Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft
File:                     wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft (raw, json)
Hash identifier:          8rkbEVsOSTNerUlo88FTUY337mVFP4r7sdeU/mdPooA=
Subject key identifier:   6C:58:2D:12:BA:9F:1C:76:D1:0D:69:14:0C:56:22:3C:A9:58:F6:BF
Authority key identifier: C2:8D:33:84:B4:12:C7:CC:DB:FF:A6:41:D4:14:C1:17:DD:0E:D0:55
Certificate issuer:       /CN=c28d3384b412c7ccdbffa641d414c117dd0ed055
Certificate serial:       019CAA8F6B11BA9896615683D2DEF95C0039
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/wo0zhLQSx8zb_6ZB1BTBF90O0FU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft
Manifest number:          057D
Signing time:             Sun 01 Mar 2026 18:00:51 +0000
Manifest this update:     Sun 01 Mar 2026 18:00:51 +0000
Manifest next update:     Mon 02 Mar 2026 18:00:51 +0000
Files and hashes:         1: wo0zhLQSx8zb_6ZB1BTBF90O0FU.crl (hash: dGJ9ZTz0WN2ir1TYSZTDKqWx5UuV92INMuv3l8qZJkM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/wo0zhLQSx8zb_6ZB1BTBF90O0FU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 18:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:8f:6b:11:ba:98:96:61:56:83:d2:de:f9:5c:00:39
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c28d3384b412c7ccdbffa641d414c117dd0ed055
        Validity
            Not Before: Mar  1 18:00:51 2026 GMT
            Not After : Mar  2 18:00:51 2026 GMT
        Subject: CN=6c582d12ba9f1c76d10d69140c56223ca958f6bf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:35:53:78:39:ce:ea:3f:87:0b:0f:88:e2:1d:
                    41:52:ea:65:3b:10:98:0e:cc:07:f3:b6:56:b4:1a:
                    3f:10:f1:af:e4:49:78:ad:50:8e:4e:49:f2:70:ed:
                    15:35:41:92:0d:ae:c2:82:a1:07:b1:27:f4:34:c5:
                    a0:18:cb:de:73:f9:43:34:62:e0:46:46:be:04:81:
                    9a:53:10:a7:53:34:a5:a6:a9:40:99:b3:df:4c:84:
                    4a:bf:d2:d5:d9:6a:7d:ef:a4:89:be:85:4d:9f:f6:
                    59:7e:d8:ae:0a:74:28:df:d4:ff:37:b3:6e:d7:8f:
                    1d:5c:3c:5e:85:8a:30:b0:fe:5f:58:e5:6a:77:bf:
                    eb:e8:8d:00:21:6e:89:30:84:1a:c7:48:cc:40:23:
                    99:9c:99:43:b8:bf:3f:23:e0:72:9d:bf:45:c8:7a:
                    9c:a4:f7:9c:e7:54:d2:25:1c:ab:9f:c1:4c:f9:7e:
                    fe:be:e1:eb:80:d5:6b:00:98:80:d1:7f:b9:54:bd:
                    0b:b1:8f:ce:ef:8f:30:bc:18:9a:97:c7:8a:32:08:
                    a9:58:51:06:7b:ed:cb:5c:6b:10:4f:b7:24:3c:a6:
                    69:f8:0c:62:86:10:47:74:80:59:40:9d:c5:be:32:
                    c0:f6:cc:49:ac:6b:be:ac:f8:75:8f:f5:be:fb:21:
                    ca:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:58:2D:12:BA:9F:1C:76:D1:0D:69:14:0C:56:22:3C:A9:58:F6:BF
            X509v3 Authority Key Identifier:
                keyid:C2:8D:33:84:B4:12:C7:CC:DB:FF:A6:41:D4:14:C1:17:DD:0E:D0:55

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wo0zhLQSx8zb_6ZB1BTBF90O0FU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:bb:42:f6:5e:13:0e:fe:07:2d:64:ca:e1:5c:4a:b5:d1:da:
         dc:33:04:5c:84:bc:75:89:70:df:c2:56:dd:eb:46:87:1a:cb:
         e4:a3:95:b2:b5:1f:7d:97:12:c6:9d:a6:c8:63:76:84:85:54:
         ee:17:cf:97:db:22:e0:69:8c:31:2b:9d:eb:20:40:6c:69:1a:
         b8:e0:ed:5c:3f:c6:0d:1c:8d:13:51:71:f1:e1:97:91:e5:18:
         8f:17:80:d6:1c:30:a2:86:84:0c:40:e7:8b:8d:78:9b:6f:95:
         1e:c9:8c:44:b6:9f:0f:b0:e5:62:fb:08:a9:d4:a7:32:24:3e:
         9c:86:31:5d:84:33:ce:7b:29:ce:95:dc:80:0c:1e:7a:f9:3d:
         8a:f6:0f:89:51:57:40:3e:18:e9:35:c4:c7:dd:fe:4c:ee:6b:
         67:9f:0a:24:74:7c:92:38:36:31:b1:88:f1:9e:f1:14:c9:22:
         ba:fb:16:b8:58:e6:7a:8a:cc:28:e9:60:35:d4:96:a8:22:6e:
         0e:7e:8b:d8:d3:e2:f4:5b:a0:6f:53:d6:f4:1b:fc:6d:dc:e1:
         f6:05:e9:38:3f:8f:cf:b4:98:61:7e:a6:01:c1:9a:eb:25:43:
         cb:a9:3b:99:7f:b2:a1:b7:83:e4:0f:a9:de:e3:ff:22:d0:45:
         61:ee:86:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----