Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft
File:                     q3rQAuSQheSApRIaeaJvztr_oZs.mft (raw, json)
Hash identifier:          QVi3Eve1qm2/0vR8U3pR4DpwxB/iF6S8cXlO/rJnqGQ=
Subject key identifier:   F6:1C:01:1B:93:2D:37:2F:D2:F0:8D:34:72:D1:E5:EC:2B:FD:61:3C
Authority key identifier: AB:7A:D0:02:E4:90:85:E4:80:A5:12:1A:79:A2:6F:CE:DA:FF:A1:9B
Certificate issuer:       /CN=ab7ad002e49085e480a5121a79a26fcedaffa19b
Certificate serial:       019CAD2287296CE117736931C982C3AB5BF5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft
Manifest number:          1543
Signing time:             Mon 02 Mar 2026 06:00:46 +0000
Manifest this update:     Mon 02 Mar 2026 06:00:46 +0000
Manifest next update:     Tue 03 Mar 2026 06:00:46 +0000
Files and hashes:         1: q3rQAuSQheSApRIaeaJvztr_oZs.crl (hash: 74jE4L3wrmpwpXgZI3/18X8hVTnSosBsyCIVtamflHE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:22:87:29:6c:e1:17:73:69:31:c9:82:c3:ab:5b:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ab7ad002e49085e480a5121a79a26fcedaffa19b
        Validity
            Not Before: Mar  2 06:00:46 2026 GMT
            Not After : Mar  3 06:00:46 2026 GMT
        Subject: CN=f61c011b932d372fd2f08d3472d1e5ec2bfd613c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:b7:4a:36:f8:95:d8:a9:1e:c0:38:b6:8e:9f:
                    c8:07:11:88:4a:5f:2b:4b:87:9e:7f:49:1a:25:bd:
                    f8:cc:31:57:0f:77:b2:4d:73:8d:11:e3:4e:f4:68:
                    88:e1:6c:6d:c3:0d:21:b4:65:d5:f5:27:9a:ff:31:
                    21:69:87:23:88:a7:8b:e8:d4:16:5d:6d:a9:5f:40:
                    3c:51:4d:c0:9d:17:9b:eb:b3:8f:1c:5c:c1:b9:6c:
                    de:8f:35:24:1a:b6:4e:a0:1c:b8:4e:32:ed:27:19:
                    e1:f6:64:e9:a2:4e:a6:6d:53:f0:6d:7b:be:aa:59:
                    a1:ef:eb:7b:3f:11:7d:ba:bd:a5:b8:9e:cc:94:20:
                    55:4c:5c:b8:a2:ae:9b:2c:44:4f:5d:2d:8f:9d:3c:
                    f8:8e:93:25:f8:2a:a0:07:0a:25:69:ed:66:b7:1d:
                    50:1c:0d:f0:2d:e2:95:f8:b0:3d:25:97:37:23:dd:
                    1d:83:29:a6:1f:eb:88:a7:14:dd:57:52:ee:cc:59:
                    da:ad:e7:46:7b:aa:45:57:14:01:cb:0b:2b:a6:08:
                    76:a9:65:c3:38:53:07:bd:1d:eb:01:42:b4:b7:7d:
                    96:e2:a0:2d:68:98:f3:64:75:6c:14:8d:3f:9d:97:
                    b3:92:af:72:87:67:e7:06:90:a1:28:08:46:fd:bd:
                    e1:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:1C:01:1B:93:2D:37:2F:D2:F0:8D:34:72:D1:E5:EC:2B:FD:61:3C
            X509v3 Authority Key Identifier:
                keyid:AB:7A:D0:02:E4:90:85:E4:80:A5:12:1A:79:A2:6F:CE:DA:FF:A1:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3rQAuSQheSApRIaeaJvztr_oZs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/22/24fbb6-86bc-46cb-88e5-b5873ba8fe47/1/q3rQAuSQheSApRIaeaJvztr_oZs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:f0:7a:7a:13:0b:e8:1e:1c:4f:04:7e:b6:9f:60:02:7d:ab:
         3e:1c:15:cd:68:70:fc:93:73:79:c9:a4:8e:62:b4:c7:78:57:
         53:77:ce:9f:21:d3:a8:30:3b:87:43:2e:82:61:63:b4:0c:5d:
         76:8e:b5:63:78:99:c5:ae:24:62:45:93:fa:4f:ec:d2:b1:a0:
         a3:53:d9:81:52:1d:48:6f:05:e0:bf:a7:a9:e8:d7:6b:76:96:
         bb:6a:7e:e7:54:1e:57:97:73:a5:2c:8d:51:37:bc:7b:4b:5b:
         6d:bd:e9:5b:3d:7f:a3:84:88:38:e7:49:df:28:0f:47:d7:b2:
         be:28:6a:7f:08:86:48:f9:c2:dd:66:a5:56:1d:98:e9:43:9b:
         19:25:48:10:0b:b6:55:01:8f:00:eb:26:b8:99:0d:32:21:42:
         2c:04:20:7e:9c:db:a5:15:c3:bc:5e:60:6c:05:a3:37:37:58:
         6d:0d:ce:87:bf:42:ee:3d:1a:b0:df:f1:19:4a:5c:92:e5:86:
         21:e6:26:f6:24:3e:98:45:1f:a1:b7:cf:8b:29:77:1b:e9:f9:
         fc:25:b3:16:90:cb:0d:44:b8:40:1d:f3:53:67:97:a8:69:53:
         36:73:3e:ad:fb:51:42:c7:8e:01:bd:db:c4:09:94:2f:76:36:
         3d:a8:50:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytIocpbOEXc2kxyYLDq1v1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiN2FkMDAyZTQ5MDg1ZTQ4MGE1MTIxYTc5YTI2ZmNlZGFm
ZmExOWIwHhcNMjYwMzAyMDYwMDQ2WhcNMjYwMzAzMDYwMDQ2WjAzMTEwLwYDVQQD
EyhmNjFjMDExYjkzMmQzNzJmZDJmMDhkMzQ3MmQxZTVlYzJiZmQ2MTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbdKNviV2KkewDi2jp/IBxGISl8r
S4eef0kaJb34zDFXD3eyTXONEeNO9GiI4Wxtww0htGXV9Sea/zEhaYcjiKeL6NQW
XW2pX0A8UU3AnReb67OPHFzBuWzejzUkGrZOoBy4TjLtJxnh9mTpok6mbVPwbXu+
qlmh7+t7PxF9ur2luJ7MlCBVTFy4oq6bLERPXS2PnTz4jpMl+CqgBwolae1mtx1Q
HA3wLeKV+LA9JZc3I90dgymmH+uIpxTdV1LuzFnaredGe6pFVxQBywsrpgh2qWXD
OFMHvR3rAUK0t32W4qAtaJjzZHVsFI0/nZezkq9yh2fnBpChKAhG/b3hhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPYcARuTLTcv0vCNNHLR5ewr/WE8MB8GA1UdIwQY
MBaAFKt60ALkkIXkgKUSGnmib87a/6GbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTNyUUF1U1FoZVNBcFJJYWVhSnZ6dHJfb1pzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yNGZiYjYtODZiYy00NmNiLTg4ZTUt
YjU4NzNiYThmZTQ3LzEvcTNyUUF1U1FoZVNBcFJJYWVhSnZ6dHJfb1pzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi8yNGZiYjYtODZiYy00NmNiLTg4ZTUtYjU4NzNiYThmZTQ3
LzEvcTNyUUF1U1FoZVNBcFJJYWVhSnZ6dHJfb1pzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbfB6ehML
6B4cTwR+tp9gAn2rPhwVzWhw/JNzecmkjmK0x3hXU3fOnyHTqDA7h0MugmFjtAxd
do61Y3iZxa4kYkWT+k/s0rGgo1PZgVIdSG8F4L+nqejXa3aWu2p+51QeV5dzpSyN
UTe8e0tbbb3pWz1/o4SIOOdJ3ygPR9eyvihqfwiGSPnC3WalVh2Y6UObGSVIEAu2
VQGPAOsmuJkNMiFCLAQgfpzbpRXDvF5gbAWjNzdYbQ3Oh79C7j0asN/xGUpckuWG
IeYm9iQ+mEUfobfPiyl3G+n5/CWzFpDLDUS4QB3zU2eXqGlTNnM+rftRQseOAb3b
xAmUL3Y2PahQ0w==
-----END CERTIFICATE-----