Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/b711d7-ea06-4e42-98f7-63a4caedb38e/1/FAd8W3ds23z3vDXWtELjZ3arDG4.mft
File:                     FAd8W3ds23z3vDXWtELjZ3arDG4.mft (raw, json)
Hash identifier:          VOiEzSya6Q7ESmA3HlanxyYUuyw+L7G+LwArejVKzbk=
Subject key identifier:   E4:E3:DD:DB:B6:D1:99:2D:FB:34:0F:8C:AD:AA:FD:01:7E:A0:03:5B
Authority key identifier: 14:07:7C:5B:77:6C:DB:7C:F7:BC:35:D6:B4:42:E3:67:76:AB:0C:6E
Certificate issuer:       /CN=14077c5b776cdb7cf7bc35d6b442e36776ab0c6e
Certificate serial:       019CAF47C0841E9F02A2C236F033091F457C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FAd8W3ds23z3vDXWtELjZ3arDG4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/14/b711d7-ea06-4e42-98f7-63a4caedb38e/1/FAd8W3ds23z3vDXWtELjZ3arDG4.mft
Manifest number:          1845
Signing time:             Mon 02 Mar 2026 16:00:40 +0000
Manifest this update:     Mon 02 Mar 2026 16:00:40 +0000
Manifest next update:     Tue 03 Mar 2026 16:00:40 +0000
Files and hashes:         1: FAd8W3ds23z3vDXWtELjZ3arDG4.crl (hash: jcWIVF79eeXcX5wB/3G/Oyzv4sVmyUBeQMLdxqzyFG4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/14/b711d7-ea06-4e42-98f7-63a4caedb38e/1/FAd8W3ds23z3vDXWtELjZ3arDG4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/14/b711d7-ea06-4e42-98f7-63a4caedb38e/1/FAd8W3ds23z3vDXWtELjZ3arDG4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FAd8W3ds23z3vDXWtELjZ3arDG4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 15:05:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:af:47:c0:84:1e:9f:02:a2:c2:36:f0:33:09:1f:45:7c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14077c5b776cdb7cf7bc35d6b442e36776ab0c6e
        Validity
            Not Before: Mar  2 16:00:40 2026 GMT
            Not After : Mar  3 16:00:40 2026 GMT
        Subject: CN=e4e3dddbb6d1992dfb340f8cadaafd017ea0035b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:8a:8e:94:6b:83:28:b9:68:1b:d8:34:5a:d3:
                    e8:b3:06:c8:a6:0f:ca:60:f8:85:46:ce:f8:2a:65:
                    d2:9b:ec:1e:12:ff:64:5c:13:3c:c6:c4:41:39:15:
                    8e:37:4f:c5:a2:55:fb:18:89:4d:10:c1:8d:7b:b7:
                    7d:84:f4:67:0d:b9:0c:88:74:b5:77:46:66:5b:96:
                    fc:52:52:f2:c2:db:c7:6f:40:32:3c:d9:1c:a8:ec:
                    2e:c6:19:9d:50:11:87:53:d1:6e:ca:48:eb:52:e7:
                    29:f6:06:18:3f:43:02:cb:5f:6c:55:28:12:69:cd:
                    37:f0:62:ba:df:47:a8:3c:a6:56:37:da:89:12:9e:
                    9e:7c:9a:79:a1:3a:ba:0b:21:cc:58:a3:81:3f:ab:
                    dd:be:04:4d:65:0d:50:a2:20:93:3c:92:95:93:fc:
                    75:a3:90:89:95:0b:f5:c9:53:ef:f6:ac:64:b8:b2:
                    b8:a0:fd:26:cc:4a:a3:cf:d6:7f:d3:ab:0b:94:dc:
                    ee:40:c5:49:0e:38:ba:88:c7:56:3a:f6:6b:ce:db:
                    ad:44:fb:09:b2:a1:32:e0:73:c6:26:3c:d7:e6:9d:
                    81:e8:d7:ca:83:95:f2:27:b5:90:86:37:56:9b:1e:
                    45:ec:e8:e7:75:0d:6c:06:11:07:72:7b:56:a5:cf:
                    e2:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:E3:DD:DB:B6:D1:99:2D:FB:34:0F:8C:AD:AA:FD:01:7E:A0:03:5B
            X509v3 Authority Key Identifier:
                keyid:14:07:7C:5B:77:6C:DB:7C:F7:BC:35:D6:B4:42:E3:67:76:AB:0C:6E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FAd8W3ds23z3vDXWtELjZ3arDG4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b711d7-ea06-4e42-98f7-63a4caedb38e/1/FAd8W3ds23z3vDXWtELjZ3arDG4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/14/b711d7-ea06-4e42-98f7-63a4caedb38e/1/FAd8W3ds23z3vDXWtELjZ3arDG4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:07:fb:ed:32:11:81:15:28:da:e1:c2:c9:78:1f:96:1d:58:
         d3:97:a4:f0:fa:bc:54:e3:8b:a6:8a:41:29:ce:07:ca:7a:89:
         89:26:e4:ef:ed:aa:eb:8c:16:23:e7:75:1f:e4:fe:24:f4:da:
         e6:6d:0f:e1:51:c1:83:91:9b:5a:02:fb:17:da:cd:c2:cf:72:
         49:60:e1:35:28:f8:22:9c:10:d6:59:ac:77:19:9a:0d:57:8c:
         a9:64:99:b9:b1:0c:d2:9b:14:32:cc:55:9b:5e:80:7e:47:87:
         26:92:ed:d9:50:5b:a9:00:e9:5c:99:50:3e:cc:07:ad:b5:cd:
         e0:57:ff:36:31:9f:36:c7:99:96:a7:ca:df:42:15:a1:0a:30:
         79:0f:cc:89:94:b8:f2:9b:e1:63:da:53:0a:21:0d:a3:52:de:
         e7:9f:61:ca:69:80:81:ce:f6:45:8d:52:ef:79:39:ad:c7:85:
         3a:71:c9:7d:85:84:22:75:05:77:ba:21:d7:72:04:e0:e8:0f:
         96:c3:96:81:53:d5:6b:d4:5c:a4:f0:5f:9d:77:6b:84:bf:0c:
         0b:e4:be:f5:25:70:ab:23:f4:30:31:a1:9f:97:0f:c5:de:87:
         3d:7b:ac:3a:4f:d6:e9:0b:c0:31:bf:1c:4e:64:a1:93:15:ad:
         a3:66:da:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----