8:07:21:26:91:98:3f:23:57:
                    07:ec:56:1d:e0:a4:81:a6:71:55:63:1a:c3:1c:da:
                    5e:13:47:af:fd:da:33:54:d6:26:1f:29:87:a0:06:
                    04:8d:33:22:d4:33:ce:44:07:94:a6:d7:7f:7b:5c:
                    7e:7b:53:5f:73:f8:cf:95:c6:4c:30:55:ee:69:52:
                    ba:55:0d:95:36:9e:e7:2c:40:a5:3e:8d:4f:53:01:
                    77:09:48:1f:a5:76:69:de:fb:53:f3:7e:cc:60:41:
                    98:e1:3d:6e:23:02:bf:a1:79:31:56:e6:7f:9a:7c:
                    3f:bc:ed:3e:0c:86:bb:71:3e:fd:46:a0:c7:22:51:
                    ad:4a:fe:2b:25:56:71:fb:53:b5:49:c0:31:41:d3:
                    0d:2e:5a:b0:f5:61:c9:01:84:d2:75:38:03:48:10:
                    08:6a:ac:dd:12:94:d8:22:b8:df:0f:81:fd:3f:42:
                    5c:7c:2e:af:58:93:25:4b:8f:1f:5c:c8:4a:95:ea:
                    90:67:24:d3:5e:84:9b:4c:c4:de:fe:41:f8:ab:25:
                    07:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:D7:D0:A9:71:3C:88:21:5D:20:2C:09:85:6B:3D:40:89:02:16:6F
            X509v3 Authority Key Identifier:
                keyid:B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:2e:c4:a0:eb:a2:67:56:33:60:0d:93:54:fa:91:56:50:5a:
         d4:f4:57:ca:f7:1e:fc:fe:1c:24:95:65:0d:cb:2b:d2:0f:a4:
         c6:e4:f3:3b:8e:cb:84:64:28:91:79:eb:3b:0c:e9:1b:a9:8f:
         d2:46:c3:9e:93:1a:ae:31:e8:a8:7f:c1:ea:8e:c2:7f:11:80:
         4e:c1:0c:7a:2c:ba:15:a9:2f:57:de:47:6a:ce:44:8c:32:fe:
         75:13:52:9d:ef:a5:a1:81:e9:8d:f9:b0:b4:a6:79:15:e8:53:
         27:74:dd:79:37:4b:36:f5:58:0d:9e:28:96:69:39:64:b4:76:
         c0:b6:f7:2d:f0:04:00:01:b0:09:92:bf:43:8f:ad:09:ca:4e:
         84:79:bf:7f:b6:80:d7:83:73:3b:1c:78:ce:95:d4:af:e8:38:
         c3:91:eb:12:a0:52:5e:a9:07:68:cd:8d:48:eb:25:3b:20:4b:
         6e:42:65:8b:e3:a1:98:e5:f2:db:b5:46:fb:30:ae:3c:2d:5a:
         bf:30:9e:6b:c0:8f:9c:32:fa:35:0e:54:5f:b9:f3:50:07:77:
         15:30:c2:92:7a:81:0a:9b:c2:2a:1c:d6:80:b9:b5:6d:26:77:
         c2:ce:34:e4:54:e7:fd:44:94:88:b9:36:81:93:ae:48:20:d3:
         71:c4:cb:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----