Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.mft
File:                     xq11SrfApAHA_x08Ensn1T_cyYE.mft (raw, json)
Hash identifier:          gHTkxIJw/wjgvJtA1HtrWbdZSfOtt+I4OKd329bvFz8=
Subject key identifier:   3B:0D:6C:E1:0E:0D:16:B4:9A:5B:23:3F:A6:3F:DA:A3:0E:2A:7E:9A
Authority key identifier: C6:AD:75:4A:B7:C0:A4:01:C0:FF:1D:3C:12:7B:27:D5:3F:DC:C9:81
Certificate issuer:       /CN=c6ad754ab7c0a401c0ff1d3c127b27d53fdcc981
Certificate serial:       019CAAC601DC1541CC3677BE1410D3CB43E7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xq11SrfApAHA_x08Ensn1T_cyYE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.mft
Manifest number:          1843
Signing time:             Sun 01 Mar 2026 19:00:29 +0000
Manifest this update:     Sun 01 Mar 2026 19:00:29 +0000
Manifest next update:     Mon 02 Mar 2026 19:00:29 +0000
Files and hashes:         1: xq11SrfApAHA_x08Ensn1T_cyYE.crl (hash: f6X9ZKnPjI1CQxvqBPtyJeaG4ttIZGje8sLeEjzhA44=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xq11SrfApAHA_x08Ensn1T_cyYE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 15:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:c6:01:dc:15:41:cc:36:77:be:14:10:d3:cb:43:e7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c6ad754ab7c0a401c0ff1d3c127b27d53fdcc981
        Validity
            Not Before: Mar  1 19:00:29 2026 GMT
            Not After : Mar  2 19:00:29 2026 GMT
        Subject: CN=3b0d6ce10e0d16b49a5b233fa63fdaa30e2a7e9a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:4b:a4:ed:c9:ba:41:88:6e:7f:52:f6:fd:17:
                    c2:bf:d0:1e:67:23:c0:16:d5:f4:82:5d:b6:10:20:
                    ab:00:5a:40:53:27:c5:c8:83:bf:8b:e4:7a:ff:51:
                    71:9c:d0:78:07:ea:9c:83:ae:f0:e7:dd:2a:5d:0f:
                    6b:e0:0a:2f:f2:c9:1a:e7:ca:fa:27:3e:14:10:d7:
                    67:09:48:ad:38:8c:ab:1d:0d:0b:25:c3:47:61:b3:
                    a2:46:6e:96:e7:de:d6:b6:79:b5:3c:49:ef:4a:2f:
                    78:0a:24:a1:ba:39:40:a8:0e:7c:6c:80:f3:8c:79:
                    2c:fc:5a:aa:13:fa:64:af:01:f0:f9:13:4f:db:51:
                    ed:b9:b5:95:4b:17:a3:c3:2a:92:d8:ab:86:33:c0:
                    43:c7:6c:e5:e9:a3:16:c9:3f:c1:8f:39:da:c8:e5:
                    8b:cf:bb:f7:31:3e:bd:46:78:bc:bc:59:28:17:65:
                    3d:18:a2:5c:4e:e5:19:98:2e:a9:4d:7a:5f:ec:8a:
                    7e:8d:a0:c3:6b:d4:fe:ff:9f:8a:3f:14:ec:b2:3d:
                    96:02:56:fa:5d:f6:88:d2:49:ed:6e:00:9b:91:d1:
                    6b:cb:86:4a:97:1a:ec:cc:bf:b3:81:f4:24:87:76:
                    2b:c3:04:fe:64:10:b4:95:93:63:c1:9b:69:06:19:
                    5a:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3B:0D:6C:E1:0E:0D:16:B4:9A:5B:23:3F:A6:3F:DA:A3:0E:2A:7E:9A
            X509v3 Authority Key Identifier:
                keyid:C6:AD:75:4A:B7:C0:A4:01:C0:FF:1D:3C:12:7B:27:D5:3F:DC:C9:81

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xq11SrfApAHA_x08Ensn1T_cyYE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4c3133-cb98-4eae-abce-ba33d36755df/1/xq11SrfApAHA_x08Ensn1T_cyYE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:8e:da:cc:03:04:b3:2c:7e:d8:0a:86:64:ad:60:a4:3a:0d:
         55:1d:e8:0a:b1:e1:0f:84:67:2d:00:28:13:6d:73:8f:eb:88:
         b9:cc:f5:cb:8a:fd:03:29:c8:7d:df:b0:43:ef:69:72:41:81:
         ff:17:fb:19:2a:ea:0e:a3:31:fa:9a:0a:7d:6f:db:1c:82:9a:
         a3:88:a9:60:b0:31:76:6a:fe:f3:9f:91:2a:48:39:92:ee:28:
         46:78:b6:2d:4d:56:a4:6b:b1:64:ee:1a:5a:70:6d:a3:79:4f:
         fb:46:c3:52:f9:57:da:7f:d6:d9:7a:e0:61:8b:1e:68:d4:01:
         54:ce:06:c6:6d:3c:4e:cc:1e:a5:38:2b:eb:2d:9c:ee:db:30:
         d2:ca:5c:dc:35:28:df:27:88:43:05:58:4d:83:c0:82:ed:8f:
         3c:c0:c3:12:5c:18:11:60:6a:e3:ea:90:a3:52:9f:27:7f:ec:
         7d:69:a1:25:2d:1d:a3:f5:7c:b5:2c:c9:eb:13:a7:e5:4c:e0:
         fe:84:69:74:5f:9d:a3:90:2c:d8:2d:ce:a4:68:47:4d:bc:b8:
         66:ec:d1:d5:a0:f8:74:a7:21:e8:36:48:a4:4f:a0:35:c2:cd:
         75:3b:02:bc:bb:17:67:f3:76:fe:30:c8:0c:d9:0c:7e:e1:0c:
         64:c6:f0:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqxgHcFUHMNne+FBDTy0PnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2YWQ3NTRhYjdjMGE0MDFjMGZmMWQzYzEyN2IyN2Q1M2Zk
Y2M5ODEwHhcNMjYwMzAxMTkwMDI5WhcNMjYwMzAyMTkwMDI5WjAzMTEwLwYDVQQD
EygzYjBkNmNlMTBlMGQxNmI0OWE1YjIzM2ZhNjNmZGFhMzBlMmE3ZTlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUuk7cm6QYhuf1L2/RfCv9AeZyPA
FtX0gl22ECCrAFpAUyfFyIO/i+R6/1FxnNB4B+qcg67w590qXQ9r4Aov8ska58r6
Jz4UENdnCUitOIyrHQ0LJcNHYbOiRm6W597Wtnm1PEnvSi94CiShujlAqA58bIDz
jHks/FqqE/pkrwHw+RNP21HtubWVSxejwyqS2KuGM8BDx2zl6aMWyT/BjznayOWL
z7v3MT69Rni8vFkoF2U9GKJcTuUZmC6pTXpf7Ip+jaDDa9T+/5+KPxTssj2WAlb6
XfaI0kntbgCbkdFry4ZKlxrszL+zgfQkh3YrwwT+ZBC0lZNjwZtpBhla3wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDsNbOEODRa0mlsjP6Y/2qMOKn6aMB8GA1UdIwQY
MBaAFMatdUq3wKQBwP8dPBJ7J9U/3MmBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHExMVNyZkFwQUhBX3gwOEVuc24xVF9jeVlFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi80YzMxMzMtY2I5OC00ZWFlLWFiY2Ut
YmEzM2QzNjc1NWRmLzEveHExMVNyZkFwQUhBX3gwOEVuc24xVF9jeVlFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi80YzMxMzMtY2I5OC00ZWFlLWFiY2UtYmEzM2QzNjc1NWRm
LzEveHExMVNyZkFwQUhBX3gwOEVuc24xVF9jeVlFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR47azAME
syx+2AqGZK1gpDoNVR3oCrHhD4RnLQAoE21zj+uIucz1y4r9AynIfd+wQ+9pckGB
/xf7GSrqDqMx+poKfW/bHIKao4ipYLAxdmr+85+RKkg5ku4oRni2LU1WpGuxZO4a
WnBto3lP+0bDUvlX2n/W2XrgYYseaNQBVM4Gxm08TswepTgr6y2c7tsw0spc3DUo
3yeIQwVYTYPAgu2PPMDDElwYEWBq4+qQo1KfJ3/sfWmhJS0do/V8tSzJ6xOn5Uzg
/oRpdF+do5As2C3OpGhHTby4ZuzR1aD4dKch6DZIpE+gNcLNdTsCvLsXZ/N2/jDI
DNkMfuEMZMbwAQ==
-----END CERTIFICATE-----