Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.mft
File:                     uo1nmL3QsriAXUOzRV92c5uUbx0.mft (raw, json)
Hash identifier:          6T+ySfIr3IKrF6sDW0nMM9K2HJlkBh12TxkOZlH8NnI=
Subject key identifier:   7F:BA:1F:37:A4:1F:57:E5:0B:2C:92:DB:83:BD:28:C8:40:E4:79:64
Authority key identifier: BA:8D:67:98:BD:D0:B2:B8:80:5D:43:B3:45:5F:76:73:9B:94:6F:1D
Certificate issuer:       /CN=ba8d6798bdd0b2b8805d43b3455f76739b946f1d
Certificate serial:       019D270469509BBCBB466B3B31EE5E266CE1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uo1nmL3QsriAXUOzRV92c5uUbx0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.mft
Manifest number:          1815
Signing time:             Wed 25 Mar 2026 22:01:33 +0000
Manifest this update:     Wed 25 Mar 2026 22:01:33 +0000
Manifest next update:     Thu 26 Mar 2026 22:01:33 +0000
Files and hashes:         1: uo1nmL3QsriAXUOzRV92c5uUbx0.crl (hash: Z0yISOYP9gG3Llg4sdrawN0ZcJbUddIhkvzyEUmI/W8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uo1nmL3QsriAXUOzRV92c5uUbx0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 26 Mar 2026 22:01:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:04:69:50:9b:bc:bb:46:6b:3b:31:ee:5e:26:6c:e1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ba8d6798bdd0b2b8805d43b3455f76739b946f1d
        Validity
            Not Before: Mar 25 22:01:33 2026 GMT
            Not After : Mar 26 22:01:33 2026 GMT
        Subject: CN=7fba1f37a41f57e50b2c92db83bd28c840e47964
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:da:27:18:24:d6:a8:0b:a3:16:75:4c:cc:b3:
                    fd:55:2e:f6:a1:f2:81:c7:8b:85:e7:f1:d8:d9:60:
                    8b:a5:27:1a:05:54:ce:ff:f5:76:c8:ae:94:cb:f3:
                    7e:9c:51:88:62:b7:8d:49:41:f6:53:41:56:99:7c:
                    d5:a3:36:22:d8:73:b2:85:90:ef:9a:ab:69:ba:4c:
                    0e:ef:4e:a5:b5:d0:a0:b9:8b:98:69:1a:6f:11:05:
                    b4:ae:aa:e4:c6:b3:b3:2e:0e:7c:b3:b2:05:d5:eb:
                    7d:00:fc:29:b9:ce:a5:9e:e4:64:3f:08:c9:ce:b9:
                    16:05:82:cf:ff:ff:6f:fa:84:ca:fe:2e:1f:b0:b0:
                    18:07:a1:cb:fb:d4:04:46:5b:e7:1c:d5:50:f5:79:
                    4f:d1:a9:d3:06:29:4f:2e:de:94:9c:13:7d:e2:f2:
                    7d:a0:a3:da:f9:09:b3:10:65:ef:e5:aa:37:cc:30:
                    59:99:47:e3:a5:59:ff:60:5e:f6:36:f3:cb:da:01:
                    c9:61:96:a8:cc:fe:b1:61:38:99:44:8b:60:a5:80:
                    c6:2b:d1:21:7f:d7:27:44:7a:eb:e2:62:f7:ad:83:
                    4a:0f:7a:d2:3c:a4:28:52:f0:26:a6:40:ac:e2:e6:
                    ac:bc:03:f9:99:66:f1:9e:03:e9:e5:b9:c0:92:e5:
                    f5:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7F:BA:1F:37:A4:1F:57:E5:0B:2C:92:DB:83:BD:28:C8:40:E4:79:64
            X509v3 Authority Key Identifier:
                keyid:BA:8D:67:98:BD:D0:B2:B8:80:5D:43:B3:45:5F:76:73:9B:94:6F:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uo1nmL3QsriAXUOzRV92c5uUbx0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/68b57b-d18d-4785-97b0-ec56c0b081ae/1/uo1nmL3QsriAXUOzRV92c5uUbx0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:bb:e2:ba:bf:5c:90:a8:09:2e:0f:9d:86:6c:07:fb:59:ea:
         ef:d1:f4:5f:db:9b:1a:6f:ff:a9:24:3e:94:0d:0e:fb:a1:c4:
         94:fd:37:84:87:63:80:ee:83:dd:23:b4:6c:08:27:4e:63:33:
         62:43:5f:5a:a1:58:0c:0b:c1:34:ea:d8:fe:5e:35:67:a4:a2:
         04:cb:c5:24:e0:33:6c:35:bd:76:db:bd:35:47:94:a4:c0:56:
         a8:94:7c:bc:e8:42:c6:ea:33:ca:7e:0f:88:ce:60:23:f0:18:
         77:59:64:00:9b:52:34:3a:29:3b:7b:76:17:8e:a4:44:fd:4c:
         d2:af:3d:a2:07:56:4f:19:64:7c:d1:ef:8f:ca:2e:33:0b:a3:
         ae:b0:4e:72:99:b6:77:75:da:c9:86:b5:12:71:09:04:dc:82:
         2f:26:87:1d:08:3f:69:47:5d:af:29:1c:b8:a4:83:14:48:45:
         64:e5:0e:ab:4e:e8:05:c4:b6:bc:11:31:3a:a5:77:28:53:41:
         db:1f:18:9d:8b:26:be:c2:2e:54:36:66:b0:57:01:5c:95:09:
         c7:82:5d:31:e5:ea:50:c5:f8:26:2b:db:94:0e:3a:93:a2:de:
         f4:fc:ce:9f:cf:6a:d3:c6:67:b3:f9:b6:75:87:7d:75:59:7c:
         4f:57:66:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----