Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft
File:                     cl3CBR5_PY1hf1UYng7m8xdNkto.mft (raw, json)
Hash identifier:          xCVIEnYufJlG+yeItrnIzJff9ME3Rh1MXtrUDxohT/Q=
Subject key identifier:   CC:CB:42:42:96:55:07:CD:FE:A1:CC:FA:B4:6B:4B:F0:10:ED:04:AB
Authority key identifier: 72:5D:C2:05:1E:7F:3D:8D:61:7F:55:18:9E:0E:E6:F3:17:4D:92:DA
Certificate issuer:       /CN=725dc2051e7f3d8d617f55189e0ee6f3174d92da
Certificate serial:       019D9B510560C8D3D931CA1B3697DFF63F3E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cl3CBR5_PY1hf1UYng7m8xdNkto.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft
Manifest number:          05E7
Signing time:             Fri 17 Apr 2026 12:01:11 +0000
Manifest this update:     Fri 17 Apr 2026 12:01:11 +0000
Manifest next update:     Sat 18 Apr 2026 12:01:11 +0000
Files and hashes:         1: cl3CBR5_PY1hf1UYng7m8xdNkto.crl (hash: E8faBo4R2eESmQpzDYYIEq3IZfuVEDtHiySD22AYu4Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cl3CBR5_PY1hf1UYng7m8xdNkto.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 07:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9b:51:05:60:c8:d3:d9:31:ca:1b:36:97:df:f6:3f:3e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=725dc2051e7f3d8d617f55189e0ee6f3174d92da
        Validity
            Not Before: Apr 17 12:01:11 2026 GMT
            Not After : Apr 18 12:01:11 2026 GMT
        Subject: CN=cccb4242965507cdfea1ccfab46b4bf010ed04ab
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:3d:48:2e:9c:0c:69:7d:42:fb:0e:23:55:01:
                    22:06:68:02:e1:13:14:44:0e:26:0c:fa:93:a9:49:
                    6a:bf:49:1c:e6:19:2f:2b:67:f0:f7:cf:17:89:8f:
                    d7:cb:16:1e:3e:c4:7c:80:05:ff:da:04:de:47:0e:
                    1b:6e:ff:4e:d0:42:37:2b:4a:9f:e8:35:4a:2b:5d:
                    e1:6d:42:97:7a:5a:8d:da:c4:93:64:98:50:3f:8e:
                    07:0a:dd:73:13:f1:0c:7e:40:8f:2b:3c:c8:53:ee:
                    2f:24:15:20:fe:37:35:c8:e4:db:7d:a3:99:8a:59:
                    f7:14:84:d7:6d:fc:58:4e:49:c3:d7:54:a9:f1:e5:
                    d2:ca:23:8e:03:6f:45:55:f0:2a:54:7e:bf:82:9e:
                    5f:22:18:c7:52:9a:f9:5a:fb:f3:e3:d4:f0:bb:43:
                    cf:eb:85:c9:f4:63:e5:0c:d1:8e:bc:a3:5a:c6:b5:
                    c0:b6:9b:7f:82:25:6d:3b:6d:cf:2c:be:a4:da:e0:
                    3e:0a:4b:92:30:13:e1:4e:50:93:56:64:7b:b2:57:
                    d9:a8:9a:6e:e5:c3:98:c3:7a:16:dc:28:b7:83:d0:
                    5e:78:62:09:83:ed:6e:a4:65:58:f9:5c:75:8e:dd:
                    cd:16:c5:e3:54:5c:33:2c:b6:58:a7:05:5d:91:72:
                    e3:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:CB:42:42:96:55:07:CD:FE:A1:CC:FA:B4:6B:4B:F0:10:ED:04:AB
            X509v3 Authority Key Identifier:
                keyid:72:5D:C2:05:1E:7F:3D:8D:61:7F:55:18:9E:0E:E6:F3:17:4D:92:DA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cl3CBR5_PY1hf1UYng7m8xdNkto.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:61:31:9c:a9:58:8c:14:63:ec:66:19:27:cb:16:94:b1:03:
         00:74:b8:6a:8b:3c:0d:3a:5a:b8:19:7d:0f:09:93:d4:31:13:
         57:1e:75:b8:79:97:30:c3:6a:7d:99:53:14:fb:01:4c:71:74:
         0f:1f:42:15:42:e5:a8:c5:40:90:b5:1d:ef:9a:dd:13:53:0b:
         3d:f9:22:1b:00:7a:a3:f8:ba:b3:5c:3a:72:95:91:56:49:6f:
         71:bd:0b:c7:6f:f0:bd:90:95:88:a7:fa:e9:65:88:8d:b8:50:
         75:c5:c8:41:f6:70:4e:81:41:55:bb:e6:a1:91:d1:81:98:28:
         43:e9:db:87:76:41:23:68:a0:b5:c6:50:6c:f2:f9:70:de:1d:
         00:a4:88:8e:9e:75:dc:e4:df:ba:e2:c1:79:25:6d:67:c9:11:
         7f:fb:cc:2c:01:46:b4:db:cd:96:96:ea:f1:a6:b6:0e:0e:ef:
         46:98:6f:4b:56:6b:09:70:5c:9b:de:89:17:59:b7:3d:9f:ea:
         e1:7a:0b:fb:1d:6b:5a:2c:f0:f5:b1:3a:bb:b4:3f:13:83:85:
         eb:ae:16:a7:d0:47:05:66:80:24:5b:57:89:06:48:40:2d:ac:
         6a:d9:fa:ee:bf:20:ac:a8:e1:64:04:92:52:98:46:41:b6:4c:
         a3:62:01:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----