Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
File:                     0WLUzQwan_4krVFT0Zzpwx3LTH0.mft (raw, json)
Hash identifier:          hFaT4n0Xvkd335Tgkj12brYdg8O6enIW6ZXt/++oD/E=
Subject key identifier:   BE:C3:4A:3B:2D:BB:44:87:09:D2:E6:E5:16:EF:74:E4:B9:0D:E9:EE
Authority key identifier: D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D
Certificate issuer:       /CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
Certificate serial:       019CAA582480B1F7570F9AAA42440B80BF25
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
Manifest number:          1840
Signing time:             Sun 01 Mar 2026 17:00:28 +0000
Manifest this update:     Sun 01 Mar 2026 17:00:28 +0000
Manifest next update:     Mon 02 Mar 2026 17:00:28 +0000
Files and hashes:         1: 0WLUzQwan_4krVFT0Zzpwx3LTH0.crl (hash: a+wKgDS+Wwmul74pTABvzlrvLmXOyy6J6605XFLFuMQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 15:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:58:24:80:b1:f7:57:0f:9a:aa:42:44:0b:80:bf:25
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d
        Validity
            Not Before: Mar  1 17:00:28 2026 GMT
            Not After : Mar  2 17:00:28 2026 GMT
        Subject: CN=bec34a3b2dbb448709d2e6e516ef74e4b90de9ee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:98:a3:d8:46:19:85:f3:8a:65:7d:4a:44:c5:
                    62:fa:d7:11:f8:a2:b2:b7:b3:c1:b4:67:25:2c:8f:
                    e8:18:9f:f9:92:4a:5e:23:fe:61:83:02:e7:53:7b:
                    07:5a:0a:e7:9b:df:41:cf:36:34:0e:09:f0:ea:ad:
                    3f:32:d6:2c:ac:d9:0e:4a:86:e3:c8:2c:43:11:7a:
                    23:69:26:37:41:e7:a6:28:74:de:13:da:87:03:0b:
                    bb:0e:b1:8f:78:36:e3:01:52:ac:5a:5c:6f:48:71:
                    a9:73:7a:85:5f:49:83:22:89:20:38:2a:d5:54:3c:
                    c5:14:70:ff:0f:2a:6d:98:91:10:36:97:32:00:6e:
                    ef:c5:3b:1e:c0:2f:36:15:1d:9a:d3:e0:28:23:bd:
                    5e:be:0b:e5:f5:c7:7e:67:27:e0:f5:b2:0c:8a:a8:
                    a1:96:0c:6c:35:55:e6:e1:66:ec:66:94:ab:65:7b:
                    3e:99:9e:1b:05:e3:94:3a:99:9d:c4:c4:02:52:78:
                    e7:23:e0:63:b2:41:2c:21:1d:86:fa:9d:af:4c:3f:
                    6f:7b:cb:d7:ed:17:d7:ee:31:14:ed:17:32:ef:db:
                    6c:c4:2f:e2:2c:a7:ca:92:09:5e:8a:5c:82:02:87:
                    2f:19:c0:5b:a5:e4:2a:21:4e:02:c9:dc:ed:c5:ab:
                    8b:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BE:C3:4A:3B:2D:BB:44:87:09:D2:E6:E5:16:EF:74:E4:B9:0D:E9:EE
            X509v3 Authority Key Identifier:
                keyid:D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:5e:88:88:f9:52:98:60:ef:40:04:de:3b:b3:e4:4d:e3:bc:
         65:40:c1:1d:93:fe:d6:ee:0f:9b:20:87:50:21:91:e5:60:9b:
         db:e2:4c:04:8d:b2:de:ce:cb:8a:43:ed:34:30:ae:27:67:e5:
         14:f2:28:11:dc:e0:fe:fb:4b:25:a2:e7:6c:3e:c0:c0:e1:cc:
         37:66:57:f3:79:98:3f:95:25:84:94:aa:15:06:f5:43:d3:19:
         b9:18:4d:e8:57:19:0c:03:22:ef:83:56:9e:ad:a4:f7:2a:d7:
         89:b3:51:f1:f2:db:37:a6:84:a5:7d:f2:3c:89:25:ea:7c:33:
         9b:ad:7b:5a:85:7f:32:7b:60:1f:59:52:1f:57:25:93:de:5a:
         8d:cd:3d:4f:6e:30:a3:f2:4f:ba:d7:8a:2c:19:7d:b8:6f:4c:
         0c:e3:a4:1f:d5:d7:88:13:fb:86:de:9e:7d:66:a1:79:88:88:
         76:2e:b2:c5:91:02:78:c5:db:42:7b:7a:7c:bb:77:d1:05:34:
         3a:d1:34:32:e9:26:51:d5:8e:90:4f:15:24:1a:6b:93:29:4b:
         53:42:81:f3:da:bd:32:8d:bc:90:d0:b2:3a:6c:6d:42:2d:bf:
         bf:2b:8a:db:fb:b5:86:b0:f4:4a:b9:c8:d9:c0:f7:e6:79:82:
         82:3d:80:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqWCSAsfdXD5qqQkQLgL8lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxNjJkNGNkMGMxYTlmZmUyNGFkNTE1M2QxOWNlOWMzMWRj
YjRjN2QwHhcNMjYwMzAxMTcwMDI4WhcNMjYwMzAyMTcwMDI4WjAzMTEwLwYDVQQD
EyhiZWMzNGEzYjJkYmI0NDg3MDlkMmU2ZTUxNmVmNzRlNGI5MGRlOWVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3pij2EYZhfOKZX1KRMVi+tcR+KKy
t7PBtGclLI/oGJ/5kkpeI/5hgwLnU3sHWgrnm99BzzY0Dgnw6q0/MtYsrNkOSobj
yCxDEXojaSY3QeemKHTeE9qHAwu7DrGPeDbjAVKsWlxvSHGpc3qFX0mDIokgOCrV
VDzFFHD/DyptmJEQNpcyAG7vxTsewC82FR2a0+AoI71evgvl9cd+Zyfg9bIMiqih
lgxsNVXm4WbsZpSrZXs+mZ4bBeOUOpmdxMQCUnjnI+BjskEsIR2G+p2vTD9ve8vX
7RfX7jEU7Rcy79tsxC/iLKfKkgleilyCAocvGcBbpeQqIU4CydztxauLDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL7DSjstu0SHCdLm5RbvdOS5DenuMB8GA1UdIwQY
MBaAFNFi1M0MGp/+JK1RU9Gc6cMdy0x9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi81Zjg0YTEtZThkYy00MTE1LWE2NDUt
ZTgxNzIwYTM5NzhkLzEvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi81Zjg0YTEtZThkYy00MTE1LWE2NDUtZTgxNzIwYTM5Nzhk
LzEvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALV6IiPlS
mGDvQATeO7PkTeO8ZUDBHZP+1u4PmyCHUCGR5WCb2+JMBI2y3s7LikPtNDCuJ2fl
FPIoEdzg/vtLJaLnbD7AwOHMN2ZX83mYP5UlhJSqFQb1Q9MZuRhN6FcZDAMi74NW
nq2k9yrXibNR8fLbN6aEpX3yPIkl6nwzm617WoV/MntgH1lSH1clk95ajc09T24w
o/JPuteKLBl9uG9MDOOkH9XXiBP7ht6efWaheYiIdi6yxZECeMXbQnt6fLt30QU0
OtE0MukmUdWOkE8VJBprkylLU0KB89q9Mo28kNCyOmxtQi2/vyuK2/u1hrD0SrnI
2cD35nmCgj2Aug==
-----END CERTIFICATE-----