Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft
File:                     AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft (raw, json)
Hash identifier:          tcKd2qaumBhwXU/yO5u8yw7gw6jN3YuVxMa0qpIpW/0=
Subject key identifier:   C7:C0:F1:7F:97:A3:BB:92:83:9B:55:AE:64:45:39:C1:29:F1:E7:83
Authority key identifier: 03:1C:8E:8C:C0:75:C2:D0:43:13:B9:11:D9:3D:61:FE:2A:9A:DE:A2
Certificate issuer:       /CN=031c8e8cc075c2d04313b911d93d61fe2a9adea2
Certificate serial:       019CAD59F4B77813DC9BFB5DAF7B687DA7CB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AxyOjMB1wtBDE7kR2T1h_iqa3qI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft
Manifest number:          07C6
Signing time:             Mon 02 Mar 2026 07:01:19 +0000
Manifest this update:     Mon 02 Mar 2026 07:01:19 +0000
Manifest next update:     Tue 03 Mar 2026 07:01:19 +0000
Files and hashes:         1: AxyOjMB1wtBDE7kR2T1h_iqa3qI.crl (hash: CpT80nopmyZPOma6w2G7ZRun2BHz1HWNtQPzCmzFip8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AxyOjMB1wtBDE7kR2T1h_iqa3qI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:59:f4:b7:78:13:dc:9b:fb:5d:af:7b:68:7d:a7:cb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=031c8e8cc075c2d04313b911d93d61fe2a9adea2
        Validity
            Not Before: Mar  2 07:01:19 2026 GMT
            Not After : Mar  3 07:01:19 2026 GMT
        Subject: CN=c7c0f17f97a3bb92839b55ae644539c129f1e783
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:e9:8e:85:ee:3e:e7:f8:5a:c3:67:42:87:46:
                    34:38:47:c8:d4:1c:ac:50:62:dd:36:89:e1:ca:21:
                    8e:cf:85:fc:83:7a:18:c4:4e:67:4e:ec:75:d9:0e:
                    dc:bf:0c:22:99:73:bf:c2:34:07:1c:c3:e8:71:4c:
                    79:79:25:10:6a:b1:52:cb:7d:98:2b:ce:25:56:d7:
                    10:63:71:aa:48:03:9b:51:2d:18:df:70:cf:8b:30:
                    10:68:d9:4b:a6:6f:c9:22:98:8f:ea:c8:bb:1c:a2:
                    d3:80:cb:55:0a:03:07:3c:1c:e7:bc:60:54:2f:38:
                    d0:44:6f:4f:3b:99:b4:2a:44:35:30:73:d3:e6:6a:
                    bb:73:05:7b:39:35:af:aa:68:6e:d2:d7:b3:1c:27:
                    0f:bf:de:af:26:ef:a2:96:ed:17:a9:d1:a5:b6:e4:
                    db:e1:65:7c:bb:d8:b1:ad:0e:21:08:e1:47:13:6c:
                    e9:68:e3:6a:00:37:a6:80:69:ec:05:21:d8:b2:e7:
                    cb:dc:bd:bb:bf:04:5e:12:85:b1:97:34:50:92:fd:
                    26:b6:e1:b5:85:4c:05:3e:b2:25:58:cb:06:2c:1e:
                    8c:e2:9a:bf:fe:8c:73:5e:2e:f1:69:2c:8a:7a:f8:
                    c6:b1:4a:19:14:5d:0a:3d:07:55:2f:83:d9:22:c2:
                    9d:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C7:C0:F1:7F:97:A3:BB:92:83:9B:55:AE:64:45:39:C1:29:F1:E7:83
            X509v3 Authority Key Identifier:
                keyid:03:1C:8E:8C:C0:75:C2:D0:43:13:B9:11:D9:3D:61:FE:2A:9A:DE:A2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AxyOjMB1wtBDE7kR2T1h_iqa3qI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:4e:ba:c9:1f:4c:d1:fa:c5:eb:13:ee:8c:91:f7:a2:ab:23:
         7d:99:d9:9f:28:1e:4b:01:ab:df:89:7e:65:93:ea:cf:ab:a0:
         f4:31:24:ae:62:4c:2e:e9:68:94:7e:e9:e9:5e:44:6d:78:5d:
         c0:1f:be:53:d8:9f:14:25:af:54:28:2d:37:0e:a3:75:d2:e3:
         3e:18:d0:9f:0f:a1:17:3a:86:f3:99:80:fc:38:8d:ce:84:b5:
         d4:41:6a:69:16:44:ef:db:a9:3b:d3:f5:f2:ef:0b:29:69:b1:
         9c:8f:d0:c2:ca:28:fc:a7:6d:f5:67:e0:d3:b2:41:a7:fb:98:
         fc:17:90:9a:14:34:0b:0c:32:aa:6d:67:df:62:54:c7:c9:ae:
         1e:50:63:9a:95:8e:ea:74:7a:d3:8b:27:19:72:cf:84:5f:5b:
         72:a4:48:92:bb:34:45:2e:85:67:f6:40:c9:93:d4:c3:6f:61:
         93:d9:d3:bc:f3:50:65:9f:70:f3:fb:c7:75:c5:d4:e4:01:b0:
         b8:d5:90:9e:70:84:2f:fe:0c:5c:da:d8:a8:d7:7d:c3:ae:b7:
         05:ea:9c:6c:10:ea:a2:c7:68:45:a4:5a:97:d3:bf:02:19:28:
         a3:35:8a:7e:42:50:bb:ff:59:6e:b7:2b:b4:91:ab:18:12:b2:
         95:66:37:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----