Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.mft
File:                     rSzoJufkLt3WnfrTpZqbmqTigYM.mft (raw, json)
Hash identifier:          j1H0Ctv60QQF9b9/0VsooyeLkUeJfapUTlnqHZmU6Hg=
Subject key identifier:   88:92:3D:98:BE:50:F1:B9:86:FF:43:85:DA:75:16:BA:88:5C:1C:18
Authority key identifier: AD:2C:E8:26:E7:E4:2E:DD:D6:9D:FA:D3:A5:9A:9B:9A:A4:E2:81:83
Certificate issuer:       /CN=ad2ce826e7e42eddd69dfad3a59a9b9aa4e28183
Certificate serial:       019CAA8F6BAE6661C851482774FD806D070D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rSzoJufkLt3WnfrTpZqbmqTigYM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.mft
Manifest number:          1741
Signing time:             Sun 01 Mar 2026 18:00:51 +0000
Manifest this update:     Sun 01 Mar 2026 18:00:51 +0000
Manifest next update:     Mon 02 Mar 2026 18:00:51 +0000
Files and hashes:         1: rSzoJufkLt3WnfrTpZqbmqTigYM.crl (hash: Y0AtdcPb86MQR4m7GvoEaoy5GNiOSwa4PUTnpEgRgrU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rSzoJufkLt3WnfrTpZqbmqTigYM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 18:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:8f:6b:ae:66:61:c8:51:48:27:74:fd:80:6d:07:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ad2ce826e7e42eddd69dfad3a59a9b9aa4e28183
        Validity
            Not Before: Mar  1 18:00:51 2026 GMT
            Not After : Mar  2 18:00:51 2026 GMT
        Subject: CN=88923d98be50f1b986ff4385da7516ba885c1c18
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:15:77:bc:8b:e2:e8:4f:a9:73:bc:5e:7d:63:
                    f9:92:94:b4:e6:f9:a0:b4:a9:50:a1:6c:46:28:8d:
                    5a:32:8d:1e:4a:7b:7c:3f:bd:48:31:c6:90:86:b5:
                    ea:78:7f:a1:0c:1e:b4:a4:29:b8:41:c5:78:dd:25:
                    30:9c:de:b4:d4:43:9f:2e:d6:d9:16:9d:eb:dc:f5:
                    15:08:0b:9a:c0:53:2d:71:83:ca:30:c8:88:38:ec:
                    dd:26:f8:a2:e2:3e:00:0a:9c:0a:74:cd:e7:17:8d:
                    85:33:30:42:ca:cb:e2:64:57:cb:d7:4a:4d:99:de:
                    f7:74:13:b7:fc:49:e3:52:9c:ea:01:17:1b:0b:f7:
                    fd:5f:67:8a:02:d4:6f:e6:58:ef:5e:aa:be:2f:ce:
                    06:6b:0c:64:e8:25:a6:7d:6e:11:eb:35:7e:35:83:
                    5c:a7:f3:aa:f0:33:9c:9d:9d:15:e9:50:9d:c0:59:
                    08:7a:db:39:6b:00:b2:97:e9:b8:56:04:bc:16:92:
                    2d:6f:dc:78:38:c2:7c:d4:90:be:79:76:45:90:41:
                    85:dd:14:76:40:de:de:c9:ce:50:06:de:8c:20:5d:
                    1a:d1:39:81:c3:78:67:c9:f3:60:be:f1:e3:31:14:
                    cd:b4:a1:b7:f4:ce:43:8a:1e:37:79:58:07:88:a2:
                    df:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:92:3D:98:BE:50:F1:B9:86:FF:43:85:DA:75:16:BA:88:5C:1C:18
            X509v3 Authority Key Identifier:
                keyid:AD:2C:E8:26:E7:E4:2E:DD:D6:9D:FA:D3:A5:9A:9B:9A:A4:E2:81:83

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rSzoJufkLt3WnfrTpZqbmqTigYM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/bec563-581e-49e4-9cc7-a83a8d533275/1/rSzoJufkLt3WnfrTpZqbmqTigYM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:0b:e3:48:92:e7:ec:61:6b:d4:40:ec:24:b6:20:35:5e:22:
         ba:51:69:14:91:e9:94:0a:ac:49:14:66:3a:fc:8f:cd:b5:76:
         20:25:65:1d:eb:4f:d7:b3:4b:8f:9f:f7:6b:8b:cc:2f:88:ef:
         aa:2b:43:7c:1a:81:35:b4:68:de:cf:2e:0e:dd:92:92:f9:d6:
         c2:c3:b6:92:9a:ab:9e:7d:2c:cf:07:a5:54:d4:8f:36:c4:3a:
         fc:f0:3f:14:5e:bf:50:45:17:a1:ad:57:fa:dd:d9:48:bf:cb:
         f7:f9:4e:62:1f:02:02:34:dc:8f:f0:7f:8b:59:81:30:c4:78:
         57:fa:31:51:a3:ae:9b:a3:f9:65:f7:d5:dc:2b:cc:24:db:ac:
         e2:de:87:4c:fb:4c:42:28:2e:dc:f8:c9:ae:5b:1c:6b:93:26:
         44:f9:5f:54:1f:76:4e:7d:70:b2:ac:3b:6e:fe:f0:3f:f1:6b:
         9c:43:66:13:0d:ac:9e:19:4a:b7:53:a3:11:cf:4c:7b:e5:f5:
         9d:0d:6d:f5:3b:e7:a4:ed:62:b6:7b:1d:92:35:a2:10:e0:4d:
         d3:c1:75:3e:f6:96:42:80:b6:09:b3:37:cf:32:5c:70:98:c5:
         4b:cc:75:bf:4f:d1:33:36:5e:74:72:ef:62:f7:5c:bf:b9:5f:
         31:8f:42:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----