Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
File:                     pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft (raw, json)
Hash identifier:          Dh3uEGUBHMADc/ar92JySbvfEbn2yX7FisC64ysOAfc=
Subject key identifier:   7B:46:78:40:4D:9F:73:66:07:66:EF:9C:BE:44:37:1E:68:0B:65:13
Authority key identifier: A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92
Certificate issuer:       /CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
Certificate serial:       019D98F410074370693C5DD7C1C12E784C7F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
Manifest number:          13BE
Signing time:             Fri 17 Apr 2026 01:00:24 +0000
Manifest this update:     Fri 17 Apr 2026 01:00:24 +0000
Manifest next update:     Sat 18 Apr 2026 01:00:24 +0000
Files and hashes:         1: pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl (hash: ONiGiMdznGwETLFfRpCMRs+VB7l3YK+hTh/eji3GlGo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 01:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f4:10:07:43:70:69:3c:5d:d7:c1:c1:2e:78:4c:7f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
        Validity
            Not Before: Apr 17 01:00:24 2026 GMT
            Not After : Apr 18 01:00:24 2026 GMT
        Subject: CN=7b4678404d9f73660766ef9cbe44371e680b6513
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:8c:73:75:62:a6:21:48:dc:83:b5:d1:14:7b:
                    c7:f3:9e:ca:d4:0b:e9:34:09:da:ba:2c:36:1e:dd:
                    2c:87:02:16:87:b3:2e:ce:53:a4:0e:10:89:3d:c9:
                    6a:c9:5a:cf:c3:73:c0:7a:90:59:ee:53:07:96:f7:
                    8f:ba:1f:b7:b8:96:a7:9c:4e:b5:3f:75:3b:cc:2b:
                    c3:d4:b7:b7:32:68:14:d2:91:5a:6b:fe:ed:b1:de:
                    25:c3:be:53:83:45:b0:07:3b:15:56:dd:b8:a9:41:
                    8f:f8:74:0c:84:34:08:d7:0f:dc:61:d6:65:72:60:
                    8c:b5:cf:98:1d:62:49:49:ff:81:10:3c:14:fc:2d:
                    33:32:6d:3c:a8:0a:d8:69:c9:5e:d0:fd:f7:e3:3a:
                    4a:bd:12:aa:fb:fe:fe:68:89:28:6a:55:17:26:70:
                    5c:57:e2:3c:af:26:11:e8:b7:a1:ae:3a:08:4c:0a:
                    2c:d3:fe:97:6c:0d:2a:1b:cb:bd:ab:56:e2:7a:c1:
                    8d:71:b6:65:87:f9:ae:9f:2e:bd:ab:71:d2:5e:8f:
                    8f:e4:ed:00:55:7f:1c:68:40:af:5b:d5:7a:b8:44:
                    37:42:cc:19:46:a6:af:90:3f:bc:f1:14:ae:41:b0:
                    89:09:09:3b:e3:bf:d3:4b:97:38:c7:00:a7:3a:f0:
                    f1:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:46:78:40:4D:9F:73:66:07:66:EF:9C:BE:44:37:1E:68:0B:65:13
            X509v3 Authority Key Identifier:
                keyid:A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:c2:38:80:ce:af:68:b8:41:e8:a2:74:6f:fa:38:e4:0f:de:
         20:44:e2:fd:69:15:5a:1c:55:3a:32:db:75:56:1a:01:99:80:
         bb:49:9c:1b:e3:85:fc:ea:9b:01:2a:4d:3a:07:31:5c:5d:ed:
         8e:2c:f7:c9:7c:a4:ef:93:2e:81:20:07:52:a0:53:78:35:73:
         5e:b8:e4:e4:90:b3:1d:ba:b9:15:a6:b4:19:bb:30:67:a1:59:
         99:27:72:cb:bb:78:1b:e6:df:f5:fc:52:ec:49:fd:b6:e3:6e:
         de:70:e4:cd:c1:0f:c1:78:bf:80:61:d5:73:fb:62:c6:0d:a7:
         95:be:8f:7e:5c:f3:ef:74:df:bb:ee:db:7e:7a:62:36:c9:26:
         d4:d9:ed:80:a1:42:4e:5e:76:b5:c7:35:0e:44:91:ae:0a:ed:
         26:5a:9f:a6:4a:12:ce:9d:14:84:85:e8:f1:ad:56:cb:dc:59:
         bd:fc:cc:1b:aa:ec:39:ca:18:b5:7b:f2:64:69:21:91:36:5f:
         a1:45:c3:0e:6c:60:c3:66:7a:15:ac:01:46:e0:97:4f:a5:5d:
         fe:35:75:a3:84:66:af:92:e1:3c:29:64:52:00:f2:42:ab:ff:
         79:1c:b3:4e:60:ff:c2:3d:5f:0e:e0:f2:92:1a:72:aa:09:7d:
         77:7c:d0:08
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9BAHQ3BpPF3XwcEueEx/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1OGVmZDEwOGQ0YzViMGY0ZjlhODhhZTUzYmI3ZmVjOWQ1
OTRiOTIwHhcNMjYwNDE3MDEwMDI0WhcNMjYwNDE4MDEwMDI0WjAzMTEwLwYDVQQD
Eyg3YjQ2Nzg0MDRkOWY3MzY2MDc2NmVmOWNiZTQ0MzcxZTY4MGI2NTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtoxzdWKmIUjcg7XRFHvH857K1Avp
NAnauiw2Ht0shwIWh7MuzlOkDhCJPclqyVrPw3PAepBZ7lMHlvePuh+3uJannE61
P3U7zCvD1Le3MmgU0pFaa/7tsd4lw75Tg0WwBzsVVt24qUGP+HQMhDQI1w/cYdZl
cmCMtc+YHWJJSf+BEDwU/C0zMm08qArYacle0P334zpKvRKq+/7+aIkoalUXJnBc
V+I8ryYR6LehrjoITAos0/6XbA0qG8u9q1biesGNcbZlh/muny69q3HSXo+P5O0A
VX8caECvW9V6uEQ3QswZRqavkD+88RSuQbCJCQk747/TS5c4xwCnOvDx2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHtGeEBNn3NmB2bvnL5ENx5oC2UTMB8GA1UdIwQY
MBaAFKWO/RCNTFsPT5qIrlO7f+ydWUuSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFk3OUVJMU1XdzlQbW9pdVU3dF83SjFaUzVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9hM2I1YjItNjYzOC00YTRiLTliODUt
MTVjYzVkYTA3ODI2LzEvcFk3OUVJMU1XdzlQbW9pdVU3dF83SjFaUzVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9hM2I1YjItNjYzOC00YTRiLTliODUtMTVjYzVkYTA3ODI2
LzEvcFk3OUVJMU1XdzlQbW9pdVU3dF83SjFaUzVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcsI4gM6v
aLhB6KJ0b/o45A/eIETi/WkVWhxVOjLbdVYaAZmAu0mcG+OF/OqbASpNOgcxXF3t
jiz3yXyk75MugSAHUqBTeDVzXrjk5JCzHbq5Faa0GbswZ6FZmSdyy7t4G+bf9fxS
7En9tuNu3nDkzcEPwXi/gGHVc/tixg2nlb6Pflzz73Tfu+7bfnpiNskm1NntgKFC
Tl52tcc1DkSRrgrtJlqfpkoSzp0UhIXo8a1Wy9xZvfzMG6rsOcoYtXvyZGkhkTZf
oUXDDmxgw2Z6FawBRuCXT6Vd/jV1o4Rmr5LhPClkUgDyQqv/eRyzTmD/wj1fDuDy
khpyqgl9d3zQCA==
-----END CERTIFICATE-----