Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
File:                     Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft (raw, json)
Hash identifier:          xonuOHAXG2THAB9CHMWAf82/TQAu7AfxRElEe6XBlvA=
Subject key identifier:   9D:6E:90:51:4E:1C:F7:71:C8:38:56:2D:04:18:F4:66:27:13:10:1B
Authority key identifier: 43:8F:8E:D1:21:BA:30:81:CF:B2:15:FA:AB:50:AE:14:5B:59:0D:D2
Certificate issuer:       /CN=438f8ed121ba3081cfb215faab50ae145b590dd2
Certificate serial:       019CAB6AEECA8AC87E3F227D91327A92D5CF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Q4-O0SG6MIHPshX6q1CuFFtZDdI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
Manifest number:          112D
Signing time:             Sun 01 Mar 2026 22:00:37 +0000
Manifest this update:     Sun 01 Mar 2026 22:00:37 +0000
Manifest next update:     Mon 02 Mar 2026 22:00:37 +0000
Files and hashes:         1: Q4-O0SG6MIHPshX6q1CuFFtZDdI.crl (hash: qjdh0fumS6Zw4zLQ2rjozNt/gBwMoHjoBInxCS9DUMY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Q4-O0SG6MIHPshX6q1CuFFtZDdI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 22:00:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:6a:ee:ca:8a:c8:7e:3f:22:7d:91:32:7a:92:d5:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=438f8ed121ba3081cfb215faab50ae145b590dd2
        Validity
            Not Before: Mar  1 22:00:37 2026 GMT
            Not After : Mar  2 22:00:37 2026 GMT
        Subject: CN=9d6e90514e1cf771c838562d0418f4662713101b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:75:54:b9:ef:1f:b3:94:b5:80:fc:75:75:65:
                    c7:f9:75:86:cd:3c:ed:3c:08:a7:87:db:e6:47:17:
                    8b:71:89:57:a6:85:83:4b:8e:67:ef:af:c3:60:2c:
                    29:4f:99:48:88:be:c8:d4:ff:7a:07:81:66:6b:16:
                    e9:d4:87:69:cb:51:df:5c:7d:b8:7c:7f:f6:5f:53:
                    fe:ae:d3:3b:4d:a6:c0:3c:ab:75:52:89:2c:3f:9f:
                    cf:98:27:c0:66:c6:65:a3:9c:a7:ed:b7:42:2c:ef:
                    b3:67:ac:70:e3:bb:b0:44:56:2c:29:6c:c8:ac:b3:
                    9b:00:bd:b8:93:90:b5:bf:b9:a7:b2:cb:de:54:8d:
                    eb:34:30:e7:76:5d:94:c4:26:f1:87:76:2b:5a:c9:
                    41:a1:dd:82:3a:f7:6c:c9:f6:07:12:bf:b8:72:67:
                    b7:cc:99:ee:c2:7a:8c:77:44:14:8e:5d:39:d2:f8:
                    89:eb:93:4c:4f:b8:c9:44:b9:2b:11:74:cc:43:7d:
                    5a:c6:b4:a0:59:b0:0c:cb:8f:42:0d:71:ee:b4:8f:
                    38:76:71:9b:51:fc:84:f9:ee:96:95:93:04:e6:ed:
                    1c:49:f5:56:47:52:4f:d8:a6:07:ed:00:ff:1a:fb:
                    ef:61:19:e2:4a:1c:4a:a8:00:81:8b:d9:8d:ab:0d:
                    03:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9D:6E:90:51:4E:1C:F7:71:C8:38:56:2D:04:18:F4:66:27:13:10:1B
            X509v3 Authority Key Identifier:
                keyid:43:8F:8E:D1:21:BA:30:81:CF:B2:15:FA:AB:50:AE:14:5B:59:0D:D2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q4-O0SG6MIHPshX6q1CuFFtZDdI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/61/935044-1af5-45d0-aceb-d0406767e6cc/1/Q4-O0SG6MIHPshX6q1CuFFtZDdI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         94:51:ab:fb:0c:e5:95:60:ed:85:70:c2:49:8a:61:e8:4e:07:
         f5:e9:92:d3:3d:44:5a:46:dd:f6:bc:50:82:45:8b:1c:93:52:
         69:01:6c:33:f8:bb:6a:fb:df:0f:e0:f1:49:ee:e8:3c:6b:0f:
         81:be:70:c9:e8:c6:ba:f1:f6:28:2a:4a:dd:0d:39:ea:7f:f0:
         5c:7e:6b:2b:9a:9d:3b:e5:cc:8b:fa:f0:34:7a:55:29:0b:82:
         03:a1:49:eb:c2:f9:cd:48:40:d4:de:c4:66:bc:24:3b:2e:f4:
         45:ca:07:fd:48:a2:2a:be:7d:2f:fc:d8:39:f4:e3:b1:7c:28:
         35:a2:ad:23:71:40:d9:98:d0:65:eb:13:be:c0:a0:d2:c4:68:
         65:e4:58:bc:67:59:5c:94:26:bd:36:a6:1c:60:93:b9:49:52:
         fb:ca:c9:bb:64:64:be:b4:6f:c5:db:69:50:5f:7b:3c:1b:03:
         31:ff:97:e0:96:68:2d:92:ce:ea:65:d7:09:b2:43:8d:8d:c2:
         e7:a2:c0:fd:33:f2:dd:a3:8f:77:a6:6c:1c:6f:86:c6:07:af:
         a0:a6:4f:9e:f5:d4:39:5a:77:42:a6:68:62:5f:de:af:fa:34:
         2b:f6:f3:eb:e9:74:86:90:2f:b7:b5:e8:4f:1e:c6:6a:79:25:
         d9:82:14:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----