Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.mft
File:                     hVLmDnmh3nUzQ9eBW4cMloDArn8.mft (raw, json)
Hash identifier:          g93AsfJB/HY9/i/9CWz/Sh6eVMsQ92/Lmg580vji6wc=
Subject key identifier:   A4:82:D3:CA:1E:87:C9:2C:D2:48:F4:CF:6C:1D:53:B6:E6:72:54:EE
Authority key identifier: 85:52:E6:0E:79:A1:DE:75:33:43:D7:81:5B:87:0C:96:80:C0:AE:7F
Certificate issuer:       /CN=8552e60e79a1de753343d7815b870c9680c0ae7f
Certificate serial:       019D98F45B6BF63F3F871AACD915E0CE3B89
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hVLmDnmh3nUzQ9eBW4cMloDArn8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.mft
Manifest number:          0E92
Signing time:             Fri 17 Apr 2026 01:00:44 +0000
Manifest this update:     Fri 17 Apr 2026 01:00:44 +0000
Manifest next update:     Sat 18 Apr 2026 01:00:44 +0000
Files and hashes:         1: hVLmDnmh3nUzQ9eBW4cMloDArn8.crl (hash: jv8ghY9gUl217v9AqYj2Wx3+MKgCMku3l5zsA591+FA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hVLmDnmh3nUzQ9eBW4cMloDArn8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f4:5b:6b:f6:3f:3f:87:1a:ac:d9:15:e0:ce:3b:89
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8552e60e79a1de753343d7815b870c9680c0ae7f
        Validity
            Not Before: Apr 17 01:00:44 2026 GMT
            Not After : Apr 18 01:00:44 2026 GMT
        Subject: CN=a482d3ca1e87c92cd248f4cf6c1d53b6e67254ee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:13:fa:5d:cf:e6:bf:e9:8c:7c:b4:22:0f:df:
                    37:cf:57:3b:56:cd:d1:be:6e:8c:20:bc:4e:63:87:
                    2f:f3:a7:44:33:16:dc:eb:06:39:cf:4b:04:94:b4:
                    68:24:0b:a6:48:4a:39:99:5d:25:a7:dc:78:88:2e:
                    01:99:8b:dc:53:d4:c6:e7:fc:c4:1e:c2:07:f5:d5:
                    26:61:b8:45:05:09:ea:ea:d4:69:cc:42:9b:6d:95:
                    06:5e:13:e0:a7:71:36:0f:b8:9f:5f:0e:8d:10:fc:
                    e6:be:bb:c0:eb:86:6d:99:46:64:fd:90:96:25:81:
                    f9:03:f6:65:46:62:4b:c7:1d:22:b5:af:df:0e:6a:
                    a0:62:50:c7:67:a1:45:4e:59:f6:15:6a:82:41:fa:
                    f7:cb:57:fd:f7:dd:49:d1:23:ee:47:b7:11:0d:35:
                    80:83:b2:1f:17:f4:21:07:28:94:7a:3f:b6:3c:34:
                    c4:5d:5a:46:89:3e:4e:66:2c:a4:5b:cb:80:01:b7:
                    92:36:2a:d8:f1:85:5a:14:20:39:4a:26:e7:9e:24:
                    df:67:74:b7:92:99:83:94:b2:0f:b4:f2:a4:07:4a:
                    a8:c9:8b:38:ab:84:7c:0d:03:27:aa:fc:9e:47:18:
                    dd:4c:8b:9c:3d:2b:b5:9b:84:1a:99:52:10:de:5a:
                    33:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:82:D3:CA:1E:87:C9:2C:D2:48:F4:CF:6C:1D:53:B6:E6:72:54:EE
            X509v3 Authority Key Identifier:
                keyid:85:52:E6:0E:79:A1:DE:75:33:43:D7:81:5B:87:0C:96:80:C0:AE:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVLmDnmh3nUzQ9eBW4cMloDArn8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/30/3724d3-212f-48bf-a2c1-9ffa60db8f71/1/hVLmDnmh3nUzQ9eBW4cMloDArn8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:7c:41:a5:0c:f3:8c:8e:d5:c5:65:ec:ab:25:ab:4d:71:85:
         68:46:e9:4f:4a:67:48:7b:41:54:be:83:d5:65:80:5d:09:35:
         b1:ab:31:3b:ab:1b:68:18:79:ce:ae:31:0b:49:21:be:3b:8c:
         7e:e8:c2:94:a4:90:8c:6e:15:88:00:19:18:32:59:52:0d:0d:
         10:a1:28:79:73:27:fd:52:0b:cf:0c:41:0b:d1:e5:29:5f:bd:
         00:81:bc:c6:f6:02:1d:e8:1a:26:2a:c4:90:00:1e:c8:44:13:
         92:34:d1:9e:d7:71:1a:55:70:66:4b:a1:cc:dc:60:5d:f0:e1:
         24:ee:3e:05:ed:1d:fa:44:2e:3e:7e:78:7f:1b:be:e4:90:67:
         1d:d7:a7:31:c4:36:ba:e5:3d:0e:24:2d:29:8e:88:29:cd:3d:
         1f:53:3d:64:97:f9:9a:3c:e0:b0:fc:35:1f:a0:3b:f5:d3:06:
         4b:7e:b9:a7:5e:02:27:2d:b8:da:92:66:f7:80:60:48:76:c3:
         95:b5:95:c2:be:75:71:d6:77:11:b0:12:76:0c:1c:f0:95:38:
         bb:61:61:80:f8:ed:f9:69:fa:31:9a:08:59:ae:4d:d7:b9:b4:
         87:23:68:8b:e6:ce:a6:c4:f7:66:6a:b0:54:47:17:07:de:68:
         2e:48:be:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----