Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/6fc5cf-998b-4e3d-9dfa-1c3864a7c2de/1/vWCuPD0yPaOUps4F9rI9fPTdE0g.mft
File:                     vWCuPD0yPaOUps4F9rI9fPTdE0g.mft (raw, json)
Hash identifier:          bKMsfDHxF7ZGrnznf6Zaq9j9d6XEhTFS179k/uTuQMQ=
Subject key identifier:   AC:B0:7B:C2:07:C0:FF:E1:64:78:BC:1F:BC:75:E8:F9:2D:9A:4C:6C
Authority key identifier: BD:60:AE:3C:3D:32:3D:A3:94:A6:CE:05:F6:B2:3D:7C:F4:DD:13:48
Certificate issuer:       /CN=bd60ae3c3d323da394a6ce05f6b23d7cf4dd1348
Certificate serial:       019D97E20964309C3FB251660318C0D04CB1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vWCuPD0yPaOUps4F9rI9fPTdE0g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/19/6fc5cf-998b-4e3d-9dfa-1c3864a7c2de/1/vWCuPD0yPaOUps4F9rI9fPTdE0g.mft
Manifest number:          12B8
Signing time:             Thu 16 Apr 2026 20:01:06 +0000
Manifest this update:     Thu 16 Apr 2026 20:01:06 +0000
Manifest next update:     Fri 17 Apr 2026 20:01:06 +0000
Files and hashes:         1: vWCuPD0yPaOUps4F9rI9fPTdE0g.crl (hash: bI2IJHnAT/TOwTPC8+/jpLAn5zG1yd4OuoLRRWSPbB8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/19/6fc5cf-998b-4e3d-9dfa-1c3864a7c2de/1/vWCuPD0yPaOUps4F9rI9fPTdE0g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/19/6fc5cf-998b-4e3d-9dfa-1c3864a7c2de/1/vWCuPD0yPaOUps4F9rI9fPTdE0g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vWCuPD0yPaOUps4F9rI9fPTdE0g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 20:01:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:97:e2:09:64:30:9c:3f:b2:51:66:03:18:c0:d0:4c:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bd60ae3c3d323da394a6ce05f6b23d7cf4dd1348
        Validity
            Not Before: Apr 16 20:01:06 2026 GMT
            Not After : Apr 17 20:01:06 2026 GMT
        Subject: CN=acb07bc207c0ffe16478bc1fbc75e8f92d9a4c6c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:bf:6e:01:33:a9:21:0c:e2:23:3e:ec:77:7f:
                    48:ab:ac:aa:5c:36:a9:8a:5b:6e:0c:33:05:b8:96:
                    ac:f7:89:a7:d1:95:64:52:57:45:4e:c9:7d:a8:65:
                    25:1a:29:97:bf:02:64:ca:13:bd:2b:ee:ff:78:f3:
                    cd:91:4a:9e:30:b1:e6:53:64:af:8f:e7:7e:bf:99:
                    04:5d:18:0b:b8:41:5d:c8:ec:c0:08:d6:2c:d0:bc:
                    61:9b:59:ca:c8:62:6a:d6:77:e2:2c:11:a0:11:61:
                    6d:34:b8:e6:3b:e3:4e:7e:39:72:b9:7c:43:e4:91:
                    fd:0f:1f:17:c3:bf:2c:a1:74:eb:08:2b:b1:d5:c1:
                    c5:b3:bb:8d:27:e6:4a:b8:10:de:6a:84:5b:bf:f1:
                    45:63:28:b4:c0:07:8c:2a:e0:a5:0d:03:9f:4f:dd:
                    ee:b6:09:44:57:d6:6c:5a:56:92:b5:31:90:c6:5d:
                    5f:fb:e4:17:7f:06:0e:e3:db:e6:65:02:48:4d:14:
                    f1:e8:9c:75:fc:9d:63:48:22:5a:c3:59:cf:bb:eb:
                    ce:ff:b3:62:79:d7:58:e3:6a:a4:9c:5c:04:d1:5a:
                    81:79:95:03:9a:76:9b:06:0e:ea:4f:b0:b6:8f:6a:
                    07:f7:19:7a:2f:fd:22:29:9b:1c:b1:3e:24:70:7c:
                    60:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:B0:7B:C2:07:C0:FF:E1:64:78:BC:1F:BC:75:E8:F9:2D:9A:4C:6C
            X509v3 Authority Key Identifier:
                keyid:BD:60:AE:3C:3D:32:3D:A3:94:A6:CE:05:F6:B2:3D:7C:F4:DD:13:48

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vWCuPD0yPaOUps4F9rI9fPTdE0g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6fc5cf-998b-4e3d-9dfa-1c3864a7c2de/1/vWCuPD0yPaOUps4F9rI9fPTdE0g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6fc5cf-998b-4e3d-9dfa-1c3864a7c2de/1/vWCuPD0yPaOUps4F9rI9fPTdE0g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:eb:e7:17:64:76:83:c2:b0:69:50:2f:a1:85:5a:ad:8b:cd:
         45:4b:8b:d2:a4:0f:ed:18:4b:c2:b1:85:16:d7:26:41:18:d3:
         e5:6c:a6:dc:c6:b2:34:4d:b8:bd:94:fc:bd:24:11:65:34:f7:
         6a:c5:6a:aa:c6:52:8c:1b:98:0a:f4:5a:97:b6:80:4c:73:fb:
         c5:56:11:84:66:25:b8:3c:81:a0:aa:94:b2:50:af:89:ac:30:
         9f:4c:f7:f4:c8:81:fa:a2:a7:62:7b:48:5c:35:fd:d0:24:1b:
         a0:76:2d:c9:17:b7:20:13:2d:a7:b8:2d:2e:80:76:f0:61:5f:
         86:06:6b:ac:04:5b:eb:45:8a:14:15:44:91:d2:53:30:1d:ed:
         32:a2:66:49:d6:21:da:3a:dc:fe:96:19:8d:ff:7c:59:a7:a6:
         09:b7:77:d1:15:e2:2b:00:a9:35:1a:cf:75:6e:b2:f8:99:d8:
         ae:80:51:11:6b:2a:07:33:be:e3:60:93:25:f6:24:5a:36:bb:
         6c:f2:3f:fb:a7:d0:bd:f6:51:9f:a8:1d:34:62:56:80:47:a2:
         91:4e:27:02:32:27:c4:98:9b:cd:d2:f0:0d:9c:40:82:00:47:
         68:69:29:17:05:d2:ff:50:ec:d5:fa:29:34:ed:6f:4b:6c:a5:
         42:f0:4f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----