Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft
File:                     1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft (raw, json)
Hash identifier:          ABq1u+VdXNhloxlKy66YwFqfktMAzfelQ1Y7Tv0w5bo=
Subject key identifier:   7B:9E:A9:24:3A:6C:72:95:C6:0C:1B:0E:F6:15:33:0D:9A:28:1E:B2
Authority key identifier: D5:F6:23:DA:4C:D2:EE:DD:C2:C8:7C:51:5C:62:51:8C:43:1D:3F:B5
Certificate issuer:       /CN=d5f623da4cd2eeddc2c87c515c62518c431d3fb5
Certificate serial:       019CAC46E7F1136944E4D90FA1470AD033A3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft
Manifest number:          055E
Signing time:             Mon 02 Mar 2026 02:00:53 +0000
Manifest this update:     Mon 02 Mar 2026 02:00:53 +0000
Manifest next update:     Tue 03 Mar 2026 02:00:53 +0000
Files and hashes:         1: 1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl (hash: AcExemlycbtLpdC919F1dxTad2McfCO0N5xrqdK/mi4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:46:e7:f1:13:69:44:e4:d9:0f:a1:47:0a:d0:33:a3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d5f623da4cd2eeddc2c87c515c62518c431d3fb5
        Validity
            Not Before: Mar  2 02:00:53 2026 GMT
            Not After : Mar  3 02:00:53 2026 GMT
        Subject: CN=7b9ea9243a6c7295c60c1b0ef615330d9a281eb2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:e0:e2:b0:0f:fe:56:3d:8e:96:b3:cd:18:3d:
                    e9:89:eb:73:92:0d:c5:8d:71:bc:1f:f5:5e:a4:27:
                    2d:6b:45:00:e2:8a:e1:3c:20:d8:cf:e6:2d:e1:82:
                    5f:15:0d:dc:12:5c:30:de:18:d5:69:33:4d:2b:93:
                    96:1a:7f:c4:45:c0:c4:52:87:31:51:ed:78:a6:f3:
                    07:d1:60:ea:47:af:6e:12:24:7b:0a:be:72:a8:85:
                    ff:81:2c:b7:62:8a:23:57:53:9a:c3:cb:fa:b8:67:
                    17:84:42:f6:3b:b0:e6:9f:aa:e9:d6:67:e8:20:ee:
                    05:a8:bd:f8:7c:cc:02:77:c8:af:8e:06:66:34:70:
                    e6:2f:f3:34:c5:20:d9:6a:1b:9e:8b:59:cb:23:3c:
                    4e:30:f1:f2:14:db:4f:27:5b:c6:6c:27:83:e4:70:
                    78:f7:d3:38:89:ed:92:4d:4c:10:62:fd:60:fc:4d:
                    ea:47:28:e2:41:5e:e0:78:72:74:49:db:b6:49:c1:
                    3d:b3:ac:88:61:20:f8:10:90:88:ab:02:03:e3:fb:
                    68:e5:3a:2a:76:db:21:d7:f0:08:92:d4:14:19:05:
                    66:b3:64:91:70:de:2b:70:59:da:1f:8b:95:30:1d:
                    e6:01:be:e2:6c:be:e0:90:ef:aa:0b:f6:2e:86:cf:
                    fa:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:9E:A9:24:3A:6C:72:95:C6:0C:1B:0E:F6:15:33:0D:9A:28:1E:B2
            X509v3 Authority Key Identifier:
                keyid:D5:F6:23:DA:4C:D2:EE:DD:C2:C8:7C:51:5C:62:51:8C:43:1D:3F:B5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:9a:68:18:37:c6:85:44:ac:ff:a5:05:9a:dd:9b:e4:29:9a:
         c0:82:cd:5f:91:43:31:6d:9e:7f:67:40:14:e4:6a:e1:ba:df:
         74:e7:7a:e9:34:06:11:bd:55:4a:4f:ef:6e:4d:fe:dd:c0:a2:
         56:a1:47:35:1b:22:f1:48:d7:40:da:d1:5c:fa:73:73:02:6b:
         de:e9:42:82:b9:8b:73:00:0a:87:32:8e:af:6f:44:96:b0:48:
         27:ea:28:05:12:59:19:ca:f3:e2:9a:3d:71:67:c5:c6:69:7c:
         3e:e0:7d:d7:a2:2a:e3:9e:cd:b8:4a:2c:8d:c8:37:00:58:fd:
         f6:0e:5d:a4:b5:9e:91:ad:62:29:84:15:91:fe:8e:e7:e6:e5:
         36:24:43:b3:d7:61:45:f5:8b:1d:2d:22:54:06:84:5b:ac:ba:
         3d:1b:fe:75:cc:3d:15:a6:ef:14:2f:23:2b:f6:83:be:87:5a:
         53:ff:3a:bc:7b:40:6f:60:21:7b:68:ae:7d:78:f2:f5:ad:d7:
         06:31:40:b8:f4:fb:41:30:7a:6f:bc:f2:f0:58:56:4b:fd:de:
         65:d8:0a:e0:12:2c:fd:8d:25:da:66:55:3d:29:69:49:f4:e6:
         2f:85:be:d0:d3:3b:12:61:1e:8d:d2:5c:be:14:ee:8a:b5:7b:
         51:04:3b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----