Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
File:                     HSXQyIRbeYhsGZNFuJD16KzVFtg.mft (raw, json)
Hash identifier:          62E60m8G9R+5x5UfxEYZPwPnIJNvCf1p7PI+CRnfNcs=
Subject key identifier:   42:37:17:64:97:75:CB:E5:A0:EE:80:38:4C:34:00:56:CA:C9:02:14
Authority key identifier: 1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8
Certificate issuer:       /CN=1d25d0c8845b79886c199345b890f5e8acd516d8
Certificate serial:       019CA9EA9F1DC1ED14D3A505A31CC6904563
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
Manifest number:          183F
Signing time:             Sun 01 Mar 2026 15:00:51 +0000
Manifest this update:     Sun 01 Mar 2026 15:00:51 +0000
Manifest next update:     Mon 02 Mar 2026 15:00:51 +0000
Files and hashes:         1: HSXQyIRbeYhsGZNFuJD16KzVFtg.crl (hash: sVj+iWD6WG4fHudHkj7PI1JRmPxxsL3ZPK6KzB0VcSA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 15:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:a9:ea:9f:1d:c1:ed:14:d3:a5:05:a3:1c:c6:90:45:63
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1d25d0c8845b79886c199345b890f5e8acd516d8
        Validity
            Not Before: Mar  1 15:00:51 2026 GMT
            Not After : Mar  2 15:00:51 2026 GMT
        Subject: CN=423717649775cbe5a0ee80384c340056cac90214
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:7c:df:50:44:68:06:a1:71:9f:e1:59:11:e3:
                    97:cc:5a:ac:1c:d9:51:c4:49:6e:dc:30:13:b4:d2:
                    66:af:99:4a:2c:0b:01:cc:64:c5:7c:29:94:1a:b5:
                    4d:86:f7:5a:e1:96:18:34:6c:09:5f:90:77:7d:d3:
                    87:a9:9d:df:8d:21:9f:c3:f2:ed:91:2d:89:70:01:
                    05:df:1d:54:4e:7a:32:56:be:da:65:1b:75:a4:d0:
                    46:0f:ba:1d:ac:03:3d:af:60:1e:b6:bc:df:b7:8c:
                    b6:73:f8:26:ee:2b:93:3d:5a:a0:b0:12:fd:f5:5f:
                    23:4d:c1:2c:6d:cb:71:6f:b8:e2:63:e6:e8:8d:fb:
                    0e:bc:e8:65:91:8a:34:cd:57:25:c5:b9:2d:8a:9d:
                    ef:a3:f6:c1:33:e2:27:02:30:6e:03:a8:49:e1:3a:
                    f9:bf:be:8f:8e:c3:66:8e:27:26:7f:22:7b:4e:c3:
                    bb:f9:09:0a:99:1c:40:9b:1f:59:ec:24:eb:83:f7:
                    c2:48:1e:bd:9e:04:28:a1:c5:9e:92:e3:55:fd:0d:
                    17:c1:13:7f:af:8d:b0:5b:60:a5:95:2c:ba:84:7c:
                    e1:11:0d:48:c2:7c:f3:9d:0c:3f:bf:05:0d:ba:11:
                    09:11:26:fb:56:65:31:ed:7d:a0:96:39:5a:5a:bb:
                    4a:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:37:17:64:97:75:CB:E5:A0:EE:80:38:4C:34:00:56:CA:C9:02:14
            X509v3 Authority Key Identifier:
                keyid:1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:a5:89:e5:55:e8:51:cc:eb:ca:47:92:40:24:35:f3:1c:cc:
         ad:12:54:ac:8d:bc:40:bb:a9:ad:24:49:b1:5a:3e:6a:1a:67:
         6f:71:d9:dc:bd:c8:9b:46:25:36:3c:fa:78:21:e6:ec:06:43:
         7e:71:46:57:8e:05:9b:23:b9:b0:85:1d:2b:0d:4f:45:5c:9b:
         dd:c8:3a:dc:e7:2e:bf:d8:1a:b4:97:18:5f:3c:06:10:da:56:
         a8:7e:1f:ef:da:b1:21:fa:d3:ce:d3:51:98:a8:d1:33:b3:d7:
         1c:a3:a4:84:bb:da:d0:0f:21:93:78:12:d6:0b:29:28:e5:61:
         e1:f7:93:9a:82:61:c5:23:49:89:bf:c2:fd:9a:97:08:2d:39:
         3c:08:f6:e7:63:26:bf:6d:35:57:81:86:f0:7c:b4:91:50:cc:
         ab:1b:70:f2:d5:83:c1:fa:ed:3e:54:b5:78:80:0d:37:b1:d4:
         16:94:cf:fa:b1:5f:89:b2:85:cf:00:0f:01:97:00:d0:e9:39:
         a7:93:82:32:89:96:8a:12:ed:d2:7f:35:43:60:73:f6:4a:d8:
         34:4c:f1:91:de:aa:5e:d0:da:4d:22:4a:94:7a:aa:e7:fe:e4:
         26:90:e5:ec:98:2c:e8:76:65:31:ad:da:0a:68:bc:cc:c8:ae:
         8d:63:09:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----