Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.mft
File:                     OFt-lPpg22hRcc8TabHO-24g8zQ.mft (raw, json)
Hash identifier:          txzFoXAWcvN76zcU/njlxsRkCj8olAMComZxpBju+bs=
Subject key identifier:   26:48:88:A0:BE:CC:44:FF:E1:B2:D7:BC:8D:D0:C1:E5:04:99:6D:5B
Authority key identifier: 38:5B:7E:94:FA:60:DB:68:51:71:CF:13:69:B1:CE:FB:6E:20:F3:34
Certificate issuer:       /CN=385b7e94fa60db685171cf1369b1cefb6e20f334
Certificate serial:       019D98F4A57212C8DFAD956C9E85ABD6D6FD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OFt-lPpg22hRcc8TabHO-24g8zQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.mft
Manifest number:          0814
Signing time:             Fri 17 Apr 2026 01:01:03 +0000
Manifest this update:     Fri 17 Apr 2026 01:01:03 +0000
Manifest next update:     Sat 18 Apr 2026 01:01:03 +0000
Files and hashes:         1: OFt-lPpg22hRcc8TabHO-24g8zQ.crl (hash: Vv8wC3tXZe8UcnVOm8HvgV7S6sjyUYVMK2tDKGarmrI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OFt-lPpg22hRcc8TabHO-24g8zQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f4:a5:72:12:c8:df:ad:95:6c:9e:85:ab:d6:d6:fd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=385b7e94fa60db685171cf1369b1cefb6e20f334
        Validity
            Not Before: Apr 17 01:01:03 2026 GMT
            Not After : Apr 18 01:01:03 2026 GMT
        Subject: CN=264888a0becc44ffe1b2d7bc8dd0c1e504996d5b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:69:a8:e3:fa:6f:6a:0a:73:6d:43:c9:21:56:
                    59:13:7b:89:46:7a:33:68:e9:91:f5:c8:98:ec:ce:
                    3c:a0:cf:48:fd:18:c3:96:3b:fb:fd:82:e5:38:7a:
                    5e:7a:57:b2:c7:99:e6:20:5f:69:46:cd:d1:23:fd:
                    21:f8:79:a8:07:ac:99:7b:1a:67:9a:06:e0:63:81:
                    d7:06:de:7a:63:8c:55:37:d6:db:ea:4f:80:f2:b9:
                    a7:1a:77:00:1a:17:04:c4:94:51:e1:f1:db:16:44:
                    39:72:a1:5c:d4:d0:7d:fa:9b:21:7e:8c:85:67:67:
                    02:b4:c0:74:a4:e8:a6:54:f9:dc:ac:74:c7:dc:30:
                    cc:99:ba:6f:16:1e:75:48:d4:9c:17:0c:00:4f:21:
                    cf:3a:3b:e1:8d:43:01:c4:e5:a8:8e:5b:9c:17:38:
                    3e:79:93:54:75:b1:d9:c9:91:9f:80:80:78:f4:ce:
                    4d:4a:06:fe:d2:3f:a8:da:ce:57:c8:73:a0:9c:ba:
                    59:e5:52:ad:99:f0:ce:92:6f:59:f2:d2:12:7c:a5:
                    13:16:9e:fe:a3:5e:10:3f:a7:52:3b:05:a4:7c:5b:
                    4d:bf:0c:b9:1f:c8:d0:d8:1c:4e:67:dc:11:1c:b4:
                    78:dd:1a:06:63:30:26:7e:99:b8:46:82:24:93:69:
                    e8:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:48:88:A0:BE:CC:44:FF:E1:B2:D7:BC:8D:D0:C1:E5:04:99:6D:5B
            X509v3 Authority Key Identifier:
                keyid:38:5B:7E:94:FA:60:DB:68:51:71:CF:13:69:B1:CE:FB:6E:20:F3:34

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFt-lPpg22hRcc8TabHO-24g8zQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:06:63:6b:1f:e8:e9:4c:29:b3:99:83:04:c3:93:c6:9c:2e:
         ef:dd:d8:d6:46:12:88:49:8a:5d:67:74:39:21:7b:d7:e7:df:
         2b:f6:0f:19:11:3d:9e:1a:15:9a:d5:46:39:10:a5:cd:16:04:
         05:e9:fa:e8:d4:ae:b7:e9:a9:16:43:a3:b6:ca:a3:ad:64:d5:
         97:1e:70:b0:69:71:96:29:19:93:2c:21:3b:6f:a8:2b:9e:29:
         7a:6b:a2:47:72:fb:d9:3d:c6:ff:c6:0c:16:c8:4e:8c:d4:c6:
         4a:f5:99:dd:64:9e:54:18:11:5f:48:a3:48:4a:83:ed:c1:da:
         21:98:b5:cf:b5:0b:e8:39:97:a5:47:41:3b:7c:5f:df:e7:14:
         ec:ea:5b:92:21:f9:9f:cb:21:14:0d:c1:54:ad:c2:41:29:b3:
         fc:af:83:6a:ad:8c:83:49:79:72:8e:e3:fc:d6:46:61:dc:aa:
         dc:85:77:65:38:da:fe:b2:8a:de:00:8a:6e:8b:e6:b1:ce:a0:
         65:15:39:5c:f6:38:0b:10:e3:42:4d:d2:f6:e7:39:16:d5:00:
         d7:aa:51:09:13:cf:ad:ea:e1:92:66:ad:20:53:3b:72:6d:02:
         52:c1:fb:86:14:4f:b8:c0:dc:9b:9c:6c:4d:c5:c9:80:16:21:
         aa:b4:07:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----