Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft
File:                     k4KIfhkEky8RhsLDHGqS_17GQ4c.mft (raw, json)
Hash identifier:          IPVmEgI5c52w+wEcXlSwWNrIWe35TYYNi5UbnXLQHVk=
Subject key identifier:   81:B8:74:D3:8A:79:D4:21:38:85:1A:58:4D:9B:16:5D:2C:AC:05:32
Authority key identifier: 93:82:88:7E:19:04:93:2F:11:86:C2:C3:1C:6A:92:FF:5E:C6:43:87
Certificate issuer:       /CN=9382887e1904932f1186c2c31c6a92ff5ec64387
Certificate serial:       019D2704712FB6916DFE34302C67D7B7F6DD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/k4KIfhkEky8RhsLDHGqS_17GQ4c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft
Manifest number:          05B5
Signing time:             Wed 25 Mar 2026 22:01:35 +0000
Manifest this update:     Wed 25 Mar 2026 22:01:35 +0000
Manifest next update:     Thu 26 Mar 2026 22:01:35 +0000
Files and hashes:         1: k4KIfhkEky8RhsLDHGqS_17GQ4c.crl (hash: HSBqgx0FRIP9bXWC1cJmCM9pOGFJkSqR7aI6+wS0ODg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/k4KIfhkEky8RhsLDHGqS_17GQ4c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 26 Mar 2026 15:17:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:04:71:2f:b6:91:6d:fe:34:30:2c:67:d7:b7:f6:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9382887e1904932f1186c2c31c6a92ff5ec64387
        Validity
            Not Before: Mar 25 22:01:35 2026 GMT
            Not After : Mar 26 22:01:35 2026 GMT
        Subject: CN=81b874d38a79d42138851a584d9b165d2cac0532
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:55:cc:2e:98:2e:1f:7a:87:38:15:1c:45:16:
                    83:b4:6c:03:7a:63:4c:07:97:81:29:7e:b0:2a:62:
                    a8:1c:a4:a3:64:d8:41:2b:37:b5:2c:43:e0:07:f2:
                    73:a3:c8:85:50:45:62:60:36:cc:dc:cc:77:79:98:
                    77:fa:5d:95:a1:32:dd:3b:dd:52:ca:67:a7:a1:05:
                    c9:30:52:52:09:46:40:d5:32:98:4f:60:8f:12:f0:
                    4b:10:66:98:53:eb:f3:6b:b2:13:07:5d:7e:00:3b:
                    e2:e4:60:bc:be:b3:98:09:03:d3:26:cd:b4:0e:8c:
                    4f:9f:c9:dc:94:3e:4e:df:94:bb:f5:39:58:40:9b:
                    a4:bf:d9:f8:a3:4a:a2:2a:18:f2:43:8a:8c:68:2f:
                    10:33:a8:91:3d:ec:8a:b9:2b:76:4f:f2:e2:21:18:
                    d8:38:29:7c:4a:0e:e0:a0:24:76:17:71:f6:26:dc:
                    a1:cc:b3:82:ba:bc:e0:20:b2:1d:96:c9:bd:62:82:
                    a9:7f:1d:e3:3a:65:84:70:8c:92:20:5a:a3:cd:4a:
                    ef:13:7d:cf:be:95:ee:84:9e:46:14:0f:d7:14:7c:
                    ae:01:ef:62:2f:7c:02:c3:a5:f3:4d:3e:bf:44:2e:
                    7f:a0:58:85:66:40:6a:be:53:f8:0a:3e:33:5b:a6:
                    e4:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:B8:74:D3:8A:79:D4:21:38:85:1A:58:4D:9B:16:5D:2C:AC:05:32
            X509v3 Authority Key Identifier:
                keyid:93:82:88:7E:19:04:93:2F:11:86:C2:C3:1C:6A:92:FF:5E:C6:43:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k4KIfhkEky8RhsLDHGqS_17GQ4c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:da:4d:62:e9:f8:d5:c2:3b:6c:86:47:c6:5b:59:48:65:0b:
         72:a4:46:c4:71:08:b5:12:bb:de:b2:99:80:a5:04:c2:a2:e6:
         0b:41:4f:31:3e:73:1a:c9:66:3a:94:b7:0f:31:fb:75:3d:8b:
         94:6e:30:48:91:f1:25:cb:49:e4:0f:39:a2:1d:6a:00:5f:b1:
         44:0b:d0:7d:3e:11:f6:15:80:5c:0b:3b:7e:9c:16:09:eb:b6:
         27:4f:54:c7:ec:3a:ed:6d:8c:03:d8:d1:89:e1:4f:e1:6c:7c:
         c0:6c:6f:59:83:11:01:07:c0:c0:d2:e3:a2:28:9c:5e:34:1a:
         00:14:a9:db:27:50:1f:a6:2c:61:74:14:da:e2:04:20:7f:39:
         38:32:28:c6:a4:6c:14:21:6f:3c:8d:84:eb:24:e0:2c:21:6b:
         ba:0c:ef:c2:42:5a:01:a6:9a:06:39:4b:0c:cb:4c:4a:e5:95:
         83:45:a6:b0:04:9c:01:93:37:92:b6:c3:a7:80:71:24:c7:21:
         c3:e3:37:1d:dd:bb:4f:71:c0:fb:37:ab:89:52:e7:b6:27:a8:
         bd:23:d8:ea:a9:64:e8:3f:81:cf:97:04:27:3c:b4:40:8b:15:
         29:e0:a4:68:1d:45:28:47:f3:ad:b4:b9:92:ff:c5:b0:1f:0a:
         7c:39:2c:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----