Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/54f8f6-b900-4405-927c-89c9892c14f0/1/BOIiiGeO__Ff6nne8kxgZ84kqic.mft
File:                     BOIiiGeO__Ff6nne8kxgZ84kqic.mft (raw, json)
Hash identifier:          y82ZTwYbAFMl0ynAQBmP689H1jReN3alHmS/+SFRGwM=
Subject key identifier:   F6:7E:AA:BA:A4:49:95:46:D0:54:9C:5A:54:89:5F:42:B0:7A:99:8D
Authority key identifier: 04:E2:22:88:67:8E:FF:F1:5F:EA:79:DE:F2:4C:60:67:CE:24:AA:27
Certificate issuer:       /CN=04e22288678efff15fea79def24c6067ce24aa27
Certificate serial:       019CAF488251ACCEADC80C278D935DE6751F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BOIiiGeO__Ff6nne8kxgZ84kqic.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0b/54f8f6-b900-4405-927c-89c9892c14f0/1/BOIiiGeO__Ff6nne8kxgZ84kqic.mft
Manifest number:          1844
Signing time:             Mon 02 Mar 2026 16:01:30 +0000
Manifest this update:     Mon 02 Mar 2026 16:01:30 +0000
Manifest next update:     Tue 03 Mar 2026 16:01:30 +0000
Files and hashes:         1: BOIiiGeO__Ff6nne8kxgZ84kqic.crl (hash: jdOQXAlLmJWk9w1Ix//pddw7GGoHXvuZj55tdcERW6k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0b/54f8f6-b900-4405-927c-89c9892c14f0/1/BOIiiGeO__Ff6nne8kxgZ84kqic.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0b/54f8f6-b900-4405-927c-89c9892c14f0/1/BOIiiGeO__Ff6nne8kxgZ84kqic.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BOIiiGeO__Ff6nne8kxgZ84kqic.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 15:05:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:af:48:82:51:ac:ce:ad:c8:0c:27:8d:93:5d:e6:75:1f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=04e22288678efff15fea79def24c6067ce24aa27
        Validity
            Not Before: Mar  2 16:01:30 2026 GMT
            Not After : Mar  3 16:01:30 2026 GMT
        Subject: CN=f67eaabaa4499546d0549c5a54895f42b07a998d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:7c:cd:a1:58:c4:70:8f:51:60:cb:70:12:6c:
                    ea:c9:f3:42:83:8f:41:ee:30:ec:35:ce:d0:39:f2:
                    95:77:da:f8:97:a0:c2:0b:8d:00:dd:43:82:bf:d8:
                    f3:50:b6:64:14:b6:05:52:3b:1b:e9:a2:0f:a1:47:
                    b7:a6:eb:89:4d:f7:2f:6d:85:04:df:6f:5d:37:13:
                    31:2f:aa:64:c3:70:49:66:7d:aa:b4:60:54:bd:68:
                    ff:fc:55:fb:6e:f1:0a:f7:6f:e9:96:18:e0:8e:d2:
                    8c:6d:5b:8f:0b:f5:67:21:13:71:48:01:e2:58:c4:
                    4a:b1:29:b0:43:d3:73:1a:b6:42:1a:39:0e:78:21:
                    96:21:32:1a:55:d0:6c:c6:6d:ed:2e:0c:ce:05:20:
                    3d:73:8e:aa:75:32:e7:93:22:75:6f:16:76:68:03:
                    d6:9d:19:70:c0:ed:c3:92:06:ef:e6:27:f6:b2:06:
                    89:13:48:30:f9:65:88:ff:bc:47:b6:2b:f8:06:16:
                    f7:20:0e:a9:0d:51:bb:d7:83:35:cf:50:83:d8:b8:
                    5e:51:ca:bc:c8:69:4b:f4:43:f3:99:98:8b:0e:ac:
                    9c:71:17:53:4b:2b:55:eb:94:8d:7e:44:ae:3f:2c:
                    18:23:3d:58:71:2d:37:1a:6b:43:9e:27:64:db:5a:
                    cc:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:7E:AA:BA:A4:49:95:46:D0:54:9C:5A:54:89:5F:42:B0:7A:99:8D
            X509v3 Authority Key Identifier:
                keyid:04:E2:22:88:67:8E:FF:F1:5F:EA:79:DE:F2:4C:60:67:CE:24:AA:27

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOIiiGeO__Ff6nne8kxgZ84kqic.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/54f8f6-b900-4405-927c-89c9892c14f0/1/BOIiiGeO__Ff6nne8kxgZ84kqic.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/54f8f6-b900-4405-927c-89c9892c14f0/1/BOIiiGeO__Ff6nne8kxgZ84kqic.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:e8:a3:41:4b:6a:47:4c:f4:7a:a5:8f:27:10:6b:f9:8d:9c:
         09:cd:6a:89:cf:59:09:8b:b0:7b:21:e3:73:3f:bc:79:46:11:
         1f:71:f3:02:d7:de:75:a9:b1:bd:cd:f9:cc:b2:8f:ff:89:1e:
         ec:62:9d:f8:f6:5d:a3:52:99:59:35:3e:bd:98:0a:19:33:bd:
         76:a2:69:0a:1d:9f:b7:a6:94:9e:a1:b4:e9:bd:a8:b1:e2:31:
         f8:84:dd:59:bc:fb:7f:b7:96:6f:74:c6:51:1b:d2:8f:76:8f:
         8b:f9:c3:98:13:be:66:09:75:2c:45:0f:29:12:07:30:6c:ad:
         bb:5d:4e:56:4a:09:f5:53:32:67:e4:7c:ce:99:cd:c5:2e:80:
         62:e4:e8:65:e4:8f:ff:e9:76:e3:25:cf:eb:33:ad:1b:bc:0d:
         50:2a:9e:6a:f1:64:79:b2:6a:e2:aa:5c:e4:18:3a:cb:d0:cb:
         cf:0d:82:ac:df:92:79:7a:cf:b5:66:48:c7:79:1e:b6:3f:d6:
         37:77:e3:60:da:72:16:ab:3a:6c:aa:79:39:8e:87:4f:88:e9:
         92:5b:6f:42:82:b2:d8:d0:66:8d:56:b0:1d:44:97:0a:e2:5b:
         98:d8:00:1c:b0:13:a8:b8:b4:e1:04:fb:17:6c:46:e2:53:7b:
         4b:93:fe:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyvSIJRrM6tyAwnjZNd5nUfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0ZTIyMjg4Njc4ZWZmZjE1ZmVhNzlkZWYyNGM2MDY3Y2Uy
NGFhMjcwHhcNMjYwMzAyMTYwMTMwWhcNMjYwMzAzMTYwMTMwWjAzMTEwLwYDVQQD
EyhmNjdlYWFiYWE0NDk5NTQ2ZDA1NDljNWE1NDg5NWY0MmIwN2E5OThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3zNoVjEcI9RYMtwEmzqyfNCg49B
7jDsNc7QOfKVd9r4l6DCC40A3UOCv9jzULZkFLYFUjsb6aIPoUe3puuJTfcvbYUE
329dNxMxL6pkw3BJZn2qtGBUvWj//FX7bvEK92/plhjgjtKMbVuPC/VnIRNxSAHi
WMRKsSmwQ9NzGrZCGjkOeCGWITIaVdBsxm3tLgzOBSA9c46qdTLnkyJ1bxZ2aAPW
nRlwwO3Dkgbv5if2sgaJE0gw+WWI/7xHtiv4Bhb3IA6pDVG714M1z1CD2LheUcq8
yGlL9EPzmZiLDqyccRdTSytV65SNfkSuPywYIz1YcS03GmtDnidk21rMeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPZ+qrqkSZVG0FScWlSJX0KwepmNMB8GA1UdIwQY
MBaAFATiIohnjv/xX+p53vJMYGfOJKonMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQk9JaWlHZU9fX0ZmNm5uZThreGdaODRrcWljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi81NGY4ZjYtYjkwMC00NDA1LTkyN2Mt
ODljOTg5MmMxNGYwLzEvQk9JaWlHZU9fX0ZmNm5uZThreGdaODRrcWljLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi81NGY4ZjYtYjkwMC00NDA1LTkyN2MtODljOTg5MmMxNGYw
LzEvQk9JaWlHZU9fX0ZmNm5uZThreGdaODRrcWljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABOijQUtq
R0z0eqWPJxBr+Y2cCc1qic9ZCYuweyHjcz+8eUYRH3HzAtfedamxvc35zLKP/4ke
7GKd+PZdo1KZWTU+vZgKGTO9dqJpCh2ft6aUnqG06b2oseIx+ITdWbz7f7eWb3TG
URvSj3aPi/nDmBO+Zgl1LEUPKRIHMGytu11OVkoJ9VMyZ+R8zpnNxS6AYuToZeSP
/+l24yXP6zOtG7wNUCqeavFkebJq4qpc5Bg6y9DLzw2CrN+SeXrPtWZIx3ketj/W
N3fjYNpyFqs6bKp5OY6HT4jpkltvQoKy2NBmjVawHUSXCuJbmNgAHLATqLi04QT7
F2xG4lN7S5P+5A==
-----END CERTIFICATE-----