Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft
File:                     tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft (raw, json)
Hash identifier:          a8ngNSD2ciudbfJid9ABqbNpiOh3JR1ivZbiAi4lJ7M=
Subject key identifier:   7D:DF:BD:EB:95:61:B0:12:E4:80:B3:B7:83:B1:9A:1D:D7:97:B6:F5
Authority key identifier: B4:83:BC:0A:71:A5:2D:0C:F3:98:95:22:36:75:75:95:9E:BD:CE:F5
Certificate issuer:       /CN=b483bc0a71a52d0cf3989522367575959ebdcef5
Certificate serial:       019D9962C896E179239C7951303247323285
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft
Manifest number:          184F
Signing time:             Fri 17 Apr 2026 03:01:21 +0000
Manifest this update:     Fri 17 Apr 2026 03:01:21 +0000
Manifest next update:     Sat 18 Apr 2026 03:01:21 +0000
Files and hashes:         1: tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl (hash: bEpo9mCfOO88FYxvBHj77LiEFo2tHMVJT/bnrUyFSaU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 03:01:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:99:62:c8:96:e1:79:23:9c:79:51:30:32:47:32:32:85
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b483bc0a71a52d0cf3989522367575959ebdcef5
        Validity
            Not Before: Apr 17 03:01:21 2026 GMT
            Not After : Apr 18 03:01:21 2026 GMT
        Subject: CN=7ddfbdeb9561b012e480b3b783b19a1dd797b6f5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:50:86:71:ff:c3:3e:43:66:d1:e2:a5:25:ef:
                    10:bc:e0:80:44:a2:c3:97:d5:5e:e7:1f:a0:11:ad:
                    f9:e7:ef:c9:7c:d8:f9:ba:2e:da:69:91:50:fe:91:
                    d1:5f:85:10:71:f0:53:b9:74:a2:e1:c7:4f:65:dd:
                    f3:38:5e:3c:eb:34:59:f3:b7:8d:f4:96:22:4d:15:
                    fe:1b:8d:6b:5b:c0:29:49:93:65:50:50:0e:95:3c:
                    5b:e3:07:90:9f:41:71:ce:7b:e8:a2:ab:4c:59:6f:
                    e0:39:b4:a5:6e:bd:22:42:da:65:59:97:3b:cd:2e:
                    ec:a1:79:da:7b:0e:3f:2c:b9:f9:ba:99:7f:96:7a:
                    25:5e:aa:8f:92:d9:1b:f0:20:eb:1c:86:45:2a:52:
                    1e:53:b3:c3:c5:1e:0a:d5:bd:a7:91:6b:f0:27:b0:
                    07:15:f7:8e:d0:6d:5d:13:ec:6e:f7:08:e6:24:a4:
                    4b:6c:b7:90:69:f6:a4:ee:02:aa:91:6f:28:2c:39:
                    8a:7b:42:96:5f:1d:73:72:c8:3a:36:4f:5c:07:d2:
                    6e:8f:2c:62:49:78:0e:87:9d:33:93:bb:7f:89:55:
                    06:3a:38:44:0d:24:fe:4d:32:13:05:05:af:72:06:
                    a3:79:2d:ee:ae:b9:40:fa:e4:4f:13:2b:5d:75:75:
                    b4:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:DF:BD:EB:95:61:B0:12:E4:80:B3:B7:83:B1:9A:1D:D7:97:B6:F5
            X509v3 Authority Key Identifier:
                keyid:B4:83:BC:0A:71:A5:2D:0C:F3:98:95:22:36:75:75:95:9E:BD:CE:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         69:f5:9a:a2:ee:37:41:26:94:1f:f0:84:b3:e9:a4:1e:01:e6:
         2b:3b:e0:07:ca:be:a8:3d:34:d6:e4:bd:b7:55:3f:82:85:f2:
         65:be:4a:db:97:fe:93:20:7b:aa:65:02:4f:47:ee:a2:0a:d9:
         27:90:ef:73:36:42:60:f5:1b:dd:40:5e:5e:9d:46:d9:5d:c0:
         df:11:ac:62:c6:3d:c7:e8:5d:88:59:fa:47:ea:f6:ed:cf:24:
         e7:35:04:fc:65:c7:1f:95:15:ec:38:6c:50:d6:3e:5d:1b:0d:
         be:be:fc:b5:a8:64:c0:73:4a:f2:60:74:e5:5c:5b:08:4d:bb:
         ae:82:5a:e7:13:96:aa:98:92:38:0c:c3:d8:6b:02:8f:0c:b4:
         91:da:0c:83:d8:71:c3:eb:f8:ff:fe:e1:81:47:0a:9d:c0:e0:
         c4:87:3b:46:17:10:14:a4:66:64:bf:50:ee:6f:52:40:d9:6a:
         8c:58:6a:81:a3:7c:64:f3:11:82:4d:ca:79:73:ce:a2:35:72:
         af:7b:23:f1:bb:26:46:b7:5f:80:4b:71:37:a2:97:7e:31:63:
         91:7a:df:21:c6:72:3f:f8:f1:ed:17:00:3f:57:87:8c:58:6f:
         b2:84:62:15:b9:d5:f2:e6:08:c1:7f:aa:44:1f:4d:17:29:5b:
         76:be:95:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----