Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft
File:                     gTpCg40uRe1drUEUYG2XKaZQHSM.mft (raw, json)
Hash identifier:          /L/CowEAArEjtF6nsK+51gkngvHJcr/XtltMOr5y/w4=
Subject key identifier:   4D:C7:BC:FB:71:90:D9:7E:38:EA:EC:2E:15:9D:25:65:29:6C:93:CA
Authority key identifier: 81:3A:42:83:8D:2E:45:ED:5D:AD:41:14:60:6D:97:29:A6:50:1D:23
Certificate issuer:       /CN=813a42838d2e45ed5dad4114606d9729a6501d23
Certificate serial:       019CADC805A617CACC3457AD5777E5A0C812
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gTpCg40uRe1drUEUYG2XKaZQHSM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft
Manifest number:          10A6
Signing time:             Mon 02 Mar 2026 09:01:32 +0000
Manifest this update:     Mon 02 Mar 2026 09:01:32 +0000
Manifest next update:     Tue 03 Mar 2026 09:01:32 +0000
Files and hashes:         1: gTpCg40uRe1drUEUYG2XKaZQHSM.crl (hash: HQf7iccdNJvNp///QTHAube/WeZtJtjpmfaZ5CdfRtE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gTpCg40uRe1drUEUYG2XKaZQHSM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 09:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:c8:05:a6:17:ca:cc:34:57:ad:57:77:e5:a0:c8:12
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=813a42838d2e45ed5dad4114606d9729a6501d23
        Validity
            Not Before: Mar  2 09:01:32 2026 GMT
            Not After : Mar  3 09:01:32 2026 GMT
        Subject: CN=4dc7bcfb7190d97e38eaec2e159d2565296c93ca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:83:c5:99:d1:91:a2:0d:d4:61:b6:2d:dc:17:
                    74:d5:4c:a0:16:ea:91:0d:60:b9:d3:29:a7:b5:49:
                    2e:25:6b:57:2a:85:57:ee:31:2a:a2:9a:e7:13:67:
                    77:9b:9c:ce:ff:33:4d:72:84:af:4c:1e:fe:f2:8a:
                    44:16:fb:00:a6:e7:ef:7b:74:3d:ac:68:67:19:79:
                    cb:ff:71:33:84:7d:53:e6:52:fc:89:35:83:7a:88:
                    74:3e:a8:e0:7f:22:0d:72:8a:db:a5:60:6b:19:f5:
                    4c:ea:a4:8f:a3:52:a6:d4:61:37:03:dc:49:7d:1d:
                    61:7f:58:78:e5:f1:95:76:11:35:5a:e5:d8:e5:77:
                    69:79:4f:38:21:6d:97:b8:c0:a2:57:65:87:e3:34:
                    f7:f8:6c:e0:ec:16:e0:a6:ab:1b:3a:8e:91:92:65:
                    c3:86:95:f7:75:ee:96:18:95:95:30:88:36:81:47:
                    3a:b2:6e:c1:9c:ab:9f:92:c7:ea:a2:fd:37:78:be:
                    1a:39:2b:db:03:0d:30:8e:98:07:d4:cc:e5:5a:80:
                    cd:55:fa:dc:c1:df:f0:dc:d3:fc:c4:0b:e6:33:0c:
                    b3:fd:28:38:ef:ad:e4:da:65:d2:57:b7:b1:39:71:
                    f8:26:1f:53:0e:2e:1c:b0:5a:6e:09:19:8b:34:89:
                    19:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:C7:BC:FB:71:90:D9:7E:38:EA:EC:2E:15:9D:25:65:29:6C:93:CA
            X509v3 Authority Key Identifier:
                keyid:81:3A:42:83:8D:2E:45:ED:5D:AD:41:14:60:6D:97:29:A6:50:1D:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTpCg40uRe1drUEUYG2XKaZQHSM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:ce:19:5d:73:8e:a6:8b:d0:91:0a:98:b0:dc:80:3e:8e:20:
         22:57:5b:4b:54:66:ba:9e:5d:c6:a9:30:ad:a6:7e:34:58:3c:
         34:10:f7:fb:b5:19:45:ea:41:55:b2:d2:3d:26:a7:c1:32:23:
         32:1d:aa:67:7c:ee:64:a2:39:1a:61:a6:9f:1e:bb:ad:8b:8a:
         e0:77:ef:d6:50:ec:68:3f:1a:b5:b7:99:f3:1a:00:49:6e:20:
         39:5e:d7:0f:26:0c:41:8f:cd:f7:1d:de:aa:16:3c:54:da:1c:
         45:e8:16:b6:c0:0d:d7:c5:61:13:fc:f3:b8:e9:1d:3c:b0:91:
         e4:ac:0a:7b:72:b8:f8:e8:0a:5e:9d:95:91:1d:45:f0:9f:03:
         0f:a7:68:37:d4:47:4e:c5:1c:6e:a8:93:fe:e1:b7:69:df:3a:
         a9:b2:d1:25:57:7d:ae:a1:20:bf:69:5e:9c:7d:d2:e4:ae:e6:
         ff:b5:a3:08:71:a9:54:4d:6f:09:d4:7e:37:5c:c3:d3:81:5a:
         f0:a1:90:c3:6a:c3:84:a1:a5:3d:cc:6e:0a:61:50:77:4d:95:
         79:c2:c6:6f:cb:63:5f:4b:20:52:d2:16:57:e3:50:32:ce:8c:
         41:9e:f1:e8:57:71:c6:4c:19:5e:41:c8:c6:da:fd:89:a7:68:
         d7:1d:40:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----