Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/ad0e22-2449-41e2-9367-7bad9457a42f/1/vfyFyRfr69yH36Ne4JvEAoX19Ac.mft
File:                     vfyFyRfr69yH36Ne4JvEAoX19Ac.mft (raw, json)
Hash identifier:          pg8QRu9MliGUVfdyIKBWNp8fwyjrCP7ODx3omCwhhX8=
Subject key identifier:   6D:5A:11:AB:B7:17:E7:43:EC:42:8F:2E:87:AF:5F:B5:92:02:1F:27
Authority key identifier: BD:FC:85:C9:17:EB:EB:DC:87:DF:A3:5E:E0:9B:C4:02:85:F5:F4:07
Certificate issuer:       /CN=bdfc85c917ebebdc87dfa35ee09bc40285f5f407
Certificate serial:       019D9AAC1EF52D42FB016A6C31DCA93AA2CB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vfyFyRfr69yH36Ne4JvEAoX19Ac.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/53/ad0e22-2449-41e2-9367-7bad9457a42f/1/vfyFyRfr69yH36Ne4JvEAoX19Ac.mft
Manifest number:          0583
Signing time:             Fri 17 Apr 2026 09:01:04 +0000
Manifest this update:     Fri 17 Apr 2026 09:01:04 +0000
Manifest next update:     Sat 18 Apr 2026 09:01:04 +0000
Files and hashes:         1: vfyFyRfr69yH36Ne4JvEAoX19Ac.crl (hash: Ewtei2nYeCr0O3ANRQnX9q2yk1RLJx+NNeKBs9kMueo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/53/ad0e22-2449-41e2-9367-7bad9457a42f/1/vfyFyRfr69yH36Ne4JvEAoX19Ac.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/53/ad0e22-2449-41e2-9367-7bad9457a42f/1/vfyFyRfr69yH36Ne4JvEAoX19Ac.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vfyFyRfr69yH36Ne4JvEAoX19Ac.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 07:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9a:ac:1e:f5:2d:42:fb:01:6a:6c:31:dc:a9:3a:a2:cb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bdfc85c917ebebdc87dfa35ee09bc40285f5f407
        Validity
            Not Before: Apr 17 09:01:04 2026 GMT
            Not After : Apr 18 09:01:04 2026 GMT
        Subject: CN=6d5a11abb717e743ec428f2e87af5fb592021f27
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:3b:89:c9:42:3f:35:4b:ae:16:c3:4d:73:20:
                    e5:82:eb:a3:68:26:9f:ae:08:60:e8:99:a0:48:0c:
                    49:de:73:a9:dc:a2:3a:12:c6:07:7a:34:12:b8:77:
                    27:1a:30:99:d3:f6:bb:6c:dc:89:f9:84:2a:01:1d:
                    9c:8f:6f:9c:11:1c:21:ae:ea:bf:52:b6:14:31:53:
                    5f:ab:d4:5f:bf:eb:86:45:c0:d4:96:76:0a:5e:33:
                    97:c2:83:b1:bf:74:d1:15:47:41:3b:0b:1e:24:3d:
                    99:c1:65:73:8c:a1:02:9f:08:4e:3e:b9:77:09:72:
                    0f:13:e8:1c:5b:3c:5b:29:6b:e4:14:a5:ed:b0:32:
                    22:49:a1:70:73:c0:54:16:c2:1a:dd:3a:61:81:a7:
                    f1:72:03:7d:4b:a2:30:8a:e0:b9:bc:3c:1c:0a:e4:
                    ca:50:c3:de:2b:29:d9:d4:4b:6b:27:d9:45:64:42:
                    87:e7:9a:df:27:26:fa:c8:16:e6:51:43:0e:3e:1a:
                    54:c6:2f:97:b7:63:ed:1a:70:af:9d:2a:39:d1:64:
                    71:3c:ca:7f:0e:ad:e7:b2:4d:89:cf:2c:f2:d3:f2:
                    8b:03:4f:b3:2b:38:1e:65:ee:43:c0:84:e9:d9:31:
                    00:88:81:e5:bf:f5:4f:21:06:99:54:f1:67:ad:17:
                    3b:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:5A:11:AB:B7:17:E7:43:EC:42:8F:2E:87:AF:5F:B5:92:02:1F:27
            X509v3 Authority Key Identifier:
                keyid:BD:FC:85:C9:17:EB:EB:DC:87:DF:A3:5E:E0:9B:C4:02:85:F5:F4:07

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfyFyRfr69yH36Ne4JvEAoX19Ac.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/ad0e22-2449-41e2-9367-7bad9457a42f/1/vfyFyRfr69yH36Ne4JvEAoX19Ac.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/53/ad0e22-2449-41e2-9367-7bad9457a42f/1/vfyFyRfr69yH36Ne4JvEAoX19Ac.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:32:64:53:06:cb:ec:3c:4e:b3:7c:d7:91:15:63:18:7a:43:
         ef:f2:94:41:9f:9e:48:91:67:b4:c5:d8:f0:fa:18:7e:da:80:
         02:cc:9d:f7:d8:5f:d8:2c:f8:a3:e2:8f:6f:97:75:3e:01:06:
         3a:14:e6:c1:16:13:c1:c7:70:86:72:38:15:30:01:3e:cb:cd:
         56:5a:34:5d:48:86:76:80:5d:d2:ae:fe:f7:01:b7:ee:c8:91:
         de:64:bb:69:fd:2b:73:27:5a:9c:91:f5:a5:8a:e0:82:c7:86:
         c6:28:d7:5b:24:cc:73:25:1f:ec:d3:8f:28:60:e8:eb:20:46:
         07:9b:94:29:34:ce:44:1d:3e:73:42:b2:6e:08:5a:d7:8d:32:
         94:f9:3c:b0:24:08:77:94:1b:b6:d7:ac:f2:32:2c:ac:c5:f8:
         41:f2:00:86:fc:0d:7d:f8:4b:f9:02:d6:54:49:90:4a:31:43:
         9b:8e:06:5d:1c:ba:a8:be:8d:76:3c:7d:19:ea:5e:eb:b0:1d:
         6b:f7:02:44:f4:54:ab:5f:0f:3c:0a:32:4a:69:02:77:d5:c9:
         25:45:38:f0:38:ea:87:7d:e0:5d:a5:9d:17:97:4e:9d:44:67:
         7d:94:45:9a:56:50:7b:7b:16:90:37:4d:56:66:2f:56:46:59:
         cc:ed:3e:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2arB71LUL7AWpsMdypOqLLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkZmM4NWM5MTdlYmViZGM4N2RmYTM1ZWUwOWJjNDAyODVm
NWY0MDcwHhcNMjYwNDE3MDkwMTA0WhcNMjYwNDE4MDkwMTA0WjAzMTEwLwYDVQQD
Eyg2ZDVhMTFhYmI3MTdlNzQzZWM0MjhmMmU4N2FmNWZiNTkyMDIxZjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDuJyUI/NUuuFsNNcyDlguujaCaf
rghg6JmgSAxJ3nOp3KI6EsYHejQSuHcnGjCZ0/a7bNyJ+YQqAR2cj2+cERwhruq/
UrYUMVNfq9Rfv+uGRcDUlnYKXjOXwoOxv3TRFUdBOwseJD2ZwWVzjKECnwhOPrl3
CXIPE+gcWzxbKWvkFKXtsDIiSaFwc8BUFsIa3TphgafxcgN9S6IwiuC5vDwcCuTK
UMPeKynZ1EtrJ9lFZEKH55rfJyb6yBbmUUMOPhpUxi+Xt2PtGnCvnSo50WRxPMp/
Dq3nsk2Jzyzy0/KLA0+zKzgeZe5DwITp2TEAiIHlv/VPIQaZVPFnrRc74QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG1aEau3F+dD7EKPLoevX7WSAh8nMB8GA1UdIwQY
MBaAFL38hckX6+vch9+jXuCbxAKF9fQHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmZ5RnlSZnI2OXlIMzZOZTRKdkVBb1gxOUFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9hZDBlMjItMjQ0OS00MWUyLTkzNjct
N2JhZDk0NTdhNDJmLzEvdmZ5RnlSZnI2OXlIMzZOZTRKdkVBb1gxOUFjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9hZDBlMjItMjQ0OS00MWUyLTkzNjctN2JhZDk0NTdhNDJm
LzEvdmZ5RnlSZnI2OXlIMzZOZTRKdkVBb1gxOUFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGTJkUwbL
7DxOs3zXkRVjGHpD7/KUQZ+eSJFntMXY8PoYftqAAsyd99hf2Cz4o+KPb5d1PgEG
OhTmwRYTwcdwhnI4FTABPsvNVlo0XUiGdoBd0q7+9wG37siR3mS7af0rcydanJH1
pYrggseGxijXWyTMcyUf7NOPKGDo6yBGB5uUKTTORB0+c0Kybgha140ylPk8sCQI
d5Qbttes8jIsrMX4QfIAhvwNffhL+QLWVEmQSjFDm44GXRy6qL6Ndjx9Gepe67Ad
a/cCRPRUq18PPAoySmkCd9XJJUU48Djqh33gXaWdF5dOnURnfZRFmlZQe3sWkDdN
VmYvVkZZzO0+XA==
-----END CERTIFICATE-----