Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
File:                     d_M68l-VqylxEYjp_-pQzMshHXY.mft (raw, json)
Hash identifier:          6sSLL964hUJXiNcaBAa54Oi4BNhWlgpH+c40ejYFOJA=
Subject key identifier:   B1:05:4E:97:7B:20:79:ED:1A:4B:F6:24:2F:85:24:D4:BD:FF:77:A7
Authority key identifier: 77:F3:3A:F2:5F:95:AB:29:71:11:88:E9:FF:EA:50:CC:CB:21:1D:76
Certificate issuer:       /CN=77f33af25f95ab29711188e9ffea50cccb211d76
Certificate serial:       019D265FCE637FEE21BCD67D9315CB117262
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
Manifest number:          0FFB
Signing time:             Wed 25 Mar 2026 19:01:46 +0000
Manifest this update:     Wed 25 Mar 2026 19:01:46 +0000
Manifest next update:     Thu 26 Mar 2026 19:01:46 +0000
Files and hashes:         1: d_M68l-VqylxEYjp_-pQzMshHXY.crl (hash: zchRyvCIHCIFv+yEqkdpoQdFCxPB4lOqtxGnyG7iiOA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 26 Mar 2026 15:17:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:26:5f:ce:63:7f:ee:21:bc:d6:7d:93:15:cb:11:72:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=77f33af25f95ab29711188e9ffea50cccb211d76
        Validity
            Not Before: Mar 25 19:01:46 2026 GMT
            Not After : Mar 26 19:01:46 2026 GMT
        Subject: CN=b1054e977b2079ed1a4bf6242f8524d4bdff77a7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:19:bb:48:5e:f1:62:4a:89:c8:1f:d7:b0:79:
                    4e:d6:dd:e8:17:f1:22:9e:4a:92:6c:08:2c:ff:aa:
                    94:66:16:5c:2d:2d:08:09:b0:47:b7:91:ab:5d:7f:
                    b9:f0:be:81:25:3d:36:ae:65:7c:e1:94:b6:a9:07:
                    34:a7:e6:36:1b:11:7b:16:08:bd:c9:05:10:7e:51:
                    02:de:81:bc:9f:93:89:0c:b9:60:3d:4a:61:07:9b:
                    0f:87:c6:39:be:c2:e0:1f:1e:50:3f:c3:4f:a6:e5:
                    c4:16:e0:ff:d2:bd:be:ab:09:50:b8:1a:e8:a9:92:
                    06:fb:4f:91:c0:9a:c6:3f:4b:b8:e2:02:e7:92:1c:
                    29:f6:86:6e:ca:30:e8:25:8b:5f:25:8e:01:94:9f:
                    4b:c4:ac:00:9f:a5:5b:eb:10:a4:19:d6:cc:8c:e8:
                    b6:88:cc:56:87:ff:e2:61:21:cf:49:a8:87:5e:a4:
                    86:81:b0:0d:eb:ee:22:af:b8:6c:53:dc:be:55:c0:
                    c3:16:15:9b:1e:b8:5f:42:85:f3:94:ca:e0:01:e7:
                    6f:1a:63:58:95:0d:7a:da:9b:0d:0d:ee:45:a9:de:
                    69:58:6e:35:8a:40:df:d4:c0:d0:90:97:04:29:f4:
                    8b:10:28:45:5d:b5:b2:21:8f:b9:31:5d:c6:f8:c2:
                    f4:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:05:4E:97:7B:20:79:ED:1A:4B:F6:24:2F:85:24:D4:BD:FF:77:A7
            X509v3 Authority Key Identifier:
                keyid:77:F3:3A:F2:5F:95:AB:29:71:11:88:E9:FF:EA:50:CC:CB:21:1D:76

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_M68l-VqylxEYjp_-pQzMshHXY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b6462f-cc72-4f69-96f4-8bca0561b72d/1/d_M68l-VqylxEYjp_-pQzMshHXY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:95:51:78:fb:f9:fe:76:90:ca:97:6b:87:cc:ba:d8:0b:cd:
         82:67:54:96:ec:b3:d9:2e:a8:54:0d:cb:2b:78:ad:01:6d:59:
         26:98:41:c7:e0:76:9d:5e:30:a8:ad:a8:3b:59:65:c5:59:71:
         ac:21:8e:1e:b4:a2:79:e6:34:4d:f3:e9:92:84:fb:cd:67:8a:
         69:4d:c5:8e:ea:26:12:d9:a1:06:cb:b4:28:ba:61:14:31:94:
         de:f9:65:f9:8b:5a:0d:ec:18:8e:08:cf:3f:71:d7:d9:07:b9:
         bb:f1:61:ac:ef:62:78:32:aa:6e:97:d6:74:6d:c5:dc:7e:0d:
         ae:a5:62:59:93:fe:e1:a2:8a:e9:b6:f2:eb:fb:94:23:a4:8f:
         7d:00:f4:c2:a7:b8:6a:23:21:b9:e3:88:96:bd:89:56:8d:24:
         a8:a9:3e:13:b1:03:d4:69:74:8b:69:e4:29:bb:65:2d:02:37:
         d1:dc:f9:fa:10:59:10:53:bb:9f:1b:87:3f:09:a9:92:71:04:
         09:26:c5:a3:51:a4:d4:ff:c1:d8:80:11:89:ad:d2:0f:52:79:
         26:2a:14:b1:20:c2:e0:09:06:37:80:3e:ea:00:5c:49:a6:ff:
         ef:34:00:bc:4c:57:a0:70:38:c0:1d:ee:8d:35:6b:b7:b4:89:
         be:f5:ce:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----