Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/ebd061-6c00-4c8b-a88e-5f84b68dd044/1/HKS_bJpQyB8EsCmDakJ4Ya1ygpo.mft
File:                     HKS_bJpQyB8EsCmDakJ4Ya1ygpo.mft (raw, json)
Hash identifier:          eY9HFljRSr72hkspnYW4HF+agmBjJ5TUKQrd/v35JTE=
Subject key identifier:   55:E0:9A:F8:D0:3D:24:43:14:07:91:A2:6E:BC:65:18:EC:FB:3B:D1
Authority key identifier: 1C:A4:BF:6C:9A:50:C8:1F:04:B0:29:83:6A:42:78:61:AD:72:82:9A
Certificate issuer:       /CN=1ca4bf6c9a50c81f04b029836a427861ad72829a
Certificate serial:       019CACB5103E4F9B44ACF92A568F0AC1BDC4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HKS_bJpQyB8EsCmDakJ4Ya1ygpo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/59/ebd061-6c00-4c8b-a88e-5f84b68dd044/1/HKS_bJpQyB8EsCmDakJ4Ya1ygpo.mft
Manifest number:          0EB6
Signing time:             Mon 02 Mar 2026 04:01:13 +0000
Manifest this update:     Mon 02 Mar 2026 04:01:13 +0000
Manifest next update:     Tue 03 Mar 2026 04:01:13 +0000
Files and hashes:         1: HKS_bJpQyB8EsCmDakJ4Ya1ygpo.crl (hash: rxrM3m5b7x5SdBvzs49HNBIawxzYinmSQm4hbekIJJ4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/59/ebd061-6c00-4c8b-a88e-5f84b68dd044/1/HKS_bJpQyB8EsCmDakJ4Ya1ygpo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/59/ebd061-6c00-4c8b-a88e-5f84b68dd044/1/HKS_bJpQyB8EsCmDakJ4Ya1ygpo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HKS_bJpQyB8EsCmDakJ4Ya1ygpo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:b5:10:3e:4f:9b:44:ac:f9:2a:56:8f:0a:c1:bd:c4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1ca4bf6c9a50c81f04b029836a427861ad72829a
        Validity
            Not Before: Mar  2 04:01:13 2026 GMT
            Not After : Mar  3 04:01:13 2026 GMT
        Subject: CN=55e09af8d03d2443140791a26ebc6518ecfb3bd1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:b9:97:c6:33:af:42:38:79:a9:61:e1:db:3a:
                    3b:03:c2:32:7b:b4:40:89:a9:9f:d5:c1:98:82:4a:
                    01:79:fe:01:80:1b:b0:05:ba:bd:a8:6d:87:8a:c4:
                    2c:27:db:4b:61:a9:da:06:50:7e:5e:03:e7:eb:e5:
                    bd:ba:cf:bf:fe:ae:91:5a:d9:9a:4d:70:32:fd:2c:
                    82:cc:6e:d7:e8:c5:8c:9d:14:af:29:c5:1f:e7:55:
                    44:9c:26:b1:97:29:7f:dc:a3:6d:b1:09:7b:1c:06:
                    35:25:f6:87:c2:b7:cb:49:e0:6e:24:5d:95:81:19:
                    43:b4:e8:d0:4b:6d:d6:35:24:26:db:39:79:9b:5d:
                    8d:26:da:68:3e:85:39:51:88:6e:7f:ed:56:ba:8a:
                    f0:bd:15:94:ac:fe:5e:55:2a:f0:7a:4f:c1:b2:1a:
                    d3:72:3d:f8:0d:ef:23:c0:73:45:94:50:03:bc:e8:
                    9a:47:55:b1:e6:46:ef:2f:c8:74:21:92:83:96:46:
                    77:88:73:63:a3:3a:2f:a3:77:74:c2:72:04:4b:8f:
                    39:2e:89:b1:30:75:9c:9c:13:2b:0e:e4:c7:1f:0a:
                    0f:41:15:a6:95:1a:d2:26:39:42:d7:7b:9d:50:b1:
                    0e:69:97:95:77:a7:b7:4f:68:d9:c3:d2:4b:7a:5d:
                    4d:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:E0:9A:F8:D0:3D:24:43:14:07:91:A2:6E:BC:65:18:EC:FB:3B:D1
            X509v3 Authority Key Identifier:
                keyid:1C:A4:BF:6C:9A:50:C8:1F:04:B0:29:83:6A:42:78:61:AD:72:82:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HKS_bJpQyB8EsCmDakJ4Ya1ygpo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ebd061-6c00-4c8b-a88e-5f84b68dd044/1/HKS_bJpQyB8EsCmDakJ4Ya1ygpo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ebd061-6c00-4c8b-a88e-5f84b68dd044/1/HKS_bJpQyB8EsCmDakJ4Ya1ygpo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:1e:85:d6:19:1a:5f:c0:fe:17:5b:da:79:e6:40:8e:84:27:
         ac:c3:24:a5:b2:03:28:bd:e8:6b:37:5d:e8:82:b9:1e:49:bc:
         1a:6c:21:df:5b:d5:b2:2d:84:1e:ed:c2:47:f3:22:af:64:60:
         5f:ee:37:33:25:2e:3f:4d:bd:e6:f4:f2:87:9d:eb:0f:57:fc:
         1c:45:4b:17:21:fd:b8:93:35:c2:4c:5f:1d:f9:3f:c0:0d:56:
         9c:3e:fe:d2:2d:76:d9:51:b4:1f:4c:2b:75:69:d7:31:fd:74:
         ed:50:95:b1:48:74:d5:f9:62:ac:7c:08:0f:8e:7c:8c:41:b3:
         4f:49:60:8a:8a:68:80:14:51:75:85:c3:f4:30:58:e3:51:f1:
         b2:eb:bf:71:c3:18:01:6f:d0:0a:aa:4d:6c:81:4c:b7:8b:6e:
         90:d6:64:7b:bb:80:5e:f4:63:ac:e6:7b:cb:a5:1c:33:8c:cb:
         b1:19:db:3a:8d:c6:92:6d:ba:18:34:7d:ef:55:c5:40:25:01:
         85:28:a1:1f:b9:43:74:95:69:3f:87:6b:2e:d2:3e:2f:56:0a:
         ad:da:95:34:b6:56:97:ea:d4:ef:2e:53:6a:0f:3a:04:65:56:
         81:10:50:da:b2:3e:39:16:05:30:13:91:53:a7:90:43:ef:89:
         43:9e:04:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----