Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft
File:                     LphQiZ2cq14AM9C-lyKn6zBdfGA.mft (raw, json)
Hash identifier:          prey2YdenVH69FI4VhvbQHxA7Kc/1JMbopUOiGJjTnc=
Subject key identifier:   A6:66:17:E1:FD:F5:78:64:62:42:95:6C:5C:87:84:97:F8:43:37:79
Authority key identifier: 2E:98:50:89:9D:9C:AB:5E:00:33:D0:BE:97:22:A7:EB:30:5D:7C:60
Certificate issuer:       /CN=2e9850899d9cab5e0033d0be9722a7eb305d7c60
Certificate serial:       019DA48B38F086A35BBF243F89CC3C46F5DB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/LphQiZ2cq14AM9C-lyKn6zBdfGA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft
Manifest number:          18C4
Signing time:             Sun 19 Apr 2026 07:01:20 +0000
Manifest this update:     Sun 19 Apr 2026 07:01:20 +0000
Manifest next update:     Mon 20 Apr 2026 07:01:20 +0000
Files and hashes:         1: LphQiZ2cq14AM9C-lyKn6zBdfGA.crl (hash: rGN0HT99hKb8uaAnLIMvP6oTB1+H1k+MWMjAuY7OOaI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/LphQiZ2cq14AM9C-lyKn6zBdfGA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Apr 2026 04:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:a4:8b:38:f0:86:a3:5b:bf:24:3f:89:cc:3c:46:f5:db
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2e9850899d9cab5e0033d0be9722a7eb305d7c60
        Validity
            Not Before: Apr 19 07:01:20 2026 GMT
            Not After : Apr 20 07:01:20 2026 GMT
        Subject: CN=a66617e1fdf578646242956c5c878497f8433779
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f1:b6:ef:31:1e:82:4d:67:60:5a:ed:b2:61:ed:
                    42:83:11:98:a5:da:a3:bf:db:4a:11:ad:61:fc:13:
                    58:38:d5:82:d1:2d:67:67:bf:f7:65:58:64:f8:ea:
                    7e:d8:75:cc:9d:72:6b:b9:73:46:50:c6:06:a5:bd:
                    55:e3:7b:94:2c:80:f0:37:3c:31:84:ef:96:bc:dd:
                    2b:73:6d:d1:d2:13:a8:b8:cd:f7:31:44:d0:5b:1d:
                    15:d7:0f:5e:37:a9:81:d4:0f:fe:fa:20:68:ca:78:
                    ff:6d:2c:49:33:27:85:78:90:fd:8d:9d:be:e9:f9:
                    de:1a:ee:4a:5b:ab:69:92:e1:ed:de:77:18:67:9f:
                    a4:3c:87:b7:2b:d2:6a:6e:03:68:8c:2d:47:cb:e6:
                    b4:21:9f:45:26:76:c7:6c:98:7b:75:2d:fa:32:8c:
                    00:26:1b:dd:7d:c0:da:17:24:e1:c1:c4:0c:dc:40:
                    f8:da:5d:7f:a6:99:06:ce:0a:ba:c4:e3:5e:ec:7b:
                    42:76:21:6d:a7:46:a4:95:a6:d6:ee:25:db:9a:44:
                    30:f8:5e:4d:22:f2:b4:ea:f7:20:e6:6c:00:a0:02:
                    b7:64:0e:a7:d2:d0:2b:60:f9:2c:ca:45:16:a7:9e:
                    0e:45:4a:2d:a4:60:37:9e:96:c6:2f:a0:15:6b:a7:
                    67:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:66:17:E1:FD:F5:78:64:62:42:95:6C:5C:87:84:97:F8:43:37:79
            X509v3 Authority Key Identifier:
                keyid:2E:98:50:89:9D:9C:AB:5E:00:33:D0:BE:97:22:A7:EB:30:5D:7C:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LphQiZ2cq14AM9C-lyKn6zBdfGA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/37fd9d-61e6-4df3-9c07-6b6ad0456b65/1/LphQiZ2cq14AM9C-lyKn6zBdfGA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:bb:8c:17:ba:aa:1c:09:55:5d:f6:8c:7e:45:cf:b6:0d:15:
         df:2b:9c:6b:f1:1d:3a:4f:4b:7d:43:84:5c:1e:93:c4:c6:76:
         5a:98:99:4e:36:41:3b:18:0b:86:3b:7b:e4:b5:10:1f:80:18:
         b0:57:43:f0:55:d3:3f:df:03:e3:a5:da:43:cf:f4:5d:4d:c8:
         52:32:59:35:2f:dc:98:64:8f:ac:8f:e9:6a:f9:a0:4f:fc:c7:
         bb:69:aa:7d:34:d9:17:20:63:18:92:92:02:a9:f9:fd:fb:96:
         44:30:30:1e:1a:b7:8f:a0:57:a7:f5:bb:e7:64:4b:30:ce:26:
         10:74:29:13:9c:da:9a:b1:64:6a:20:dc:72:e1:38:f3:d6:ec:
         25:c1:e4:b3:1f:fb:b0:78:7e:8b:fd:8e:73:cf:22:b5:86:a5:
         6a:28:29:d9:dc:3d:92:e2:5e:d2:1d:30:b3:e4:50:ee:c3:c7:
         5f:b8:2f:19:ce:b4:6c:13:ae:aa:0e:42:af:5c:43:21:80:8d:
         01:0a:07:de:59:04:c0:d0:8b:31:fb:19:c6:b8:ad:6a:6f:90:
         31:9a:a7:39:f4:9b:6e:62:10:ce:52:27:8f:01:57:f4:8f:d8:
         6e:a3:ed:bf:2a:ef:61:28:ed:0c:15:1b:42:77:83:b3:be:20:
         52:75:ea:b9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2kizjwhqNbvyQ/icw8RvXbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlOTg1MDg5OWQ5Y2FiNWUwMDMzZDBiZTk3MjJhN2ViMzA1
ZDdjNjAwHhcNMjYwNDE5MDcwMTIwWhcNMjYwNDIwMDcwMTIwWjAzMTEwLwYDVQQD
EyhhNjY2MTdlMWZkZjU3ODY0NjI0Mjk1NmM1Yzg3ODQ5N2Y4NDMzNzc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8bbvMR6CTWdgWu2yYe1CgxGYpdqj
v9tKEa1h/BNYONWC0S1nZ7/3ZVhk+Op+2HXMnXJruXNGUMYGpb1V43uULIDwNzwx
hO+WvN0rc23R0hOouM33MUTQWx0V1w9eN6mB1A/++iBoynj/bSxJMyeFeJD9jZ2+
6fneGu5KW6tpkuHt3ncYZ5+kPIe3K9JqbgNojC1Hy+a0IZ9FJnbHbJh7dS36MowA
JhvdfcDaFyThwcQM3ED42l1/ppkGzgq6xONe7HtCdiFtp0aklabW7iXbmkQw+F5N
IvK06vcg5mwAoAK3ZA6n0tArYPksykUWp54ORUotpGA3npbGL6AVa6dnWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKZmF+H99XhkYkKVbFyHhJf4Qzd5MB8GA1UdIwQY
MBaAFC6YUImdnKteADPQvpcip+swXXxgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTHBoUWlaMmNxMTRBTTlDLWx5S242ekJkZkdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8zN2ZkOWQtNjFlNi00ZGYzLTljMDct
NmI2YWQwNDU2YjY1LzEvTHBoUWlaMmNxMTRBTTlDLWx5S242ekJkZkdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi8zN2ZkOWQtNjFlNi00ZGYzLTljMDctNmI2YWQwNDU2YjY1
LzEvTHBoUWlaMmNxMTRBTTlDLWx5S242ekJkZkdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZLuMF7qq
HAlVXfaMfkXPtg0V3yuca/EdOk9LfUOEXB6TxMZ2WpiZTjZBOxgLhjt75LUQH4AY
sFdD8FXTP98D46XaQ8/0XU3IUjJZNS/cmGSPrI/pavmgT/zHu2mqfTTZFyBjGJKS
Aqn5/fuWRDAwHhq3j6BXp/W752RLMM4mEHQpE5zamrFkaiDccuE489bsJcHksx/7
sHh+i/2Oc88itYalaigp2dw9kuJe0h0ws+RQ7sPHX7gvGc60bBOuqg5Cr1xDIYCN
AQoH3lkEwNCLMfsZxritam+QMZqnOfSbbmIQzlInjwFX9I/YbqPtvyrvYSjtDBUb
QneDs74gUnXquQ==
-----END CERTIFICATE-----