Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
File:                     sTI2xNBokx4LRMmLKQqPqlVKA7k.mft (raw, json)
Hash identifier:          nAdfmSjNCEEqx3xaiYRaFI56ubMibAOB1j3O25ysius=
Subject key identifier:   42:89:10:77:B1:72:31:94:31:27:07:AB:36:D6:28:73:33:44:8C:C8
Authority key identifier: B1:32:36:C4:D0:68:93:1E:0B:44:C9:8B:29:0A:8F:AA:55:4A:03:B9
Certificate issuer:       /CN=b13236c4d068931e0b44c98b290a8faa554a03b9
Certificate serial:       019CABD96627110BBF1777EFCDB6B4154DDC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
Manifest number:          060D
Signing time:             Mon 02 Mar 2026 00:01:17 +0000
Manifest this update:     Mon 02 Mar 2026 00:01:17 +0000
Manifest next update:     Tue 03 Mar 2026 00:01:17 +0000
Files and hashes:         1: sTI2xNBokx4LRMmLKQqPqlVKA7k.crl (hash: JowEv1mgqFZthZ1dpfJ3af8gkJy9a/OcgoST11wp8Xc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:d9:66:27:11:0b:bf:17:77:ef:cd:b6:b4:15:4d:dc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b13236c4d068931e0b44c98b290a8faa554a03b9
        Validity
            Not Before: Mar  2 00:01:17 2026 GMT
            Not After : Mar  3 00:01:17 2026 GMT
        Subject: CN=42891077b1723194312707ab36d6287333448cc8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:e6:c3:ff:bd:ce:d0:81:6d:03:81:91:c7:bf:
                    e7:28:70:2b:4b:ac:48:c2:2c:c8:20:b6:2b:2c:9d:
                    4f:ac:81:a9:4f:06:ce:09:ad:16:e6:9c:89:24:30:
                    90:02:51:cd:c4:e2:55:5c:a2:36:79:3d:ff:bc:9d:
                    d5:7f:27:ad:7d:57:12:15:38:63:88:66:bc:03:71:
                    32:16:75:b2:fb:48:36:10:b6:2b:5e:97:89:95:5c:
                    03:f1:04:db:bb:f6:7e:30:69:8f:3b:eb:a0:9a:c7:
                    07:ce:a9:f3:71:63:c8:f6:59:1f:b5:93:ac:bd:7c:
                    2d:09:4c:dd:b3:ae:55:b4:25:13:4a:16:49:9c:9e:
                    6d:bc:b8:52:c0:d2:49:0d:76:3e:8f:76:88:e8:ad:
                    1a:d5:97:ef:f1:d4:ac:38:57:43:1d:89:64:0a:5a:
                    6d:84:ec:ed:68:b8:b8:59:81:06:d2:88:4e:eb:9d:
                    25:00:bd:7b:34:e7:2e:03:53:6b:9b:cc:fd:ee:30:
                    81:3f:35:9b:31:a4:5e:20:ad:bd:8b:c2:42:eb:79:
                    fc:93:61:04:8a:60:f3:3e:ae:76:f6:9a:7c:38:70:
                    bd:5f:e1:51:75:d6:fb:5c:1f:32:e0:87:4b:86:c8:
                    f2:ae:db:8b:c9:c6:63:e5:47:10:8a:a3:31:f4:c8:
                    fe:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:89:10:77:B1:72:31:94:31:27:07:AB:36:D6:28:73:33:44:8C:C8
            X509v3 Authority Key Identifier:
                keyid:B1:32:36:C4:D0:68:93:1E:0B:44:C9:8B:29:0A:8F:AA:55:4A:03:B9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:7d:f7:0d:50:3e:7e:a6:e9:d7:28:74:89:33:af:0a:94:a3:
         d5:57:d0:f3:b2:7d:3f:5e:61:c1:ba:53:3d:a2:fe:39:64:d2:
         9e:59:9b:23:f5:c7:ff:4c:d8:7b:8b:ef:76:80:43:85:c8:a9:
         e0:7a:6a:df:65:ae:78:18:84:16:f2:b1:38:a8:33:fe:9f:27:
         10:a9:89:ad:09:25:e7:82:7e:c2:67:1f:4a:24:60:fd:24:5e:
         b5:7e:31:fb:71:8f:6d:97:ae:a6:26:fe:c7:12:47:43:07:68:
         07:1e:33:c3:0a:3f:89:55:56:f8:2d:e4:75:a3:23:f2:32:fa:
         3a:fc:21:15:71:c4:d4:92:4b:5c:c0:a4:cb:23:63:32:90:1c:
         e7:23:77:c5:b3:e6:bc:78:ba:ee:3e:e8:d2:89:0b:5d:89:b1:
         83:bf:00:a3:9c:ae:5d:86:a6:d5:5a:bd:19:c7:06:52:06:a5:
         1b:f1:c1:93:4b:c6:27:61:ae:de:54:83:43:81:61:19:4c:78:
         8a:4d:75:0a:87:f7:d5:ad:ea:a5:b5:ac:ef:bf:d4:9c:9c:bb:
         92:ea:49:dc:b9:7f:9c:4f:65:b9:93:e4:d8:bd:26:be:78:0d:
         09:74:22:dd:15:1d:ab:dc:28:0c:07:79:bf:1d:ea:03:f0:b2:
         0b:84:b5:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2WYnEQu/F3fvzba0FU3cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxMzIzNmM0ZDA2ODkzMWUwYjQ0Yzk4YjI5MGE4ZmFhNTU0
YTAzYjkwHhcNMjYwMzAyMDAwMTE3WhcNMjYwMzAzMDAwMTE3WjAzMTEwLwYDVQQD
Eyg0Mjg5MTA3N2IxNzIzMTk0MzEyNzA3YWIzNmQ2Mjg3MzMzNDQ4Y2M4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+bD/73O0IFtA4GRx7/nKHArS6xI
wizIILYrLJ1PrIGpTwbOCa0W5pyJJDCQAlHNxOJVXKI2eT3/vJ3VfyetfVcSFThj
iGa8A3EyFnWy+0g2ELYrXpeJlVwD8QTbu/Z+MGmPO+ugmscHzqnzcWPI9lkftZOs
vXwtCUzds65VtCUTShZJnJ5tvLhSwNJJDXY+j3aI6K0a1Zfv8dSsOFdDHYlkClpt
hOztaLi4WYEG0ohO650lAL17NOcuA1Nrm8z97jCBPzWbMaReIK29i8JC63n8k2EE
imDzPq529pp8OHC9X+FRddb7XB8y4IdLhsjyrtuLycZj5UcQiqMx9Mj+1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEKJEHexcjGUMScHqzbWKHMzRIzIMB8GA1UdIwQY
MBaAFLEyNsTQaJMeC0TJiykKj6pVSgO5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1RJMnhOQm9reDRMUk1tTEtRcVBxbFZLQTdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81NzI5ZmEtNTlkZC00MzQ2LThjMDAt
MmRkMTE5ODRiMzVmLzEvc1RJMnhOQm9reDRMUk1tTEtRcVBxbFZLQTdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS81NzI5ZmEtNTlkZC00MzQ2LThjMDAtMmRkMTE5ODRiMzVm
LzEvc1RJMnhOQm9reDRMUk1tTEtRcVBxbFZLQTdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIn33DVA+
fqbp1yh0iTOvCpSj1VfQ87J9P15hwbpTPaL+OWTSnlmbI/XH/0zYe4vvdoBDhcip
4Hpq32WueBiEFvKxOKgz/p8nEKmJrQkl54J+wmcfSiRg/SRetX4x+3GPbZeupib+
xxJHQwdoBx4zwwo/iVVW+C3kdaMj8jL6OvwhFXHE1JJLXMCkyyNjMpAc5yN3xbPm
vHi67j7o0okLXYmxg78Ao5yuXYam1Vq9GccGUgalG/HBk0vGJ2Gu3lSDQ4FhGUx4
ik11Cof31a3qpbWs77/UnJy7kupJ3Ll/nE9luZPk2L0mvngNCXQi3RUdq9woDAd5
vx3qA/CyC4S1kg==
-----END CERTIFICATE-----