Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
File:                     JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft (raw, json)
Hash identifier:          MwMPv2RFZ8s5oXWFuA5V2yRBzdCzqBMLBr3zpP4UH/Y=
Subject key identifier:   01:E9:45:90:0E:8F:16:34:C1:14:D9:A2:2A:CD:16:37:92:4F:B9:42
Authority key identifier: 27:1B:98:A6:0A:92:68:20:A4:8C:B4:3A:4A:F3:08:C8:8F:F2:72:1A
Certificate issuer:       /CN=271b98a60a926820a48cb43a4af308c88ff2721a
Certificate serial:       019D9C2D3C70D1C8298CBDBEBF14C2404C6F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JxuYpgqSaCCkjLQ6SvMIyI_ycho.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
Manifest number:          1187
Signing time:             Fri 17 Apr 2026 16:01:43 +0000
Manifest this update:     Fri 17 Apr 2026 16:01:43 +0000
Manifest next update:     Sat 18 Apr 2026 16:01:43 +0000
Files and hashes:         1: JxuYpgqSaCCkjLQ6SvMIyI_ycho.crl (hash: 0Geq/SvlZnCbZWPubNFiJlLQJRrjZjWYBJXboWiwrp4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JxuYpgqSaCCkjLQ6SvMIyI_ycho.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 16:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9c:2d:3c:70:d1:c8:29:8c:bd:be:bf:14:c2:40:4c:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=271b98a60a926820a48cb43a4af308c88ff2721a
        Validity
            Not Before: Apr 17 16:01:43 2026 GMT
            Not After : Apr 18 16:01:43 2026 GMT
        Subject: CN=01e945900e8f1634c114d9a22acd1637924fb942
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:d8:13:c0:e8:47:f4:90:30:ec:c0:ee:d5:f7:
                    d9:91:86:e8:29:1e:8b:db:f1:8e:4f:3a:ba:8f:29:
                    b6:71:c7:dd:68:be:8e:1c:88:11:d0:d3:16:5b:f7:
                    e2:e8:5d:e2:fa:d2:ca:22:e1:2c:2f:3e:dd:1d:21:
                    81:18:14:80:e2:da:90:67:ba:72:df:11:5e:4a:c4:
                    0d:25:be:d5:d5:78:52:7a:ab:8c:f2:2e:f3:28:be:
                    13:40:52:98:b6:b1:12:b6:62:28:7d:0a:cd:47:71:
                    f9:c3:32:dc:23:9c:96:38:f8:90:22:47:e3:f0:ff:
                    9d:d6:4a:be:4b:ee:ec:3f:a6:a0:e3:e8:5e:2d:bf:
                    62:b7:55:2a:ee:23:76:15:93:18:63:ba:f7:0b:6d:
                    81:0f:16:58:4b:d0:58:b8:28:58:fe:8b:42:6a:47:
                    cf:7a:18:28:cd:91:3e:b9:e2:e9:af:bb:2e:0b:3b:
                    02:35:28:18:af:9c:3c:53:58:9a:ae:4b:3c:0c:9d:
                    6e:5e:5e:34:b4:19:6b:20:5a:98:84:59:4f:78:cc:
                    2f:7c:43:8d:dd:44:fc:4c:70:50:ac:6a:60:b0:09:
                    7e:1b:9d:bb:d7:3c:43:e2:1e:78:1c:0f:79:dc:71:
                    48:0f:4c:bc:55:03:af:22:40:23:08:8e:06:f1:6c:
                    c6:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:E9:45:90:0E:8F:16:34:C1:14:D9:A2:2A:CD:16:37:92:4F:B9:42
            X509v3 Authority Key Identifier:
                keyid:27:1B:98:A6:0A:92:68:20:A4:8C:B4:3A:4A:F3:08:C8:8F:F2:72:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JxuYpgqSaCCkjLQ6SvMIyI_ycho.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:d4:83:2e:71:8d:1a:46:fd:1b:3a:54:c9:b0:6b:f8:ce:c9:
         f2:bb:bb:94:53:61:76:f8:a6:10:15:63:eb:58:3f:7e:be:57:
         09:bb:4a:6f:31:d9:49:a1:2c:7c:1b:e2:0d:7a:16:7f:9a:b4:
         2a:32:41:5a:a3:f4:a0:68:10:24:86:c7:d5:db:2d:d7:e5:26:
         86:50:2c:f3:13:c0:bd:74:d6:de:44:a2:7a:55:c2:35:7c:2a:
         ac:16:54:fa:e6:49:43:30:8d:d3:70:eb:42:9f:89:f8:0a:53:
         1e:3b:59:f7:6e:b7:9e:2a:00:22:c4:f8:fa:fa:2d:13:3b:23:
         b7:24:ed:29:93:18:d0:97:77:15:6e:ce:ca:c4:72:0c:a7:fc:
         ee:e1:65:48:69:cd:de:e9:39:8f:46:17:db:80:33:46:f3:9e:
         13:db:cb:21:d9:73:58:3b:7d:3f:5a:27:67:bb:38:c8:49:f6:
         2d:71:21:12:06:9a:32:08:f0:e1:f3:dc:c7:8f:27:36:ff:2f:
         15:de:a4:ef:15:10:a3:4b:e2:cc:3e:40:2c:8d:9f:85:c5:0d:
         49:12:15:94:e2:ea:3d:a3:58:b1:a6:06:94:41:67:3c:94:f4:
         63:ec:50:a3:3e:92:13:9a:07:c8:3e:76:d7:85:16:43:48:43:
         74:c4:76:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----