Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft
File:                     1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft (raw, json)
Hash identifier:          v4NpTs0bXfNyZc4tDDy1Jk20be50ZPMlwHZf5jdiYQo=
Subject key identifier:   76:00:8A:F1:28:D7:F7:F0:7F:2D:2C:49:4C:DE:54:05:94:AB:42:3B
Authority key identifier: D6:6D:DE:95:0D:A5:6F:12:03:32:7E:50:E2:B3:95:C4:02:25:17:98
Certificate issuer:       /CN=d66dde950da56f1203327e50e2b395c402251798
Certificate serial:       019D98F45D78C5561272E0ED9EE5D760196A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft
Manifest number:          18BE
Signing time:             Fri 17 Apr 2026 01:00:44 +0000
Manifest this update:     Fri 17 Apr 2026 01:00:44 +0000
Manifest next update:     Sat 18 Apr 2026 01:00:44 +0000
Files and hashes:         1: 1m3elQ2lbxIDMn5Q4rOVxAIlF5g.crl (hash: Gp0a8kh24wao9fKUxzXN4b8f5s4lxTrKK3qKVcLKBGU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f4:5d:78:c5:56:12:72:e0:ed:9e:e5:d7:60:19:6a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d66dde950da56f1203327e50e2b395c402251798
        Validity
            Not Before: Apr 17 01:00:44 2026 GMT
            Not After : Apr 18 01:00:44 2026 GMT
        Subject: CN=76008af128d7f7f07f2d2c494cde540594ab423b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:f2:e6:84:20:b0:60:8d:30:ec:bd:5c:5d:a3:
                    27:aa:aa:d6:ca:42:67:46:2d:a2:3c:80:39:91:55:
                    df:bd:5b:8e:b3:71:6a:46:0a:c5:10:4f:66:d6:73:
                    ec:c7:0e:58:9c:c8:c9:1a:64:0c:d2:57:83:b6:aa:
                    96:85:c9:2d:98:24:4f:0a:36:7f:9c:7d:99:f2:5d:
                    c1:8b:01:ab:33:c5:59:54:3c:2a:de:4a:27:cd:a6:
                    2d:11:75:b7:c4:24:62:10:67:0f:ca:55:80:9a:fb:
                    ce:e5:ef:85:05:87:b5:68:bb:3b:82:a3:7d:19:f7:
                    40:11:c8:af:df:1a:02:66:07:10:71:53:58:f2:84:
                    11:9a:71:12:cf:bf:ea:07:52:b3:d8:5d:44:90:6e:
                    30:ef:07:00:b1:9e:b2:1f:3d:0f:66:76:8c:99:75:
                    f7:f4:98:b8:73:7a:86:82:85:d3:e1:6a:8a:ee:80:
                    26:4d:79:d0:ad:db:91:bb:61:50:5c:e2:0b:9c:01:
                    a8:72:29:43:0c:40:4c:e9:c6:e9:c1:df:af:c4:97:
                    f3:af:2a:04:a2:d5:2b:b0:1d:f5:4b:50:46:6f:ea:
                    b3:0e:e7:c3:45:fa:ec:db:aa:cd:aa:b7:d5:4c:f4:
                    11:58:9b:65:72:0e:d2:a7:60:b7:0e:ae:d5:2e:2f:
                    a4:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:00:8A:F1:28:D7:F7:F0:7F:2D:2C:49:4C:DE:54:05:94:AB:42:3B
            X509v3 Authority Key Identifier:
                keyid:D6:6D:DE:95:0D:A5:6F:12:03:32:7E:50:E2:B3:95:C4:02:25:17:98

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:93:79:d9:27:9b:cf:c1:37:3c:1e:91:d5:2f:f6:98:89:8b:
         6c:c7:f1:7c:7e:3b:d3:3b:20:83:a1:9b:2d:df:ef:c5:69:fa:
         cb:7f:58:ef:b0:f2:4c:6a:14:e8:ce:b6:af:2c:b0:9c:75:fe:
         2b:c5:a5:cd:74:4b:68:5b:e3:99:30:72:8e:e4:c0:a5:fa:ed:
         cf:21:ca:13:f4:91:e2:71:55:15:a1:4d:75:90:e6:a6:65:4d:
         af:6b:aa:26:df:54:fc:ab:19:42:7d:91:b2:a1:b7:4e:48:b4:
         90:98:cd:62:e3:e6:c9:c7:18:17:1b:43:c5:c5:cd:fd:38:76:
         d5:9a:13:cd:68:75:a3:7a:d3:13:e6:f2:33:58:ba:06:3e:dd:
         60:c0:08:d4:e7:da:6a:c7:b5:80:89:3a:b5:9c:ad:99:c0:a4:
         a5:3d:51:0f:96:88:96:3a:ee:18:3a:bc:de:65:96:9b:d6:19:
         3c:33:5a:65:b9:e2:ce:1f:7d:c1:73:50:48:4f:93:88:63:af:
         22:7f:f4:c0:99:08:3d:e8:55:72:23:f8:72:68:8d:8b:4f:2e:
         a4:c6:80:8b:d4:b5:3d:2e:9d:71:16:e0:0f:6b:b8:80:94:8f:
         12:77:8e:6a:b4:8b:37:55:0f:c7:75:4b:65:a8:f2:a3:07:b9:
         8d:59:2e:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9F14xVYScuDtnuXXYBlqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2NmRkZTk1MGRhNTZmMTIwMzMyN2U1MGUyYjM5NWM0MDIy
NTE3OTgwHhcNMjYwNDE3MDEwMDQ0WhcNMjYwNDE4MDEwMDQ0WjAzMTEwLwYDVQQD
Eyg3NjAwOGFmMTI4ZDdmN2YwN2YyZDJjNDk0Y2RlNTQwNTk0YWI0MjNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAovLmhCCwYI0w7L1cXaMnqqrWykJn
Ri2iPIA5kVXfvVuOs3FqRgrFEE9m1nPsxw5YnMjJGmQM0leDtqqWhcktmCRPCjZ/
nH2Z8l3BiwGrM8VZVDwq3konzaYtEXW3xCRiEGcPylWAmvvO5e+FBYe1aLs7gqN9
GfdAEciv3xoCZgcQcVNY8oQRmnESz7/qB1Kz2F1EkG4w7wcAsZ6yHz0PZnaMmXX3
9Ji4c3qGgoXT4WqK7oAmTXnQrduRu2FQXOILnAGocilDDEBM6cbpwd+vxJfzryoE
otUrsB31S1BGb+qzDufDRfrs26rNqrfVTPQRWJtlcg7Sp2C3Dq7VLi+k7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHYAivEo1/fwfy0sSUzeVAWUq0I7MB8GA1UdIwQY
MBaAFNZt3pUNpW8SAzJ+UOKzlcQCJReYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMW0zZWxRMmxieElETW41UTRyT1Z4QUlsRjVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS83NTNhYTktYTRiMC00ZjQ3LThiMDAt
ODk3NTJlNGJmNWQzLzEvMW0zZWxRMmxieElETW41UTRyT1Z4QUlsRjVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS83NTNhYTktYTRiMC00ZjQ3LThiMDAtODk3NTJlNGJmNWQz
LzEvMW0zZWxRMmxieElETW41UTRyT1Z4QUlsRjVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPpN52Seb
z8E3PB6R1S/2mImLbMfxfH470zsgg6GbLd/vxWn6y39Y77DyTGoU6M62ryywnHX+
K8WlzXRLaFvjmTByjuTApfrtzyHKE/SR4nFVFaFNdZDmpmVNr2uqJt9U/KsZQn2R
sqG3Tki0kJjNYuPmyccYFxtDxcXN/Th21ZoTzWh1o3rTE+byM1i6Bj7dYMAI1Ofa
ase1gIk6tZytmcCkpT1RD5aIljruGDq83mWWm9YZPDNaZbnizh99wXNQSE+TiGOv
In/0wJkIPehVciP4cmiNi08upMaAi9S1PS6dcRbgD2u4gJSPEneOarSLN1UPx3VL
Zajyowe5jVkuSQ==
-----END CERTIFICATE-----