Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.mft
File:                     jTgcV7CbXiZ91UcVDbRVg46si6M.mft (raw, json)
Hash identifier:          bGSu6en+W3XbPDt6ZvW5h7l3j3R0n0zk6pn1tkXNlZo=
Subject key identifier:   C1:76:FF:12:1D:57:6F:11:40:8A:8F:94:BE:BF:44:63:15:E9:89:59
Authority key identifier: 8D:38:1C:57:B0:9B:5E:26:7D:D5:47:15:0D:B4:55:83:8E:AC:8B:A3
Certificate issuer:       /CN=8d381c57b09b5e267dd547150db455838eac8ba3
Certificate serial:       019CAB6B0E81F54311546419C404F1D118A7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jTgcV7CbXiZ91UcVDbRVg46si6M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.mft
Manifest number:          05CC
Signing time:             Sun 01 Mar 2026 22:00:45 +0000
Manifest this update:     Sun 01 Mar 2026 22:00:45 +0000
Manifest next update:     Mon 02 Mar 2026 22:00:45 +0000
Files and hashes:         1: jTgcV7CbXiZ91UcVDbRVg46si6M.crl (hash: 3fuDZS4AqCcp3/4k7OhwFfAFQOg/eLFAcEK00gaOdBo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jTgcV7CbXiZ91UcVDbRVg46si6M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 18:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:6b:0e:81:f5:43:11:54:64:19:c4:04:f1:d1:18:a7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8d381c57b09b5e267dd547150db455838eac8ba3
        Validity
            Not Before: Mar  1 22:00:45 2026 GMT
            Not After : Mar  2 22:00:45 2026 GMT
        Subject: CN=c176ff121d576f11408a8f94bebf446315e98959
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:b3:52:b9:66:bb:22:ba:da:d3:28:11:af:c8:
                    7d:7f:2d:fc:60:35:f5:15:f5:7f:1e:87:b5:17:56:
                    e9:59:0e:50:06:b0:78:98:bc:bf:7e:00:4f:45:62:
                    1e:e0:fb:4d:68:3b:71:98:61:6a:ca:1c:12:9e:b4:
                    d9:e7:a3:12:d1:ed:fa:64:eb:c3:65:5a:3c:98:08:
                    53:c4:35:db:ba:27:ec:21:50:52:b7:5b:5f:e0:05:
                    8c:8a:04:37:04:9c:c1:e4:70:c6:e8:01:9c:59:1f:
                    e0:be:2a:ef:99:b7:9a:bd:a8:fc:83:ca:e5:a2:d1:
                    0d:da:dc:a3:01:e9:77:ad:ae:ac:52:55:52:ed:26:
                    d9:9e:ae:a0:38:89:5b:30:be:c4:7b:3a:ca:72:77:
                    4d:19:c5:4a:f5:11:77:01:e8:07:d1:e9:43:3d:81:
                    39:51:18:4f:f5:e4:e0:d1:a3:31:2c:4b:26:e7:8c:
                    6f:c1:a2:3f:c3:1d:f8:2f:18:fa:2b:93:77:4d:c8:
                    a5:bf:3f:2c:20:07:c4:8d:96:b4:1c:70:c1:dd:85:
                    cb:48:76:57:d7:e1:ac:81:7f:e2:a7:98:ad:54:a8:
                    8a:70:08:7c:f8:68:40:e8:93:88:1c:e5:2d:3a:3f:
                    08:cf:c9:7c:e8:89:56:4e:71:67:dd:89:ae:0c:86:
                    b2:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:76:FF:12:1D:57:6F:11:40:8A:8F:94:BE:BF:44:63:15:E9:89:59
            X509v3 Authority Key Identifier:
                keyid:8D:38:1C:57:B0:9B:5E:26:7D:D5:47:15:0D:B4:55:83:8E:AC:8B:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jTgcV7CbXiZ91UcVDbRVg46si6M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b6:48:b9:50:91:2e:bd:e9:60:6c:33:fb:8f:d1:d8:48:26:cf:
         e0:64:e3:f1:60:4b:40:51:19:1d:14:72:cd:e0:5b:2e:1e:09:
         d5:81:2d:b4:74:9c:b6:e1:fc:dd:d3:17:d1:2a:6f:a9:b3:39:
         55:b9:30:b1:4a:23:52:82:9c:08:45:08:8c:70:ff:04:dd:51:
         48:35:ad:68:72:f4:f3:12:7b:7e:a9:39:71:8b:1d:8e:c7:32:
         01:49:21:58:51:7e:25:de:e5:84:29:86:33:65:68:5a:09:06:
         28:e0:23:69:12:4e:05:45:5c:9d:40:36:cd:ed:4a:b4:7c:95:
         a3:c9:55:d9:a8:39:31:7b:4b:9a:7f:0a:55:49:93:78:a2:8b:
         2c:31:f3:1a:87:cb:5b:63:6c:e5:dc:55:10:74:bd:93:17:1a:
         b9:78:f8:5c:25:0e:15:85:10:20:66:18:9c:ad:01:c7:5e:86:
         97:3b:a8:5c:05:8c:cc:16:2f:e5:87:85:ab:9d:79:33:2c:3d:
         1a:23:c0:b2:a7:de:be:f2:5f:93:0b:f6:af:6a:e3:4c:41:30:
         ae:29:13:44:89:b9:82:96:b0:3d:fd:12:76:01:65:6f:25:5c:
         93:9b:91:21:01:ee:c3:c2:51:7d:0d:26:df:2d:4b:f8:23:8b:
         e4:ba:21:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----