Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/183298-fb99-4e8f-8264-eb03bba65a96/1/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.mft
File:                     ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.mft (raw, json)
Hash identifier:          WBW8a1aAXZbPA9ESFKhTeOhgewA5l6nG8Z5Ao2mYNfI=
Subject key identifier:   DA:BD:D0:93:41:E9:54:C6:A9:88:F8:3C:10:96:26:F3:50:3B:EC:FB
Authority key identifier: 65:A0:7D:49:24:68:22:8A:A3:06:A6:6B:05:6A:02:28:C5:52:EC:5C
Certificate issuer:       /CN=65a07d492468228aa306a66b056a0228c552ec5c
Certificate serial:       019D98F4E06B23CA7093FC3E72757AC44BF1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/07/183298-fb99-4e8f-8264-eb03bba65a96/1/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.mft
Manifest number:          0FD6
Signing time:             Fri 17 Apr 2026 01:01:18 +0000
Manifest this update:     Fri 17 Apr 2026 01:01:18 +0000
Manifest next update:     Sat 18 Apr 2026 01:01:18 +0000
Files and hashes:         1: ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.crl (hash: xj9UMa20zAmt0b3t+xMGoIcatWNVccZgb+HMjIZR5L0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/07/183298-fb99-4e8f-8264-eb03bba65a96/1/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/07/183298-fb99-4e8f-8264-eb03bba65a96/1/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 01:01:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f4:e0:6b:23:ca:70:93:fc:3e:72:75:7a:c4:4b:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=65a07d492468228aa306a66b056a0228c552ec5c
        Validity
            Not Before: Apr 17 01:01:18 2026 GMT
            Not After : Apr 18 01:01:18 2026 GMT
        Subject: CN=dabdd09341e954c6a988f83c109626f3503becfb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:57:25:2e:6b:0f:42:61:79:c5:5c:5a:6c:9e:
                    68:60:36:67:81:c0:36:3b:b6:0d:4f:b4:a8:c2:ed:
                    e9:63:1f:f2:82:71:d4:05:14:58:0b:ba:78:b0:8e:
                    37:1a:b7:87:d2:9e:bf:eb:ad:67:4e:55:95:21:c7:
                    16:42:4b:65:ef:75:0f:fa:be:4b:0d:8f:91:1c:6d:
                    af:0f:00:b4:b8:07:e2:34:67:f9:fd:dd:a6:0f:55:
                    a7:3e:0e:57:87:79:f0:7b:ef:2e:f8:e2:13:35:d7:
                    b2:7a:b8:58:2b:b6:08:4e:26:c8:02:c9:75:88:54:
                    f8:8f:8a:e5:f2:e5:85:1c:25:6d:f5:33:bb:6f:c7:
                    e8:c7:db:4b:a1:fe:c9:35:d8:46:e6:fa:82:20:d8:
                    3d:b8:a3:25:1a:39:84:6c:89:9e:c3:34:af:01:01:
                    0a:83:8c:20:6d:33:92:d4:cc:bc:3d:a3:6d:c3:58:
                    f3:39:7f:cb:c4:0f:82:d9:df:b2:e7:11:6a:41:37:
                    c9:a6:54:ac:7c:d1:eb:ed:34:0f:72:cd:3c:49:05:
                    c3:2f:be:16:02:c7:af:d1:56:f0:7b:31:e9:56:04:
                    ef:6b:8b:1a:84:e0:0a:5f:ea:66:53:90:6c:f7:c9:
                    5b:a6:0a:51:a8:8f:52:10:5d:d1:28:4b:aa:f6:d0:
                    3d:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:BD:D0:93:41:E9:54:C6:A9:88:F8:3C:10:96:26:F3:50:3B:EC:FB
            X509v3 Authority Key Identifier:
                keyid:65:A0:7D:49:24:68:22:8A:A3:06:A6:6B:05:6A:02:28:C5:52:EC:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/183298-fb99-4e8f-8264-eb03bba65a96/1/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/07/183298-fb99-4e8f-8264-eb03bba65a96/1/ZaB9SSRoIoqjBqZrBWoCKMVS7Fw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:16:1e:cb:03:dc:8a:5e:e6:9d:b7:3f:92:3b:34:bd:08:bb:
         ee:bd:88:1e:cf:c5:e1:87:d8:16:17:b2:7e:88:05:6c:3e:be:
         75:05:13:18:d3:e5:56:cc:4e:86:ec:37:9c:3d:c7:02:b3:2a:
         b6:41:10:e3:6f:56:4a:9d:01:27:28:2a:ff:0e:0e:0e:e5:07:
         75:48:fc:3c:d4:fd:ad:c6:51:c5:c3:fa:1d:6d:7e:91:66:99:
         40:f2:be:74:9c:81:dd:3a:22:f6:b4:71:b4:52:b1:20:5d:d0:
         ca:45:db:eb:9e:04:4b:0d:c4:ee:5c:07:44:0f:37:40:0a:04:
         30:6a:1b:67:da:e2:39:5f:ae:7e:22:d1:66:19:7d:c0:72:b6:
         b4:9e:58:8d:4d:51:ba:9f:6d:32:63:c6:e7:5f:0f:fc:f8:8a:
         53:8a:86:c2:cd:0b:f0:88:0b:56:4d:a7:81:74:bd:5e:46:02:
         5c:b2:c0:c5:08:57:16:3b:c5:15:2b:4a:c2:52:0f:af:aa:bf:
         76:36:ca:86:36:95:86:83:62:b6:c9:96:21:3d:cc:01:b8:53:
         a8:18:f6:e9:18:a9:69:81:01:39:d7:6a:dc:e3:f7:62:f4:ea:
         00:23:d7:ef:34:93:02:8e:44:c4:2a:62:97:b9:49:96:73:fb:
         e7:a3:cc:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----