Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
File:                     syznolxromOxucmrdrjS3DoNaAY.mft (raw, json)
Hash identifier:          3iNDL239HlosXHZxVWm9yivd+JoTk/Cmr/N7h+QsP3c=
Subject key identifier:   65:65:83:92:C8:3E:F9:09:2A:A7:90:18:04:32:67:74:C9:76:DD:71
Authority key identifier: B3:2C:E7:A2:5C:6B:A2:63:B1:B9:C9:AB:76:B8:D2:DC:3A:0D:68:06
Certificate issuer:       /CN=b32ce7a25c6ba263b1b9c9ab76b8d2dc3a0d6806
Certificate serial:       019D98F4CB22326332AFE27A1C909D55E611
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
Manifest number:          0772
Signing time:             Fri 17 Apr 2026 01:01:12 +0000
Manifest this update:     Fri 17 Apr 2026 01:01:12 +0000
Manifest next update:     Sat 18 Apr 2026 01:01:12 +0000
Files and hashes:         1: syznolxromOxucmrdrjS3DoNaAY.crl (hash: 7PKRuGy8Bv6Dfh+uKb/KLdKuocN0fTA5wLtm68HzdYw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f4:cb:22:32:63:32:af:e2:7a:1c:90:9d:55:e6:11
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b32ce7a25c6ba263b1b9c9ab76b8d2dc3a0d6806
        Validity
            Not Before: Apr 17 01:01:12 2026 GMT
            Not After : Apr 18 01:01:12 2026 GMT
        Subject: CN=65658392c83ef9092aa7901804326774c976dd71
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:0b:c9:ab:ad:61:1a:66:c5:e2:01:f0:52:94:
                    ae:9d:7b:5b:b6:d2:e7:3e:96:93:c9:68:ab:25:29:
                    48:7c:dd:50:85:08:98:55:44:17:2e:b2:d3:8c:dc:
                    25:64:9a:40:7f:0a:17:66:52:9b:03:86:9d:13:28:
                    5b:47:c5:4b:b0:32:bb:dc:75:55:72:86:3a:d9:62:
                    6f:15:e4:11:a0:bc:22:e6:5f:c2:f3:c7:39:51:4b:
                    13:67:d0:35:74:fb:99:30:d3:03:dc:d4:0f:a7:f6:
                    a0:d5:a4:47:5d:25:63:f3:73:b8:e2:aa:5d:72:ef:
                    36:df:7f:f0:15:8f:a5:19:7c:c4:d8:3b:68:23:a9:
                    ef:12:f8:c3:b0:e5:bd:ed:34:1c:3d:f4:f6:87:c0:
                    0f:2a:5f:39:09:f1:a9:98:a4:76:9d:14:7a:dd:ff:
                    f9:77:1f:52:b5:29:59:b2:65:01:2c:d3:8c:0d:a9:
                    ad:b3:e6:b6:c3:4a:71:f2:5d:1d:87:c4:32:71:e6:
                    c1:c2:3a:2a:dc:64:34:a5:38:57:8f:a8:7e:b8:c6:
                    10:a2:66:83:2a:a9:33:d9:2d:87:cc:86:c1:51:71:
                    45:e7:fa:5d:8d:c7:64:51:1d:e5:23:ab:a2:f0:c5:
                    a1:1f:65:79:0c:66:41:ac:d1:6b:85:ad:8b:02:b5:
                    b3:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                65:65:83:92:C8:3E:F9:09:2A:A7:90:18:04:32:67:74:C9:76:DD:71
            X509v3 Authority Key Identifier:
                keyid:B3:2C:E7:A2:5C:6B:A2:63:B1:B9:C9:AB:76:B8:D2:DC:3A:0D:68:06

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syznolxromOxucmrdrjS3DoNaAY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/a3a653-aefa-48cd-aac7-3403a84297b1/1/syznolxromOxucmrdrjS3DoNaAY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:31:f3:a8:18:28:e7:83:64:1c:ea:21:0b:a1:a3:da:72:81:
         46:28:6e:b4:86:d3:e1:ff:ed:df:50:9b:c3:4d:7a:00:df:ea:
         a6:05:27:df:57:b5:0e:2d:38:63:c1:f1:9f:fd:54:9c:f5:4b:
         24:01:53:c5:93:e6:5f:00:34:17:ea:54:58:00:d2:37:33:94:
         64:15:bd:8d:86:07:5f:d9:4d:94:58:f0:2e:0a:e2:ac:d0:a3:
         5d:2a:5f:d4:d3:2e:6f:ab:55:bf:b8:d2:63:cf:3d:26:31:83:
         bb:56:51:9a:2e:d5:39:fd:60:1d:31:53:10:aa:c6:fb:07:a8:
         44:11:52:34:c0:1a:d4:49:b2:e6:bc:31:e7:e5:31:2c:24:36:
         96:3b:15:71:f7:aa:35:05:3f:3c:09:5f:c5:30:3c:d6:7f:9b:
         0c:95:e1:8c:97:44:b4:a5:7e:63:4d:f3:2a:a4:bb:1d:18:6b:
         56:32:c3:0f:43:34:5c:a9:27:f8:23:c1:8c:ab:de:e8:7f:71:
         8b:95:e8:2d:ae:13:18:b7:96:b6:41:4a:63:9a:5a:2a:f8:c8:
         d7:6f:da:34:1d:ea:b8:9e:90:b4:61:56:40:cb:01:f3:96:a8:
         d7:33:b3:04:ce:87:c5:60:c5:21:a1:2b:6a:0e:bb:ea:89:07:
         68:19:74:5d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9MsiMmMyr+J6HJCdVeYRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzMmNlN2EyNWM2YmEyNjNiMWI5YzlhYjc2YjhkMmRjM2Ew
ZDY4MDYwHhcNMjYwNDE3MDEwMTEyWhcNMjYwNDE4MDEwMTEyWjAzMTEwLwYDVQQD
Eyg2NTY1ODM5MmM4M2VmOTA5MmFhNzkwMTgwNDMyNjc3NGM5NzZkZDcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvAvJq61hGmbF4gHwUpSunXtbttLn
PpaTyWirJSlIfN1QhQiYVUQXLrLTjNwlZJpAfwoXZlKbA4adEyhbR8VLsDK73HVV
coY62WJvFeQRoLwi5l/C88c5UUsTZ9A1dPuZMNMD3NQPp/ag1aRHXSVj83O44qpd
cu8233/wFY+lGXzE2DtoI6nvEvjDsOW97TQcPfT2h8APKl85CfGpmKR2nRR63f/5
dx9StSlZsmUBLNOMDamts+a2w0px8l0dh8QycebBwjoq3GQ0pThXj6h+uMYQomaD
Kqkz2S2HzIbBUXFF5/pdjcdkUR3lI6ui8MWhH2V5DGZBrNFrha2LArWzOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGVlg5LIPvkJKqeQGAQyZ3TJdt1xMB8GA1UdIwQY
MBaAFLMs56Jca6JjsbnJq3a40tw6DWgGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3l6bm9seHJvbU94dWNtcmRyalMzRG9OYUFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9hM2E2NTMtYWVmYS00OGNkLWFhYzct
MzQwM2E4NDI5N2IxLzEvc3l6bm9seHJvbU94dWNtcmRyalMzRG9OYUFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy9hM2E2NTMtYWVmYS00OGNkLWFhYzctMzQwM2E4NDI5N2Ix
LzEvc3l6bm9seHJvbU94dWNtcmRyalMzRG9OYUFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJjHzqBgo
54NkHOohC6Gj2nKBRihutIbT4f/t31Cbw016AN/qpgUn31e1Di04Y8Hxn/1UnPVL
JAFTxZPmXwA0F+pUWADSNzOUZBW9jYYHX9lNlFjwLgrirNCjXSpf1NMub6tVv7jS
Y889JjGDu1ZRmi7VOf1gHTFTEKrG+weoRBFSNMAa1Emy5rwx5+UxLCQ2ljsVcfeq
NQU/PAlfxTA81n+bDJXhjJdEtKV+Y03zKqS7HRhrVjLDD0M0XKkn+CPBjKve6H9x
i5XoLa4TGLeWtkFKY5paKvjI12/aNB3quJ6QtGFWQMsB85ao1zOzBM6HxWDFIaEr
ag676okHaBl0XQ==
-----END CERTIFICATE-----