Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft
File:                     Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft (raw, json)
Hash identifier:          gG+ARfL2dflF47tMNTfQ1csN/Dr40M7HoD4PjF7QbEE=
Subject key identifier:   CB:D3:42:6A:01:DF:5D:EC:7D:C0:05:77:C1:C6:A0:D8:D8:0B:AF:F5
Authority key identifier: 46:7F:0D:67:62:FE:96:F0:49:E6:EC:33:2D:04:2E:8B:9D:5C:DE:E4
Certificate issuer:       /CN=467f0d6762fe96f049e6ec332d042e8b9d5cdee4
Certificate serial:       019D9AE3A853DE752EA58581C965FC139517
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft
Manifest number:          081C
Signing time:             Fri 17 Apr 2026 10:01:44 +0000
Manifest this update:     Fri 17 Apr 2026 10:01:44 +0000
Manifest next update:     Sat 18 Apr 2026 10:01:44 +0000
Files and hashes:         1: Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.crl (hash: WhshDg7g8UaIW/hauRphcDR/qbswrx1t+kndEa8Bnvo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 07:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9a:e3:a8:53:de:75:2e:a5:85:81:c9:65:fc:13:95:17
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=467f0d6762fe96f049e6ec332d042e8b9d5cdee4
        Validity
            Not Before: Apr 17 10:01:44 2026 GMT
            Not After : Apr 18 10:01:44 2026 GMT
        Subject: CN=cbd3426a01df5dec7dc00577c1c6a0d8d80baff5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:75:98:4c:11:c8:51:47:57:8c:75:6c:91:eb:
                    55:66:fe:19:04:f9:9a:fc:ca:6c:d2:33:f2:f8:9c:
                    3e:fb:18:5b:52:c2:f0:d9:c0:ae:9d:cb:45:2c:1b:
                    d9:24:15:98:b5:8d:15:71:f1:b0:91:19:0b:fe:bf:
                    da:cf:7f:d9:f2:ae:c4:77:8b:71:66:c6:8d:a0:6e:
                    3b:ef:e1:3a:a7:45:03:92:bf:76:1c:c2:a5:b8:d8:
                    6f:d4:9e:99:ea:b8:89:a9:f6:36:60:db:6e:e0:f2:
                    95:0f:5e:87:63:b8:74:0e:ea:ce:97:bd:fa:ad:6b:
                    cb:e5:61:1e:42:88:a0:a4:14:22:ed:a5:a8:9b:9c:
                    e7:e5:4e:3c:e9:e5:bd:0e:ae:8f:2d:1d:e5:f5:78:
                    e0:31:1e:42:02:8f:b3:01:c1:30:a9:4a:37:86:12:
                    48:62:22:01:5c:bf:c7:74:a7:54:35:e1:ef:8d:ed:
                    13:f8:78:de:1d:76:12:05:8a:bb:43:9d:3b:3b:b7:
                    ab:7d:af:84:b7:b2:81:61:c2:6c:a3:c7:95:c5:2a:
                    4c:eb:bd:ef:8f:e7:ae:1d:a9:53:50:3e:7a:81:fc:
                    c1:42:60:c6:87:2a:3a:3a:f0:82:39:80:6a:db:6d:
                    b4:77:31:a3:9e:e3:73:8c:4e:c1:38:77:0a:9e:83:
                    b5:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CB:D3:42:6A:01:DF:5D:EC:7D:C0:05:77:C1:C6:A0:D8:D8:0B:AF:F5
            X509v3 Authority Key Identifier:
                keyid:46:7F:0D:67:62:FE:96:F0:49:E6:EC:33:2D:04:2E:8B:9D:5C:DE:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/57/2d1747-301d-4f72-84c8-65b99afb50d4/1/Rn8NZ2L-lvBJ5uwzLQQui51c3uQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c8:45:06:cb:47:26:bd:42:bb:b8:c5:1e:c4:1d:c2:aa:d0:86:
         95:35:35:cd:5c:d7:a3:1c:0e:db:fd:fe:d4:48:6e:17:9f:53:
         82:d8:63:00:f9:7b:cd:fb:b7:82:3e:f9:59:fa:ce:c6:ef:d4:
         0e:70:6a:c8:94:dc:df:ae:7f:77:33:cd:33:db:1e:66:a6:0e:
         c2:88:f4:25:92:59:22:d9:82:7d:ff:8c:26:6a:0e:b4:01:93:
         f1:15:e7:1b:69:0e:d2:83:30:3d:be:1b:39:50:96:c4:25:58:
         d0:37:b9:2b:1a:2b:31:dd:db:01:72:87:10:11:79:3b:dd:30:
         d1:2e:38:79:0e:39:66:7e:89:17:37:dd:fc:9b:39:d5:8f:06:
         be:9e:f0:fc:8f:99:a1:68:82:d1:f4:89:68:b4:ca:72:40:ae:
         52:86:2c:c0:9d:65:1f:00:dc:10:3d:f8:b9:c0:0b:52:ee:89:
         bb:f2:6f:d4:74:8f:ab:e7:df:bf:5d:48:09:45:42:01:10:41:
         b0:3f:f2:55:70:34:a3:ce:28:bf:b1:1b:b4:fb:84:47:b4:9b:
         bc:2f:f0:1d:1c:e3:15:78:c8:ae:40:5c:d0:ac:74:96:2e:f0:
         56:dc:31:69:24:39:4f:5c:1c:b7:ba:7d:3c:4e:ae:fb:0a:aa:
         65:37:ea:7a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2a46hT3nUupYWByWX8E5UXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2N2YwZDY3NjJmZTk2ZjA0OWU2ZWMzMzJkMDQyZThiOWQ1
Y2RlZTQwHhcNMjYwNDE3MTAwMTQ0WhcNMjYwNDE4MTAwMTQ0WjAzMTEwLwYDVQQD
EyhjYmQzNDI2YTAxZGY1ZGVjN2RjMDA1NzdjMWM2YTBkOGQ4MGJhZmY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXWYTBHIUUdXjHVsketVZv4ZBPma
/Mps0jPy+Jw++xhbUsLw2cCunctFLBvZJBWYtY0VcfGwkRkL/r/az3/Z8q7Ed4tx
ZsaNoG477+E6p0UDkr92HMKluNhv1J6Z6riJqfY2YNtu4PKVD16HY7h0DurOl736
rWvL5WEeQoigpBQi7aWom5zn5U486eW9Dq6PLR3l9XjgMR5CAo+zAcEwqUo3hhJI
YiIBXL/HdKdUNeHvje0T+HjeHXYSBYq7Q507O7erfa+Et7KBYcJso8eVxSpM673v
j+euHalTUD56gfzBQmDGhyo6OvCCOYBq2220dzGjnuNzjE7BOHcKnoO1rwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMvTQmoB313sfcAFd8HGoNjYC6/1MB8GA1UdIwQY
MBaAFEZ/DWdi/pbwSebsMy0ELoudXN7kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUm44TloyTC1sdkJKNXV3ekxRUXVpNTFjM3VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8yZDE3NDctMzAxZC00ZjcyLTg0Yzgt
NjViOTlhZmI1MGQ0LzEvUm44TloyTC1sdkJKNXV3ekxRUXVpNTFjM3VRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny8yZDE3NDctMzAxZC00ZjcyLTg0YzgtNjViOTlhZmI1MGQ0
LzEvUm44TloyTC1sdkJKNXV3ekxRUXVpNTFjM3VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyEUGy0cm
vUK7uMUexB3CqtCGlTU1zVzXoxwO2/3+1EhuF59TgthjAPl7zfu3gj75WfrOxu/U
DnBqyJTc365/dzPNM9seZqYOwoj0JZJZItmCff+MJmoOtAGT8RXnG2kO0oMwPb4b
OVCWxCVY0De5KxorMd3bAXKHEBF5O90w0S44eQ45Zn6JFzfd/Js51Y8Gvp7w/I+Z
oWiC0fSJaLTKckCuUoYswJ1lHwDcED34ucALUu6Ju/Jv1HSPq+ffv11ICUVCARBB
sD/yVXA0o84ov7EbtPuER7SbvC/wHRzjFXjIrkBc0Kx0li7wVtwxaSQ5T1wct7p9
PE6u+wqqZTfqeg==
-----END CERTIFICATE-----