Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
File:                     hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft (raw, json)
Hash identifier:          rkn064//yTkNF05kzyVJbXW1k79gA7H8xhKv6YFzTtw=
Subject key identifier:   E7:6A:76:E0:69:2D:83:D7:CE:79:07:5E:7C:9E:AC:89:8A:F4:C6:58
Authority key identifier: 85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04
Certificate issuer:       /CN=85512d19d37946cd4c236f890469635751f5d904
Certificate serial:       019D27727051EBAEBD661B3C20375A6AE2BD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
Manifest number:          1881
Signing time:             Thu 26 Mar 2026 00:01:44 +0000
Manifest this update:     Thu 26 Mar 2026 00:01:44 +0000
Manifest next update:     Fri 27 Mar 2026 00:01:44 +0000
Files and hashes:         1: hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl (hash: WcJwhMS9whM12JBnEi3H8bne3dQJhEsfxHgqBj5m8uw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 00:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:72:70:51:eb:ae:bd:66:1b:3c:20:37:5a:6a:e2:bd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85512d19d37946cd4c236f890469635751f5d904
        Validity
            Not Before: Mar 26 00:01:44 2026 GMT
            Not After : Mar 27 00:01:44 2026 GMT
        Subject: CN=e76a76e0692d83d7ce79075e7c9eac898af4c658
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:30:a7:a4:17:48:07:86:7e:0a:0a:be:de:e9:
                    10:07:73:44:0c:08:97:de:41:59:55:6e:a4:78:d3:
                    75:6a:4e:6c:e8:72:3f:5d:8a:7d:b3:d0:87:6b:78:
                    d3:ab:f6:17:63:d2:6b:ff:24:24:5b:bf:6e:f1:8d:
                    e8:a5:bb:5a:16:af:d2:62:5a:7f:ef:26:8f:53:75:
                    95:ec:e8:10:a5:f7:35:99:02:3c:c3:ef:d0:33:a5:
                    5c:c6:ca:27:0b:1b:37:2a:e1:3e:c7:6a:0b:a5:89:
                    d1:33:66:cf:99:16:62:0d:fb:2a:aa:d4:79:d8:82:
                    6b:c4:b9:61:00:62:c6:50:a1:ff:3b:e8:94:55:eb:
                    01:93:ab:25:22:c9:e8:16:03:c4:69:f0:5b:9e:60:
                    94:49:e6:3d:fe:b4:ed:34:ad:9e:a2:80:10:86:3e:
                    88:42:ee:76:ea:dd:4e:f5:8d:6a:c7:e8:b0:6a:27:
                    1a:4b:5f:b7:0a:d7:8e:11:03:94:49:e5:03:38:81:
                    dd:68:eb:65:98:aa:55:06:59:dc:42:e8:f2:ab:3f:
                    bb:38:ee:6a:9c:a6:8c:48:02:27:ec:1f:16:2f:0f:
                    3a:32:68:11:9f:4f:37:5f:57:9b:c7:9a:fe:31:ff:
                    55:4c:24:0b:d8:b0:fd:36:d9:89:32:df:1c:c6:26:
                    f4:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:6A:76:E0:69:2D:83:D7:CE:79:07:5E:7C:9E:AC:89:8A:F4:C6:58
            X509v3 Authority Key Identifier:
                keyid:85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:7b:ca:ef:0f:31:ff:88:99:e2:8d:fa:7d:1c:4d:c6:22:ea:
         d2:3b:a6:24:bd:c8:39:ad:02:78:f6:e1:52:2e:b3:25:6c:32:
         1b:d3:a0:34:f6:4b:e3:c1:05:01:17:b7:ab:90:8a:84:20:f1:
         de:43:7a:91:5c:90:df:92:55:5c:81:23:8c:0f:eb:06:10:6f:
         7b:1b:4e:ec:8b:ae:c0:d6:d8:b2:4c:97:d8:ed:ca:98:a1:ea:
         b0:73:71:7e:98:f9:71:ba:75:ad:a8:48:f0:b9:48:9d:76:e3:
         bf:73:78:fc:e4:79:34:da:7b:c3:61:33:45:20:0d:18:cf:d5:
         aa:12:e3:52:c2:58:c6:bb:fe:22:56:93:65:fe:96:52:e7:73:
         c2:fd:50:75:88:c1:72:e6:58:27:fe:57:96:43:93:c8:4a:83:
         d2:2b:64:78:ec:8c:73:83:bf:73:bd:c8:a1:ca:a0:d6:fc:49:
         ad:a5:9c:f0:4b:fa:fc:37:00:61:e5:36:87:f8:cc:eb:ac:02:
         a6:87:a7:99:56:5d:20:0f:d1:30:7c:25:8b:9d:7c:be:98:25:
         ee:63:cb:d5:e5:5c:13:b8:08:1c:39:06:7d:60:b4:74:56:3f:
         a6:53:a8:e7:ae:4c:af:c5:74:d2:e9:da:30:61:b0:37:29:f9:
         22:25:2a:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----