Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.mft
File:                     ROzsULCd1G04TQgbUH0juv71HJw.mft (raw, json)
Hash identifier:          J5gT71A/0b+/YPR7TmHPTSbLUlFbdXzR6vY4bSwr8Bk=
Subject key identifier:   E7:88:3A:8F:34:9B:C1:A9:93:07:35:1D:90:26:CE:F9:0B:05:BC:5A
Authority key identifier: 44:EC:EC:50:B0:9D:D4:6D:38:4D:08:1B:50:7D:23:BA:FE:F5:1C:9C
Certificate issuer:       /CN=44ecec50b09dd46d384d081b507d23bafef51c9c
Certificate serial:       019CAC0FD37DEF6A36AC61BB3C6A378CFD29
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ROzsULCd1G04TQgbUH0juv71HJw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.mft
Manifest number:          1844
Signing time:             Mon 02 Mar 2026 01:00:44 +0000
Manifest this update:     Mon 02 Mar 2026 01:00:44 +0000
Manifest next update:     Tue 03 Mar 2026 01:00:44 +0000
Files and hashes:         1: ROzsULCd1G04TQgbUH0juv71HJw.crl (hash: gUjFlua13shz/0S99t6bGIENPdLP8ARWfwL+KsnS6BA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ROzsULCd1G04TQgbUH0juv71HJw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:0f:d3:7d:ef:6a:36:ac:61:bb:3c:6a:37:8c:fd:29
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=44ecec50b09dd46d384d081b507d23bafef51c9c
        Validity
            Not Before: Mar  2 01:00:44 2026 GMT
            Not After : Mar  3 01:00:44 2026 GMT
        Subject: CN=e7883a8f349bc1a99307351d9026cef90b05bc5a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:d7:ab:ba:9c:76:20:ef:69:18:96:67:e0:6f:
                    67:6f:0f:1c:33:9d:65:5f:a9:e0:00:2f:b6:77:70:
                    ab:34:56:78:08:1f:94:e6:e9:f3:d8:82:4d:fb:31:
                    ef:a5:7e:8b:c3:38:49:54:b0:c8:f0:41:14:9f:9f:
                    37:13:e0:7e:a9:df:d4:4b:bf:ea:c4:50:c0:a2:ab:
                    94:0f:0e:37:25:a9:4e:f2:3e:f8:52:63:40:b3:07:
                    43:c1:dc:71:e8:7a:3a:a1:bb:5f:ab:87:b2:07:82:
                    5b:c1:f2:2d:0e:ff:3f:39:82:02:3e:42:32:a9:4b:
                    0d:9d:75:7f:b5:90:91:e3:c6:2c:39:76:8f:a7:26:
                    82:99:50:3a:f3:76:fe:52:48:12:7c:3a:85:20:57:
                    5a:89:b0:6c:69:6e:dc:a1:c8:75:72:8f:14:c8:3c:
                    66:e1:4c:03:bd:41:68:db:01:89:b9:ac:26:29:d0:
                    1b:3b:88:a8:7d:58:e2:3b:40:c1:9e:3e:85:1d:d0:
                    00:9f:c1:f4:19:ea:91:41:92:c7:f6:0b:85:cf:78:
                    4c:00:1d:8d:ad:bb:86:11:3b:04:e9:49:72:c4:96:
                    e7:6a:98:38:6c:8d:1c:a2:8a:06:bb:4e:87:a1:12:
                    52:2c:f6:de:6c:ab:28:75:3d:16:38:13:72:50:35:
                    98:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:88:3A:8F:34:9B:C1:A9:93:07:35:1D:90:26:CE:F9:0B:05:BC:5A
            X509v3 Authority Key Identifier:
                keyid:44:EC:EC:50:B0:9D:D4:6D:38:4D:08:1B:50:7D:23:BA:FE:F5:1C:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ROzsULCd1G04TQgbUH0juv71HJw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3091e8-3c60-41cc-85e0-e32d6f6f3ccc/1/ROzsULCd1G04TQgbUH0juv71HJw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8c:52:4f:6c:6e:39:8d:af:18:e1:07:df:23:f0:f7:87:fd:d3:
         b6:32:d1:b1:04:ef:19:35:45:1a:75:e7:82:ea:3a:f0:10:83:
         60:91:2d:f8:b0:bf:d8:b2:1d:a4:b8:ef:d5:02:fc:bf:00:3d:
         96:c1:69:80:24:3d:ef:ea:fd:7b:73:06:0a:fa:24:9a:45:c3:
         d1:a5:6a:ef:7a:0c:7e:8b:dc:47:83:b5:87:76:e8:ff:56:d4:
         00:f5:5a:b8:1a:de:ef:62:07:d5:56:b5:85:27:ca:96:f1:25:
         0d:6e:3e:a3:49:04:a2:6f:87:db:11:e5:35:2d:15:87:ee:73:
         ce:07:cc:a9:63:b6:91:98:c8:cc:65:a5:ae:e7:2e:aa:28:d5:
         94:e4:e7:0f:bd:c8:72:33:53:ba:88:ba:b5:7d:14:c4:6d:34:
         48:58:9d:50:7e:3c:ac:8e:81:98:8c:b0:64:b8:6d:3d:a8:b0:
         f0:19:1a:d5:14:5c:ab:65:b7:7b:08:7e:61:49:4e:57:39:02:
         46:a0:32:36:c3:5d:bf:b6:96:52:d2:10:88:69:4b:b2:2b:3d:
         f1:20:a8:3f:2f:16:b7:8b:6d:f2:c2:cb:00:a3:3a:b7:69:0d:
         fa:87:3d:d3:83:70:1a:f5:1b:7d:39:7d:90:aa:79:32:38:8c:
         94:3f:5e:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----