Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
File:                     0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft (raw, json)
Hash identifier:          lNp1PW9NUWdLysiVpMPfs4n4vthXiOMJKSeISnOo4m4=
Subject key identifier:   22:4E:B3:D5:96:AB:3B:6A:DA:18:26:65:F6:89:AD:68:12:E3:EB:B7
Authority key identifier: D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
Certificate issuer:       /CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Certificate serial:       019D99CFFC7D821592BBDDDD214097168CCE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
Manifest number:          0E44
Signing time:             Fri 17 Apr 2026 05:00:37 +0000
Manifest this update:     Fri 17 Apr 2026 05:00:37 +0000
Manifest next update:     Sat 18 Apr 2026 05:00:37 +0000
Files and hashes:         1: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl (hash: bhali0xr19ORD/u20HH6qG0TurnO8gvZNHISJ+6D5qc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 05:00:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:99:cf:fc:7d:82:15:92:bb:dd:dd:21:40:97:16:8c:ce
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
        Validity
            Not Before: Apr 17 05:00:37 2026 GMT
            Not After : Apr 18 05:00:37 2026 GMT
        Subject: CN=224eb3d596ab3b6ada182665f689ad6812e3ebb7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:d8:f6:2e:af:21:b2:dd:50:6b:4c:66:d7:a2:
                    15:01:13:dc:98:d4:c2:b6:d1:b6:5c:29:16:13:d5:
                    90:5a:4d:0f:e7:9e:b8:29:e0:3e:33:8b:5e:2c:70:
                    39:dc:94:00:e7:a6:aa:1c:6e:ed:b6:82:cc:97:ee:
                    6f:e4:e9:41:d7:dd:b7:5a:be:dd:5b:ae:5c:bd:d7:
                    c5:d1:a0:e4:c5:d8:77:ce:04:65:ea:b1:21:6e:74:
                    a1:a8:e4:93:65:99:0d:7a:46:53:13:b8:dd:5b:f4:
                    f6:79:73:d3:0e:b2:5f:3f:ca:1e:f6:4c:5a:8c:7e:
                    44:f5:64:dc:b8:ab:41:f9:4a:9b:51:40:fe:3b:25:
                    5d:d5:55:91:e9:ef:85:56:51:d4:83:9a:c6:d6:63:
                    ef:19:c7:f3:b3:7d:c4:90:8b:11:63:4c:5c:58:5d:
                    d5:13:63:ee:92:16:b1:3b:9e:a8:75:a4:c1:e8:b7:
                    d7:5a:01:6b:7e:ab:bb:fc:2c:cf:e0:32:ce:ac:df:
                    6a:59:2c:ba:4a:b0:ff:28:4f:4b:9a:e2:df:40:3c:
                    a2:23:02:45:95:ba:e1:2a:13:6f:41:b4:cc:3d:c0:
                    dc:64:1d:ad:eb:c4:73:c7:c1:c6:b8:e7:77:25:9e:
                    df:d4:e3:fd:e9:ed:58:12:23:4f:e1:7e:ba:ac:d4:
                    ba:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                22:4E:B3:D5:96:AB:3B:6A:DA:18:26:65:F6:89:AD:68:12:E3:EB:B7
            X509v3 Authority Key Identifier:
                keyid:D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         21:c9:83:63:44:58:67:48:09:8f:24:34:10:ac:ca:c3:7f:d2:
         aa:f9:37:92:37:c8:31:cb:01:10:57:9d:65:e8:b5:23:bf:a0:
         3c:cd:94:fc:24:fb:e5:14:d7:33:31:11:f3:8a:e7:55:be:b8:
         73:30:1d:3e:59:50:93:e6:f4:8c:7f:4b:42:93:7c:5e:86:e8:
         29:1f:8b:26:05:17:15:0e:cd:33:06:47:8a:0f:5f:32:d3:d5:
         ab:8b:12:cc:9a:21:ba:f2:a3:37:12:9f:75:50:7e:86:65:8b:
         b6:52:ea:c9:55:fb:27:61:d5:8c:60:c1:6a:6f:10:8e:c8:1c:
         f9:2c:d0:ac:c3:3c:ff:0e:49:08:ce:1a:3f:c7:7e:ad:17:ae:
         80:c1:e1:23:21:4b:88:0a:32:ba:01:e3:33:8d:9a:1b:42:66:
         96:0b:7a:b4:b7:82:0a:93:09:6a:28:1b:36:ae:05:b6:b5:a2:
         47:c6:73:ce:33:a8:03:1e:a4:58:94:4e:78:2f:73:81:56:b5:
         81:7c:a7:a7:7a:15:ae:42:5a:40:d0:99:ae:b1:fc:45:9c:fc:
         c5:6a:a2:73:36:2c:14:de:da:9e:51:90:59:86:0e:d9:ec:2b:
         c8:73:bf:49:37:af:8b:b9:c7:f0:36:ff:c8:d4:9d:80:ea:a0:
         46:05:b6:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----