Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft
File:                     yAH8mVpSGvH1Atnq8S1mIaZMr00.mft (raw, json)
Hash identifier:          fvnPAD/r7Sai9b+FJnlgVNp9+u5vpTgnt7nVj1d/47Y=
Subject key identifier:   A3:26:0F:E8:5E:B7:CE:17:93:82:E5:97:E7:3E:06:AE:17:FB:3D:20
Authority key identifier: C8:01:FC:99:5A:52:1A:F1:F5:02:D9:EA:F1:2D:66:21:A6:4C:AF:4D
Certificate issuer:       /CN=c801fc995a521af1f502d9eaf12d6621a64caf4d
Certificate serial:       019CAD5A3B2F810C23D06B248E2CF7F54E77
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft
Manifest number:          1843
Signing time:             Mon 02 Mar 2026 07:01:37 +0000
Manifest this update:     Mon 02 Mar 2026 07:01:37 +0000
Manifest next update:     Tue 03 Mar 2026 07:01:37 +0000
Files and hashes:         1: yAH8mVpSGvH1Atnq8S1mIaZMr00.crl (hash: +MzUmghow2BHpRyGN1QgyjBIJGra9vJ21au+YgAxYQ4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 07:01:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:5a:3b:2f:81:0c:23:d0:6b:24:8e:2c:f7:f5:4e:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c801fc995a521af1f502d9eaf12d6621a64caf4d
        Validity
            Not Before: Mar  2 07:01:37 2026 GMT
            Not After : Mar  3 07:01:37 2026 GMT
        Subject: CN=a3260fe85eb7ce179382e597e73e06ae17fb3d20
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:f9:71:12:6f:46:71:a7:06:47:47:68:75:b7:
                    ed:ea:c4:0c:c7:57:a7:e3:c4:fc:06:86:38:65:e0:
                    c3:28:a4:0d:e3:8e:0b:d6:5b:be:4f:12:5b:b7:5d:
                    89:ab:2b:c6:07:56:c1:ad:75:e3:03:a8:d0:ef:f5:
                    ac:3e:d0:1a:bb:e9:cf:16:8f:a5:cc:86:8c:6b:72:
                    0a:ba:d1:c9:85:51:3f:17:30:5a:ec:d9:a3:3f:2d:
                    74:84:3c:4f:b8:a6:1b:73:ae:df:28:2c:67:0a:96:
                    f1:55:57:b5:d8:10:1c:b9:d9:ca:21:80:9a:88:8f:
                    4a:a2:52:6b:4c:3a:22:a7:5d:fb:a0:95:b3:d1:82:
                    c0:cf:b0:f9:2c:0c:ac:bf:51:4b:b2:65:b4:1c:b8:
                    f3:89:cb:3c:20:89:2b:2e:ed:44:ef:a4:b9:55:81:
                    fc:de:99:08:6e:12:17:bf:88:09:5f:c4:36:1e:6c:
                    57:8b:e6:9a:78:cb:2d:8d:fd:6f:35:78:35:fc:ac:
                    da:d2:cd:53:f4:e3:89:07:08:73:ff:2a:c2:ce:16:
                    04:69:b4:66:56:d3:14:e0:6b:db:63:bf:c4:47:f2:
                    25:f6:44:cf:3b:9e:69:99:0f:76:18:87:22:da:d4:
                    58:d2:d6:b8:48:e4:7d:13:85:53:b8:57:2f:54:20:
                    93:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A3:26:0F:E8:5E:B7:CE:17:93:82:E5:97:E7:3E:06:AE:17:FB:3D:20
            X509v3 Authority Key Identifier:
                keyid:C8:01:FC:99:5A:52:1A:F1:F5:02:D9:EA:F1:2D:66:21:A6:4C:AF:4D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yAH8mVpSGvH1Atnq8S1mIaZMr00.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/b041b8-6b24-44f3-a748-72c0d509334d/1/yAH8mVpSGvH1Atnq8S1mIaZMr00.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:b6:6b:fc:1f:33:84:41:3c:80:4c:c6:0c:f3:3e:42:2f:44:
         42:7b:c2:86:0b:c6:15:6d:eb:98:6a:d7:e9:62:b7:0f:cb:06:
         f4:d1:80:1d:61:5e:98:bf:03:81:ca:5d:54:2f:d8:ec:81:cc:
         0c:32:e7:ae:98:51:66:ae:8e:e2:15:8a:89:b4:77:06:af:22:
         c1:37:22:00:d3:5d:1f:c0:7b:21:d3:c2:5b:05:e3:ff:a5:24:
         02:61:3f:66:74:95:2c:ce:dc:15:00:e6:01:63:6b:59:6a:24:
         d1:6a:e6:66:15:c7:b9:9a:52:6b:56:74:4e:c7:35:f3:a5:c8:
         3c:23:98:16:b2:2a:a2:46:14:dd:f7:0e:0e:be:75:4c:60:e0:
         fc:12:ce:24:04:6b:8e:08:58:03:78:99:47:4b:31:87:b6:1d:
         55:1a:bf:ca:f3:c7:7e:a5:d3:aa:5a:86:db:09:8f:73:43:36:
         99:fa:3d:b2:8d:d4:fc:aa:73:7c:d2:18:72:12:29:41:3c:64:
         ff:2d:3c:ef:4d:58:9e:55:a7:4c:93:48:01:95:cf:20:52:7d:
         d3:21:11:45:05:23:a7:9f:03:ef:ca:21:1b:92:4e:83:c6:3d:
         c2:1a:bb:22:24:0f:95:1e:33:fe:e5:35:5c:57:04:35:5f:de:
         28:32:8e:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytWjsvgQwj0Gskjiz39U53MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4MDFmYzk5NWE1MjFhZjFmNTAyZDllYWYxMmQ2NjIxYTY0
Y2FmNGQwHhcNMjYwMzAyMDcwMTM3WhcNMjYwMzAzMDcwMTM3WjAzMTEwLwYDVQQD
EyhhMzI2MGZlODVlYjdjZTE3OTM4MmU1OTdlNzNlMDZhZTE3ZmIzZDIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw/lxEm9GcacGR0dodbft6sQMx1en
48T8BoY4ZeDDKKQN444L1lu+TxJbt12JqyvGB1bBrXXjA6jQ7/WsPtAau+nPFo+l
zIaMa3IKutHJhVE/FzBa7NmjPy10hDxPuKYbc67fKCxnCpbxVVe12BAcudnKIYCa
iI9KolJrTDoip137oJWz0YLAz7D5LAysv1FLsmW0HLjzics8IIkrLu1E76S5VYH8
3pkIbhIXv4gJX8Q2HmxXi+aaeMstjf1vNXg1/Kza0s1T9OOJBwhz/yrCzhYEabRm
VtMU4GvbY7/ER/Il9kTPO55pmQ92GIci2tRY0ta4SOR9E4VTuFcvVCCTswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKMmD+het84Xk4Lll+c+Bq4X+z0gMB8GA1UdIwQY
MBaAFMgB/JlaUhrx9QLZ6vEtZiGmTK9NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveUFIOG1WcFNHdkgxQXRucThTMW1JYVpNcjAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9iMDQxYjgtNmIyNC00NGYzLWE3NDgt
NzJjMGQ1MDkzMzRkLzEveUFIOG1WcFNHdkgxQXRucThTMW1JYVpNcjAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi9iMDQxYjgtNmIyNC00NGYzLWE3NDgtNzJjMGQ1MDkzMzRk
LzEveUFIOG1WcFNHdkgxQXRucThTMW1JYVpNcjAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWbZr/B8z
hEE8gEzGDPM+Qi9EQnvChgvGFW3rmGrX6WK3D8sG9NGAHWFemL8DgcpdVC/Y7IHM
DDLnrphRZq6O4hWKibR3Bq8iwTciANNdH8B7IdPCWwXj/6UkAmE/ZnSVLM7cFQDm
AWNrWWok0WrmZhXHuZpSa1Z0Tsc186XIPCOYFrIqokYU3fcODr51TGDg/BLOJARr
jghYA3iZR0sxh7YdVRq/yvPHfqXTqlqG2wmPc0M2mfo9so3U/KpzfNIYchIpQTxk
/y08701YnlWnTJNIAZXPIFJ90yERRQUjp58D78ohG5JOg8Y9whq7IiQPlR4z/uU1
XFcENV/eKDKOYA==
-----END CERTIFICATE-----