Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft
File:                     Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft (raw, json)
Hash identifier:          ef6hdt49jx8rKxkhis3QqOz5LVaRfzTqi2qiLwRmxRw=
Subject key identifier:   D9:F3:AA:7E:06:5F:39:1B:E5:61:CF:44:A4:ED:38:47:FA:C5:6D:4E
Authority key identifier: 1E:DC:3A:97:F1:CC:AE:F7:F1:08:69:91:CF:7B:10:A4:10:CE:19:42
Certificate issuer:       /CN=1edc3a97f1ccaef7f1086991cf7b10a410ce1942
Certificate serial:       019CAAC6FB16790CFCC78456B28D22FD533C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Htw6l_HMrvfxCGmRz3sQpBDOGUI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft
Manifest number:          1758
Signing time:             Sun 01 Mar 2026 19:01:33 +0000
Manifest this update:     Sun 01 Mar 2026 19:01:33 +0000
Manifest next update:     Mon 02 Mar 2026 19:01:33 +0000
Files and hashes:         1: Htw6l_HMrvfxCGmRz3sQpBDOGUI.crl (hash: dwEaa3sSdFfvgqhyuDk3AeKvH3DjZZgPV0D5Lp0UqXU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Htw6l_HMrvfxCGmRz3sQpBDOGUI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 15:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:c6:fb:16:79:0c:fc:c7:84:56:b2:8d:22:fd:53:3c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1edc3a97f1ccaef7f1086991cf7b10a410ce1942
        Validity
            Not Before: Mar  1 19:01:33 2026 GMT
            Not After : Mar  2 19:01:33 2026 GMT
        Subject: CN=d9f3aa7e065f391be561cf44a4ed3847fac56d4e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:a0:19:d0:5f:b7:7c:d6:7d:d3:1f:7a:28:a6:
                    a3:de:79:b3:a9:1b:af:22:12:3f:2f:05:a0:49:ac:
                    99:f4:61:6e:81:d2:20:0c:3b:88:1c:ea:73:6e:23:
                    3d:19:d1:a8:20:cd:28:9b:1c:4e:43:c9:71:2b:0d:
                    83:bf:98:3c:86:78:d5:80:31:a4:71:6d:99:87:43:
                    7f:46:c8:d3:6f:7e:e3:e3:ba:9d:1a:09:14:63:ac:
                    cf:e2:c1:81:6e:c6:e0:ac:8b:cb:dd:d5:58:41:09:
                    3a:b3:dc:99:0d:f7:6e:6d:4f:76:60:30:fd:ed:93:
                    5e:77:d4:ff:1e:75:d0:a8:dc:43:c5:3a:12:34:14:
                    47:d1:40:56:ce:34:e7:35:0d:f8:4b:9b:3f:e2:0e:
                    9e:72:45:9b:2e:33:3f:00:5c:43:5b:01:0c:36:62:
                    af:0b:36:0a:57:af:c3:de:c1:cd:17:51:d2:a2:21:
                    ab:65:08:11:11:2c:ba:67:7f:2d:63:7b:34:33:b0:
                    ef:b3:cf:3c:55:d7:64:73:dc:47:b0:7e:79:da:cd:
                    11:ff:12:74:37:b7:7c:cd:0f:f6:16:9f:61:94:c6:
                    89:35:09:60:20:79:d7:65:ed:4c:56:a6:30:8f:1e:
                    5c:c1:d1:10:17:3f:2d:09:2e:b2:14:32:b5:60:24:
                    ea:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:F3:AA:7E:06:5F:39:1B:E5:61:CF:44:A4:ED:38:47:FA:C5:6D:4E
            X509v3 Authority Key Identifier:
                keyid:1E:DC:3A:97:F1:CC:AE:F7:F1:08:69:91:CF:7B:10:A4:10:CE:19:42

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Htw6l_HMrvfxCGmRz3sQpBDOGUI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:4e:43:fd:f3:6e:19:66:13:3b:a4:e2:49:0b:92:38:ee:f5:
         0e:f6:2c:4c:18:e9:2b:6a:67:c7:64:9b:5d:23:65:2a:4f:1d:
         e0:e4:b6:5b:86:a4:4a:9e:44:8f:be:d7:77:97:59:11:34:06:
         ec:32:1c:72:3e:ed:65:64:88:22:7b:09:64:0a:f6:31:ef:ed:
         0b:92:2e:00:de:0a:c0:2b:26:15:47:cc:30:c1:11:06:58:c7:
         26:0d:f5:a7:50:35:2d:3c:39:bc:59:c7:63:99:b7:d4:e2:24:
         a3:ee:14:7f:4f:6c:06:b4:29:d3:6a:42:22:13:22:f6:d0:85:
         a7:6d:01:98:58:57:4b:ee:aa:95:a0:18:6c:df:10:f8:f7:74:
         d0:44:de:c0:72:62:d7:0a:1a:35:f3:cd:2b:4d:80:39:36:3e:
         9d:cf:e0:6b:bf:65:fb:93:e7:85:16:98:e6:e7:13:d7:89:3b:
         d6:d5:41:3b:a2:85:ba:94:ec:81:ba:ee:65:c7:65:0f:6d:23:
         2c:e8:1a:7c:4b:2a:f8:c2:20:46:23:60:fc:4d:0a:92:f1:ee:
         d5:b3:83:65:99:8b:d3:08:69:45:ba:dd:b8:07:b0:29:4c:6d:
         ef:8f:20:57:1e:54:dd:cf:e8:25:44:7a:b0:d1:3d:a3:fa:6f:
         76:44:90:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqxvsWeQz8x4RWso0i/VM8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlZGMzYTk3ZjFjY2FlZjdmMTA4Njk5MWNmN2IxMGE0MTBj
ZTE5NDIwHhcNMjYwMzAxMTkwMTMzWhcNMjYwMzAyMTkwMTMzWjAzMTEwLwYDVQQD
EyhkOWYzYWE3ZTA2NWYzOTFiZTU2MWNmNDRhNGVkMzg0N2ZhYzU2ZDRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv6AZ0F+3fNZ90x96KKaj3nmzqRuv
IhI/LwWgSayZ9GFugdIgDDuIHOpzbiM9GdGoIM0omxxOQ8lxKw2Dv5g8hnjVgDGk
cW2Zh0N/RsjTb37j47qdGgkUY6zP4sGBbsbgrIvL3dVYQQk6s9yZDfdubU92YDD9
7ZNed9T/HnXQqNxDxToSNBRH0UBWzjTnNQ34S5s/4g6eckWbLjM/AFxDWwEMNmKv
CzYKV6/D3sHNF1HSoiGrZQgRESy6Z38tY3s0M7Dvs888Vddkc9xHsH552s0R/xJ0
N7d8zQ/2Fp9hlMaJNQlgIHnXZe1MVqYwjx5cwdEQFz8tCS6yFDK1YCTqiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNnzqn4GXzkb5WHPRKTtOEf6xW1OMB8GA1UdIwQY
MBaAFB7cOpfxzK738Qhpkc97EKQQzhlCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHR3NmxfSE1ydmZ4Q0dtUnozc1FwQkRPR1VJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8wZDA3MjQtNTVmNS00NzU1LTk5YzIt
NjEyNjUxYWUzZWIzLzEvSHR3NmxfSE1ydmZ4Q0dtUnozc1FwQkRPR1VJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy8wZDA3MjQtNTVmNS00NzU1LTk5YzItNjEyNjUxYWUzZWIz
LzEvSHR3NmxfSE1ydmZ4Q0dtUnozc1FwQkRPR1VJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB05D/fNu
GWYTO6TiSQuSOO71DvYsTBjpK2pnx2SbXSNlKk8d4OS2W4akSp5Ej77Xd5dZETQG
7DIccj7tZWSIInsJZAr2Me/tC5IuAN4KwCsmFUfMMMERBljHJg31p1A1LTw5vFnH
Y5m31OIko+4Uf09sBrQp02pCIhMi9tCFp20BmFhXS+6qlaAYbN8Q+Pd00ETewHJi
1woaNfPNK02AOTY+nc/ga79l+5PnhRaY5ucT14k71tVBO6KFupTsgbruZcdlD20j
LOgafEsq+MIgRiNg/E0KkvHu1bODZZmL0whpRbrduAewKUxt748gVx5U3c/oJUR6
sNE9o/pvdkSQLA==
-----END CERTIFICATE-----