Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/741dc3-226d-47fb-8ff2-9715cd698e32/1/fQvKvsQ3ny07lBh0ENLm4DGnQXE.mft
File:                     fQvKvsQ3ny07lBh0ENLm4DGnQXE.mft (raw, json)
Hash identifier:          Q/OuJoNqtB1o5o+4O7xyIa14sBMJVJY0KcTRHHkBclI=
Subject key identifier:   2D:8B:E1:04:27:09:47:7B:FA:C6:F6:6E:9D:C3:20:DC:A3:18:4A:00
Authority key identifier: 7D:0B:CA:BE:C4:37:9F:2D:3B:94:18:74:10:D2:E6:E0:31:A7:41:71
Certificate issuer:       /CN=7d0bcabec4379f2d3b94187410d2e6e031a74171
Certificate serial:       019D99D0386593D5B62DE373E071D82163EC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fQvKvsQ3ny07lBh0ENLm4DGnQXE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/01/741dc3-226d-47fb-8ff2-9715cd698e32/1/fQvKvsQ3ny07lBh0ENLm4DGnQXE.mft
Manifest number:          1851
Signing time:             Fri 17 Apr 2026 05:00:53 +0000
Manifest this update:     Fri 17 Apr 2026 05:00:53 +0000
Manifest next update:     Sat 18 Apr 2026 05:00:53 +0000
Files and hashes:         1: fQvKvsQ3ny07lBh0ENLm4DGnQXE.crl (hash: 2yep3AMekYzruhXg6VO7qe1QMGJ/96UdsoL7yoE+DBQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/01/741dc3-226d-47fb-8ff2-9715cd698e32/1/fQvKvsQ3ny07lBh0ENLm4DGnQXE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/01/741dc3-226d-47fb-8ff2-9715cd698e32/1/fQvKvsQ3ny07lBh0ENLm4DGnQXE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fQvKvsQ3ny07lBh0ENLm4DGnQXE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 05:00:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:99:d0:38:65:93:d5:b6:2d:e3:73:e0:71:d8:21:63:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7d0bcabec4379f2d3b94187410d2e6e031a74171
        Validity
            Not Before: Apr 17 05:00:53 2026 GMT
            Not After : Apr 18 05:00:53 2026 GMT
        Subject: CN=2d8be1042709477bfac6f66e9dc320dca3184a00
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:b8:d5:7f:c6:40:cf:9a:f9:ac:6b:87:ee:9c:
                    6c:db:cc:9b:98:02:32:69:18:4d:4d:6c:27:4e:3a:
                    83:9a:48:aa:3b:57:6a:7a:0d:fb:a6:10:29:92:c8:
                    fa:c5:4d:99:56:68:35:09:9a:58:e0:ca:b3:c0:4b:
                    9f:21:58:3d:de:f6:5f:45:ff:18:5b:d1:90:8b:41:
                    4d:19:b0:f4:ef:a1:34:91:1a:5e:f5:b9:4e:4f:de:
                    62:34:5b:1d:ff:d1:8e:f2:71:3b:52:9e:76:51:9f:
                    51:14:fb:2c:59:96:d4:56:99:c2:9e:71:14:33:6c:
                    9c:8c:58:cf:a8:f1:77:c5:92:bd:86:f8:af:7c:47:
                    32:e0:d0:d8:8c:54:53:03:e4:c2:cb:31:16:15:77:
                    c5:b4:a2:cb:13:74:1a:87:0a:d0:43:12:ba:12:41:
                    57:f1:21:3b:a0:27:69:43:d9:69:da:6c:b0:21:25:
                    62:eb:6b:f5:ca:f5:69:52:c6:4d:85:7e:fa:de:68:
                    1c:57:c1:ee:09:21:bb:9e:23:cb:c2:b7:03:f5:12:
                    3e:66:72:52:ad:7d:56:66:c8:90:37:82:5c:be:d7:
                    ad:ce:de:9a:6b:b3:49:c8:7e:b9:b8:92:3d:60:60:
                    e9:d9:5e:1a:eb:27:e8:74:f6:57:67:90:2d:e6:76:
                    a5:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:8B:E1:04:27:09:47:7B:FA:C6:F6:6E:9D:C3:20:DC:A3:18:4A:00
            X509v3 Authority Key Identifier:
                keyid:7D:0B:CA:BE:C4:37:9F:2D:3B:94:18:74:10:D2:E6:E0:31:A7:41:71

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQvKvsQ3ny07lBh0ENLm4DGnQXE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/741dc3-226d-47fb-8ff2-9715cd698e32/1/fQvKvsQ3ny07lBh0ENLm4DGnQXE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/01/741dc3-226d-47fb-8ff2-9715cd698e32/1/fQvKvsQ3ny07lBh0ENLm4DGnQXE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:14:fe:ed:8d:cb:ad:41:1d:de:12:9f:08:cf:a1:0b:f9:1a:
         a7:c4:c4:76:7f:47:c3:6a:88:d6:d9:15:50:f8:24:58:62:2c:
         f9:74:28:80:8e:bc:96:00:94:70:ac:0c:53:68:a1:f1:50:34:
         e3:59:5c:25:65:61:aa:96:8c:a3:93:14:c4:0c:b9:61:cc:39:
         26:bf:41:2e:88:0b:c4:95:d8:d0:07:a1:2a:97:b4:ef:80:d1:
         be:12:a4:af:4f:a0:89:91:72:25:96:c6:eb:2f:be:c5:cb:96:
         81:c2:f7:e5:9b:23:db:3b:f6:c6:9f:67:64:15:d0:29:4b:fb:
         c6:2f:b2:c7:20:72:93:78:91:37:20:e0:c5:ad:74:b2:8b:ff:
         38:94:2a:8c:c2:83:38:21:5a:cb:2b:96:f7:9c:6c:ac:ad:ac:
         f9:49:2a:37:55:23:73:62:3e:4c:5f:fe:bd:db:e4:76:fe:72:
         dd:3e:c0:0f:4e:55:b9:f3:aa:9e:00:29:3a:22:c7:55:b3:83:
         aa:25:53:ec:f9:f3:30:00:33:de:1b:34:74:06:43:b7:0c:a5:
         89:83:ce:98:04:58:ec:9c:c1:a3:17:66:c2:e1:91:84:22:a6:
         5d:7d:0e:f1:43:bc:86:fc:1b:af:64:84:ff:d9:50:80:ed:4b:
         44:99:d2:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----