Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/78764b-95eb-40c0-ad04-dab68fd8786b/1/z5dREMc5t0-E1BcDxIgoMnJ73cw.mft
File:                     z5dREMc5t0-E1BcDxIgoMnJ73cw.mft (raw, json)
Hash identifier:          cMkQnJBgYck4aWFxxh59MXjB3xYeVoA5obM0gGIwtQQ=
Subject key identifier:   41:1D:6F:97:92:09:2C:B7:5A:69:26:DE:8D:87:7B:17:CA:67:2F:FA
Authority key identifier: CF:97:51:10:C7:39:B7:4F:84:D4:17:03:C4:88:28:32:72:7B:DD:CC
Certificate issuer:       /CN=cf975110c739b74f84d41703c4882832727bddcc
Certificate serial:       019D98F42C6C339E6CE60D82580665B57A7D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/z5dREMc5t0-E1BcDxIgoMnJ73cw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/27/78764b-95eb-40c0-ad04-dab68fd8786b/1/z5dREMc5t0-E1BcDxIgoMnJ73cw.mft
Manifest number:          184E
Signing time:             Fri 17 Apr 2026 01:00:32 +0000
Manifest this update:     Fri 17 Apr 2026 01:00:32 +0000
Manifest next update:     Sat 18 Apr 2026 01:00:32 +0000
Files and hashes:         1: z5dREMc5t0-E1BcDxIgoMnJ73cw.crl (hash: n5VO+0UvnFwGCcnN8fWBQ1C5OJu1InAlbUNmXxoXf+8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/27/78764b-95eb-40c0-ad04-dab68fd8786b/1/z5dREMc5t0-E1BcDxIgoMnJ73cw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/27/78764b-95eb-40c0-ad04-dab68fd8786b/1/z5dREMc5t0-E1BcDxIgoMnJ73cw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/z5dREMc5t0-E1BcDxIgoMnJ73cw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 01:00:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f4:2c:6c:33:9e:6c:e6:0d:82:58:06:65:b5:7a:7d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cf975110c739b74f84d41703c4882832727bddcc
        Validity
            Not Before: Apr 17 01:00:32 2026 GMT
            Not After : Apr 18 01:00:32 2026 GMT
        Subject: CN=411d6f9792092cb75a6926de8d877b17ca672ffa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:9b:63:44:ea:6b:19:23:a0:da:65:37:53:be:
                    07:cb:bf:fd:5f:73:b6:5a:f0:93:81:e1:8f:86:5f:
                    b6:7a:ce:ff:3e:45:b9:10:fa:09:d1:52:34:d0:e0:
                    90:fa:69:cc:01:fe:60:4a:a3:b6:a8:3d:39:c3:96:
                    1d:58:dc:48:24:f4:65:c6:fc:c4:d7:ac:89:61:aa:
                    0f:83:9b:81:e3:ec:d6:4a:db:d9:26:4a:39:4f:05:
                    c6:00:68:27:bd:f1:1f:d3:1f:77:2c:ee:f3:00:a7:
                    c4:b4:c2:15:c4:ab:86:78:d8:96:2d:b1:43:1c:17:
                    d0:c1:d0:b2:2d:8a:f2:9b:62:a1:c9:77:88:75:b8:
                    7b:a9:fb:6f:1e:68:39:6b:31:a9:ab:62:1b:29:56:
                    68:45:6a:4a:9c:c9:4e:9b:e9:0b:75:26:d6:22:fa:
                    f8:6a:46:d4:82:c6:95:3d:41:dd:52:41:d2:b6:89:
                    95:c7:53:b4:ce:92:51:c4:48:d2:76:af:b4:2d:db:
                    15:f4:78:a0:d4:74:e8:82:a5:11:b9:f5:72:c3:cc:
                    34:97:ac:e9:d0:c6:7d:5a:68:c5:2e:09:a5:56:37:
                    07:2e:9b:51:95:03:81:14:e0:8a:1e:b0:0a:1f:52:
                    8f:66:4c:df:c1:13:ae:e7:54:1d:0c:3c:99:2b:2f:
                    d4:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:1D:6F:97:92:09:2C:B7:5A:69:26:DE:8D:87:7B:17:CA:67:2F:FA
            X509v3 Authority Key Identifier:
                keyid:CF:97:51:10:C7:39:B7:4F:84:D4:17:03:C4:88:28:32:72:7B:DD:CC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z5dREMc5t0-E1BcDxIgoMnJ73cw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/78764b-95eb-40c0-ad04-dab68fd8786b/1/z5dREMc5t0-E1BcDxIgoMnJ73cw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/27/78764b-95eb-40c0-ad04-dab68fd8786b/1/z5dREMc5t0-E1BcDxIgoMnJ73cw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:e7:59:12:12:65:a2:70:cb:8a:81:20:b5:a3:61:fd:88:58:
         b4:89:bf:19:5a:9a:a2:df:7a:57:2c:64:ff:d1:84:08:17:de:
         fe:48:20:5d:c3:43:57:40:d6:cc:96:44:fa:d6:22:7d:c1:03:
         67:79:fe:5e:bf:ca:47:e3:95:9e:bf:70:3c:3d:25:8d:f4:b7:
         94:29:71:1b:2d:0f:0b:18:79:0d:52:62:98:6c:db:d7:30:17:
         50:01:f8:c0:ae:1d:f2:c3:c3:0b:99:87:a8:2d:ee:94:3b:cc:
         29:69:9e:2d:50:0f:fd:5d:f9:55:36:a1:61:11:44:37:26:f0:
         f6:10:49:40:62:6e:ec:3e:56:60:14:a8:a8:09:e9:bc:b0:ba:
         ce:07:79:89:6d:d6:70:65:e0:ef:e0:a8:31:f7:f4:b6:fe:6b:
         fb:8e:f6:05:eb:8b:dc:7e:d5:82:17:55:0e:19:75:e9:9a:e8:
         be:8c:de:79:b8:4b:0d:75:a2:a8:ce:85:16:a9:4a:29:a4:87:
         ac:1c:5c:fb:b9:7f:35:e3:5d:cd:31:18:11:6e:cf:ad:f4:50:
         ac:ef:3e:91:3f:94:6a:a6:29:b2:7a:da:a7:d0:a6:7d:c7:40:
         f3:47:df:b7:08:68:a5:bb:e3:b0:c5:4a:34:6a:28:0e:96:39:
         c3:f4:da:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----