Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.mft
File:                     9l95H50M9str44nJRWjId0BeUUQ.mft (raw, json)
Hash identifier:          6qcjCtReADn6exeSV7LlNRXki00GOexeoyhWUVhyYsI=
Subject key identifier:   EB:54:8B:34:51:7F:55:DD:65:65:D7:29:CE:CF:42:DD:4E:56:50:6F
Authority key identifier: F6:5F:79:1F:9D:0C:F6:CB:6B:E3:89:C9:45:68:C8:77:40:5E:51:44
Certificate issuer:       /CN=f65f791f9d0cf6cb6be389c94568c877405e5144
Certificate serial:       019D2772C3EBD4EE73592843B7B65F988475
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9l95H50M9str44nJRWjId0BeUUQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.mft
Manifest number:          07F0
Signing time:             Thu 26 Mar 2026 00:02:05 +0000
Manifest this update:     Thu 26 Mar 2026 00:02:05 +0000
Manifest next update:     Fri 27 Mar 2026 00:02:05 +0000
Files and hashes:         1: 9l95H50M9str44nJRWjId0BeUUQ.crl (hash: LS2LKm3l8t3LkUDjYw85UBnwlfTmJFMTGQixhdkLrBY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9l95H50M9str44nJRWjId0BeUUQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 27 Mar 2026 00:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:27:72:c3:eb:d4:ee:73:59:28:43:b7:b6:5f:98:84:75
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f65f791f9d0cf6cb6be389c94568c877405e5144
        Validity
            Not Before: Mar 26 00:02:05 2026 GMT
            Not After : Mar 27 00:02:05 2026 GMT
        Subject: CN=eb548b34517f55dd6565d729cecf42dd4e56506f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:cd:eb:3e:b0:a8:55:ec:dc:83:9d:ff:31:76:
                    f2:1e:8f:3d:54:4f:ef:39:3e:07:29:fc:d6:61:65:
                    f4:a0:cb:d1:a6:a8:10:76:f5:4a:57:c5:96:63:7d:
                    c2:65:8b:e1:13:16:a7:b4:b0:eb:84:b5:48:ae:f8:
                    27:df:21:4a:24:ce:41:7a:27:37:d3:e7:c4:fb:63:
                    ad:f5:69:8c:cf:9e:3f:43:67:ff:c6:c3:a2:c7:df:
                    dd:86:9b:5a:6d:12:17:96:fb:3f:94:66:66:ff:6e:
                    a8:46:72:62:6f:99:e6:53:a6:64:71:7d:da:23:cf:
                    fe:04:1d:f6:29:8e:6c:dc:ae:60:9c:78:12:13:7a:
                    e6:48:a0:a8:4f:b4:d5:a8:ce:4e:85:e6:98:c1:7c:
                    ea:f1:38:30:63:34:f3:b8:1f:74:0f:be:72:de:aa:
                    46:69:d1:37:6f:21:4d:89:25:41:f2:29:67:0a:35:
                    2d:5d:cb:ef:9a:1a:52:19:68:b8:96:54:84:a4:ac:
                    bb:83:56:6f:69:61:5f:ec:85:40:9a:c2:ea:67:fd:
                    74:ac:10:8b:14:c0:56:ab:3c:1f:e7:c9:19:6a:38:
                    44:9a:d5:51:47:5d:7c:0b:54:ee:87:7c:45:f8:d0:
                    67:20:79:e0:37:d7:65:c7:38:02:8a:0e:7c:a5:59:
                    97:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EB:54:8B:34:51:7F:55:DD:65:65:D7:29:CE:CF:42:DD:4E:56:50:6F
            X509v3 Authority Key Identifier:
                keyid:F6:5F:79:1F:9D:0C:F6:CB:6B:E3:89:C9:45:68:C8:77:40:5E:51:44

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9l95H50M9str44nJRWjId0BeUUQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/173894-20d5-4d04-be70-cd03741d26b5/1/9l95H50M9str44nJRWjId0BeUUQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:96:28:25:84:f2:c7:5f:5f:ff:8f:50:eb:62:92:82:f9:74:
         aa:82:9c:90:98:68:8a:fa:e8:ff:c6:35:45:55:b2:09:11:58:
         f5:7a:f8:64:4f:d4:95:c1:31:8f:13:d1:9e:a2:59:fd:57:c9:
         0f:e9:b0:b7:cc:db:12:b6:0b:a8:02:8c:64:cc:79:33:b8:13:
         f7:52:32:57:61:97:1d:8e:17:9d:90:d7:b8:54:d6:bb:09:b6:
         8e:08:ac:4a:09:9e:3c:5a:e3:ca:63:04:7a:f2:3c:b4:eb:7a:
         09:6d:d2:a7:4b:2a:ce:00:2c:a7:01:9c:60:c5:ea:39:aa:b3:
         81:d3:85:a2:8c:fb:d1:8f:0d:39:8f:e1:22:dd:97:c6:31:d6:
         3b:27:4d:6c:34:06:cc:51:8a:76:df:d1:90:8c:dc:44:4c:a8:
         23:16:1a:fd:a9:dc:b2:e5:96:5b:6a:ff:7b:68:cb:6f:bc:be:
         90:19:0f:6c:7d:08:c5:cd:74:96:7c:e1:2d:25:1f:81:ff:e5:
         70:6c:39:dc:bb:d4:e6:7d:a4:60:36:3b:27:80:bf:a1:5a:fa:
         f2:a5:26:77:47:1a:df:21:bf:a1:fc:8f:20:64:47:9d:35:3d:
         f3:e5:62:04:1b:c9:b8:89:b6:81:a6:1d:6b:f8:6f:81:e1:fc:
         8e:91:d2:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----