Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
File:                     oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft (raw, json)
Hash identifier:          oides0mtA6iWP9HwleSEXQrO6dx6RqBMZt3iS17CQvs=
Subject key identifier:   1E:F8:83:36:A8:A2:AC:27:05:84:51:11:CB:32:4A:8A:A8:C1:28:01
Authority key identifier: A1:35:7A:7D:0F:03:2E:9C:DD:4A:03:1D:52:D3:B4:04:7C:03:94:1A
Certificate issuer:       /CN=a1357a7d0f032e9cdd4a031d52d3b4047c03941a
Certificate serial:       019D284DB7D11B981A3DBB258F0A0BA1E810
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
Manifest number:          1884
Signing time:             Thu 26 Mar 2026 04:01:15 +0000
Manifest this update:     Thu 26 Mar 2026 04:01:15 +0000
Manifest next update:     Fri 27 Mar 2026 04:01:15 +0000
Files and hashes:         1: oTV6fQ8DLpzdSgMdUtO0BHwDlBo.crl (hash: awfTp9WyqmrbB407dQ0y2aYCt9IapQ85IRZx49NgtpQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 04:01:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:28:4d:b7:d1:1b:98:1a:3d:bb:25:8f:0a:0b:a1:e8:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1357a7d0f032e9cdd4a031d52d3b4047c03941a
        Validity
            Not Before: Mar 26 04:01:15 2026 GMT
            Not After : Mar 27 04:01:15 2026 GMT
        Subject: CN=1ef88336a8a2ac2705845111cb324a8aa8c12801
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:12:19:56:d2:04:3b:c1:42:3c:b1:9a:5e:bb:
                    2a:15:f7:0e:e9:89:5c:69:da:ab:61:f8:fa:d5:7a:
                    bd:13:1e:38:10:b3:cb:1e:b7:14:85:84:19:99:d2:
                    e3:28:b4:68:68:10:f6:e9:ef:c2:f3:6a:ec:78:05:
                    85:22:e5:88:1f:c4:5b:4c:5d:37:39:60:f2:45:76:
                    42:17:25:8d:48:06:c7:c0:f9:fe:02:45:63:0c:09:
                    97:33:00:b5:dd:86:c4:89:7e:7e:35:2c:41:6d:92:
                    2a:ef:1c:06:9d:ce:10:6c:47:08:12:d0:01:b9:bd:
                    9c:7a:20:4a:0d:b7:ab:f5:50:a7:dd:12:11:cd:da:
                    59:bd:21:22:75:52:f1:43:e1:98:47:22:9e:86:0d:
                    4f:39:75:f4:c4:62:53:f1:f0:a8:90:bf:e0:7a:c8:
                    1e:6b:18:61:03:a8:eb:91:7b:07:b9:f1:82:73:11:
                    a9:33:04:86:00:91:37:08:c8:da:c3:4b:46:94:b8:
                    04:c5:2c:64:d2:ab:9c:ac:c1:aa:21:ce:3d:f0:9f:
                    42:62:c3:4a:c2:65:8d:eb:b1:ad:34:47:11:15:76:
                    fe:f8:01:bb:06:10:b5:70:3b:dc:73:ab:11:b2:b5:
                    38:a8:dc:08:c0:5c:74:c2:db:8d:bf:a0:de:dc:be:
                    00:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:F8:83:36:A8:A2:AC:27:05:84:51:11:CB:32:4A:8A:A8:C1:28:01
            X509v3 Authority Key Identifier:
                keyid:A1:35:7A:7D:0F:03:2E:9C:DD:4A:03:1D:52:D3:B4:04:7C:03:94:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/e84060-a2d4-48a3-a096-a0b6ad671ee3/1/oTV6fQ8DLpzdSgMdUtO0BHwDlBo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:26:a0:07:64:97:6a:72:24:ab:c9:1e:d5:6d:95:f5:68:e8:
         ab:7f:72:2a:3b:7b:78:e0:9a:a4:f8:ca:21:ea:9f:b5:d8:6e:
         67:dd:19:b5:db:3a:d6:6d:5a:b5:a8:a2:c3:57:65:ad:2f:3b:
         0e:bd:ae:ce:9d:ba:02:26:8b:e5:3b:06:81:c4:93:ba:1b:85:
         a5:e6:98:ba:14:1e:ac:8b:b6:b3:87:85:22:9a:d6:85:96:6f:
         c3:f0:7e:0e:eb:5d:bc:fc:37:e0:fd:21:30:77:8f:c1:39:6b:
         69:25:ab:1e:53:bb:7a:05:87:b7:2e:3c:f7:60:79:59:fb:c3:
         49:8a:a2:20:18:bf:e3:8e:7f:30:81:eb:9f:08:dc:64:f7:ca:
         9c:a7:36:5b:db:e3:d1:27:a3:bb:13:e8:6e:19:e2:a9:6e:f0:
         a1:be:1e:da:00:08:68:96:dc:65:50:1b:c8:fb:44:06:a0:bf:
         61:73:d1:c5:09:43:78:a5:e1:05:22:a7:a8:35:d7:66:35:32:
         22:50:88:5f:ad:e7:9c:1f:4e:27:fc:2e:87:9e:dc:8b:36:f2:
         00:98:ae:85:34:9a:48:78:5f:50:64:84:e3:d0:ec:41:8f:50:
         e5:10:50:d4:1b:0b:96:2c:92:e6:71:74:f4:80:a4:7d:4b:fb:
         d1:b3:f4:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----