Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft
File:                     n7jb0z1dO8T6Nknt9_kU6uejiF0.mft (raw, json)
Hash identifier:          M73ZZjgQeNZTnpj9GhXBAcFgzyG4Vu4RyZ5bOoZQ2Cs=
Subject key identifier:   52:0F:65:D1:C8:E1:45:52:7A:87:1C:E6:79:08:69:F8:0E:CB:CB:F3
Authority key identifier: 9F:B8:DB:D3:3D:5D:3B:C4:FA:36:49:ED:F7:F9:14:EA:E7:A3:88:5D
Certificate issuer:       /CN=9fb8dbd33d5d3bc4fa3649edf7f914eae7a3885d
Certificate serial:       019DA48B233515A1B84D435BA9908489C3B1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/n7jb0z1dO8T6Nknt9_kU6uejiF0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft
Manifest number:          063B
Signing time:             Sun 19 Apr 2026 07:01:14 +0000
Manifest this update:     Sun 19 Apr 2026 07:01:14 +0000
Manifest next update:     Mon 20 Apr 2026 07:01:14 +0000
Files and hashes:         1: n7jb0z1dO8T6Nknt9_kU6uejiF0.crl (hash: Uj2BLfBahEyUr6UXC+sI/jRHZBK8+N7LPkewONlKssc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/n7jb0z1dO8T6Nknt9_kU6uejiF0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Apr 2026 02:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:a4:8b:23:35:15:a1:b8:4d:43:5b:a9:90:84:89:c3:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9fb8dbd33d5d3bc4fa3649edf7f914eae7a3885d
        Validity
            Not Before: Apr 19 07:01:14 2026 GMT
            Not After : Apr 20 07:01:14 2026 GMT
        Subject: CN=520f65d1c8e145527a871ce6790869f80ecbcbf3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:7a:3e:eb:34:cf:d5:da:0b:4c:99:57:51:f3:
                    bb:ee:e1:92:99:98:23:10:03:68:c3:42:8c:b4:98:
                    f0:02:9b:ed:52:68:d2:be:58:b6:44:7f:52:f5:2c:
                    14:ed:96:f1:e1:d4:ca:89:ed:b1:de:ff:b3:a8:3e:
                    cd:30:0d:b3:06:34:ff:c7:cd:17:57:39:96:1a:b2:
                    62:53:8b:6c:d5:6c:07:98:65:8f:3c:54:ef:4b:4d:
                    d9:64:40:83:83:67:6a:f9:29:83:10:2e:98:c0:d3:
                    db:44:21:cb:2a:e6:c4:86:5e:bd:3c:bd:09:0e:ce:
                    5b:e0:5b:fc:48:2d:db:95:da:58:e9:47:7d:f3:49:
                    32:09:f7:95:af:41:b6:a0:58:0d:a4:a7:2f:89:42:
                    22:64:75:5e:88:fc:c6:c7:c2:04:ff:60:ca:51:7a:
                    38:77:81:1a:a9:c1:a6:2e:b8:b0:12:91:42:a1:c4:
                    9b:f8:35:2b:24:3e:61:b1:3e:d4:14:b0:2f:6e:0b:
                    5f:43:8f:c6:15:ca:45:e3:e0:14:a9:b7:1c:65:ab:
                    e7:02:87:6b:c3:58:29:e1:29:7d:03:05:9d:9a:a8:
                    f7:a2:e7:ed:39:5e:3d:e0:96:ee:bf:d0:a7:36:96:
                    9e:0b:2f:18:09:bb:f7:4c:a0:44:0b:0c:a0:ea:b5:
                    09:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:0F:65:D1:C8:E1:45:52:7A:87:1C:E6:79:08:69:F8:0E:CB:CB:F3
            X509v3 Authority Key Identifier:
                keyid:9F:B8:DB:D3:3D:5D:3B:C4:FA:36:49:ED:F7:F9:14:EA:E7:A3:88:5D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7jb0z1dO8T6Nknt9_kU6uejiF0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ad0f8d-a5e7-40b3-b8a8-7362b19de73e/1/n7jb0z1dO8T6Nknt9_kU6uejiF0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:90:3b:37:a7:7d:4a:0b:54:8c:3c:11:88:43:ea:0e:c7:af:
         1c:b9:41:21:2b:29:9c:a4:10:b0:43:ec:c4:0c:43:58:1c:5d:
         74:7b:41:05:bf:76:6b:b8:f8:d9:e4:5d:00:28:7e:5c:3e:56:
         12:c5:97:09:82:d8:53:7f:3f:a6:ea:8f:82:aa:ee:52:da:99:
         01:1a:cb:48:af:98:56:12:d7:6d:9b:d1:d4:01:96:ec:34:44:
         23:17:f5:7e:e2:4e:cd:65:48:19:16:39:3c:75:d0:30:66:9f:
         da:d2:93:e8:3b:84:71:f3:26:fd:ec:b0:d7:be:0d:27:54:ce:
         ce:30:28:11:4a:fc:61:d9:fe:5d:30:5d:f6:3a:ec:c9:07:2c:
         93:f0:86:7f:8e:92:39:f4:b0:0e:87:f7:a3:87:29:33:b9:f6:
         c8:15:44:06:97:df:87:64:69:50:77:25:e1:53:a6:96:9c:24:
         82:82:c8:bb:a4:e3:23:4a:2d:fa:f5:11:5f:89:b0:dc:9e:18:
         c0:90:f0:2e:df:f8:e5:d4:b7:72:2e:b8:f4:70:bf:2b:cb:7f:
         a3:e1:33:8e:1c:99:ac:d0:10:cd:7e:1f:e0:a7:0f:01:36:d6:
         aa:68:da:ca:e8:cc:73:38:44:10:59:ef:11:ce:32:d1:8e:b2:
         90:93:96:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2kiyM1FaG4TUNbqZCEicOxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmYjhkYmQzM2Q1ZDNiYzRmYTM2NDllZGY3ZjkxNGVhZTdh
Mzg4NWQwHhcNMjYwNDE5MDcwMTE0WhcNMjYwNDIwMDcwMTE0WjAzMTEwLwYDVQQD
Eyg1MjBmNjVkMWM4ZTE0NTUyN2E4NzFjZTY3OTA4NjlmODBlY2JjYmYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA13o+6zTP1doLTJlXUfO77uGSmZgj
EANow0KMtJjwApvtUmjSvli2RH9S9SwU7Zbx4dTKie2x3v+zqD7NMA2zBjT/x80X
VzmWGrJiU4ts1WwHmGWPPFTvS03ZZECDg2dq+SmDEC6YwNPbRCHLKubEhl69PL0J
Ds5b4Fv8SC3bldpY6Ud980kyCfeVr0G2oFgNpKcviUIiZHVeiPzGx8IE/2DKUXo4
d4EaqcGmLriwEpFCocSb+DUrJD5hsT7UFLAvbgtfQ4/GFcpF4+AUqbccZavnAodr
w1gp4Sl9AwWdmqj3ouftOV494Jbuv9CnNpaeCy8YCbv3TKBECwyg6rUJXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFIPZdHI4UVSeocc5nkIafgOy8vzMB8GA1UdIwQY
MBaAFJ+429M9XTvE+jZJ7ff5FOrno4hdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbjdqYjB6MWRPOFQ2TmtudDlfa1U2dWVqaUYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9hZDBmOGQtYTVlNy00MGIzLWI4YTgt
NzM2MmIxOWRlNzNlLzEvbjdqYjB6MWRPOFQ2TmtudDlfa1U2dWVqaUYwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9hZDBmOGQtYTVlNy00MGIzLWI4YTgtNzM2MmIxOWRlNzNl
LzEvbjdqYjB6MWRPOFQ2TmtudDlfa1U2dWVqaUYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbZA7N6d9
SgtUjDwRiEPqDsevHLlBISspnKQQsEPsxAxDWBxddHtBBb92a7j42eRdACh+XD5W
EsWXCYLYU38/puqPgqruUtqZARrLSK+YVhLXbZvR1AGW7DREIxf1fuJOzWVIGRY5
PHXQMGaf2tKT6DuEcfMm/eyw174NJ1TOzjAoEUr8Ydn+XTBd9jrsyQcsk/CGf46S
OfSwDof3o4cpM7n2yBVEBpffh2RpUHcl4VOmlpwkgoLIu6TjI0ot+vURX4mw3J4Y
wJDwLt/45dS3ci649HC/K8t/o+EzjhyZrNAQzX4f4KcPATbWqmjayujMczhEEFnv
Ec4y0Y6ykJOW6g==
-----END CERTIFICATE-----