Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
File:                     iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json)
Hash identifier:          K9p+cIsBfeKF/nlkBAFVHUJ4gBOHlgG/9Sy0qO3uzro=
Subject key identifier:   1C:6E:C9:B5:DE:DD:20:19:CF:00:59:74:62:55:2A:76:CD:41:4E:F8
Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
Certificate issuer:       /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Certificate serial:       019D9A7488314D6DB2B8DA1FAC718AB52C36
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
Manifest number:          0783
Signing time:             Fri 17 Apr 2026 08:00:21 +0000
Manifest this update:     Fri 17 Apr 2026 08:00:21 +0000
Manifest next update:     Sat 18 Apr 2026 08:00:21 +0000
Files and hashes:         1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: xIHSDeDOkhcL1FxVIGl5XGvwu5MsdizxfQelE8kAA5Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 07:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9a:74:88:31:4d:6d:b2:b8:da:1f:ac:71:8a:b5:2c:36
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
        Validity
            Not Before: Apr 17 08:00:21 2026 GMT
            Not After : Apr 18 08:00:21 2026 GMT
        Subject: CN=1c6ec9b5dedd2019cf00597462552a76cd414ef8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:5c:f4:8a:56:d4:66:dd:fb:2e:8b:0a:ff:05:
                    6c:53:b8:46:89:56:2f:87:c9:dd:fe:bb:5b:66:6a:
                    8f:d9:c5:f1:8b:7d:02:57:56:90:39:f9:7a:f1:71:
                    72:c1:62:66:10:6b:99:28:4b:10:9f:41:d8:e6:c7:
                    15:c1:8a:11:0e:de:77:2b:ee:f2:b3:49:e6:c8:e0:
                    6e:26:fe:93:59:0e:4f:47:23:86:3c:18:70:b3:b1:
                    c9:d9:4c:5a:87:a3:30:90:c6:80:58:a2:31:cc:c2:
                    17:7b:5f:d7:bc:9d:c4:e4:26:89:0c:1f:ab:f2:ea:
                    d8:2f:5e:7a:cd:85:26:0a:e5:a5:e3:ab:12:d8:68:
                    75:cd:4a:c1:b9:96:d1:e8:87:6e:71:5e:46:26:52:
                    36:03:37:07:d8:a5:29:8a:59:b4:f0:c1:b2:92:f2:
                    84:2f:cd:3b:1e:f9:d8:73:61:b3:13:1c:fb:fe:a1:
                    4c:79:44:03:eb:5a:ac:c5:69:cc:75:31:22:59:25:
                    84:48:6a:eb:e1:2e:83:4c:f8:7d:f2:a4:34:64:1b:
                    47:50:cc:3e:31:76:af:67:92:a9:bc:07:15:a5:8c:
                    d3:25:f5:ef:c3:79:17:64:f8:00:90:a5:76:4f:6c:
                    8b:53:c7:da:16:e6:e2:ad:5a:c3:a5:28:c1:3e:49:
                    49:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:6E:C9:B5:DE:DD:20:19:CF:00:59:74:62:55:2A:76:CD:41:4E:F8
            X509v3 Authority Key Identifier:
                keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:85:76:92:28:19:1d:77:d1:71:12:4d:11:98:27:74:00:d1:
         90:f7:09:c6:a5:a6:75:56:64:24:ef:d7:ae:c0:d9:3d:a0:af:
         5a:75:6e:2b:e2:a7:27:ed:4c:70:fc:39:ff:5c:47:50:bc:57:
         36:8d:4f:8f:b7:c0:ad:01:78:60:6e:69:8f:1a:cc:08:77:7b:
         d7:0e:b6:54:95:87:3b:9f:e3:cb:a3:dc:58:a1:14:fc:2d:a2:
         a1:fc:4b:c3:c1:0e:68:94:8c:80:f6:f4:40:6a:74:d5:72:29:
         42:bc:ff:93:c7:e2:d7:28:61:e6:eb:9f:1f:61:79:53:73:51:
         3a:6f:60:54:23:13:ce:46:2d:42:d8:9a:d8:5f:56:86:d3:2e:
         9a:c9:0c:61:05:92:82:74:3c:18:74:10:09:47:70:e3:28:6a:
         2c:a9:a4:9e:47:8c:d6:27:d4:49:47:24:fe:08:86:b5:04:09:
         b9:1f:44:b9:81:b4:0f:72:a5:a0:1d:ab:ba:e9:2a:da:d9:46:
         23:b1:03:d2:e3:14:db:16:b3:b0:4e:ab:de:5b:0a:87:7f:ab:
         01:3c:32:cc:75:ff:0b:ec:a5:8d:91:3b:b7:d2:46:03:02:f3:
         c3:04:e9:52:50:ba:b5:52:da:65:1f:78:19:d4:ae:b9:4d:7c:
         fd:84:8f:32
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2adIgxTW2yuNofrHGKtSw2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5N2YzNWFjNDgyOGFlYTk1ZmE1ZDJkODA0ZDMzYTdiMGNm
ZjQ1OGEwHhcNMjYwNDE3MDgwMDIxWhcNMjYwNDE4MDgwMDIxWjAzMTEwLwYDVQQD
EygxYzZlYzliNWRlZGQyMDE5Y2YwMDU5NzQ2MjU1MmE3NmNkNDE0ZWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzlz0ilbUZt37LosK/wVsU7hGiVYv
h8nd/rtbZmqP2cXxi30CV1aQOfl68XFywWJmEGuZKEsQn0HY5scVwYoRDt53K+7y
s0nmyOBuJv6TWQ5PRyOGPBhws7HJ2Uxah6MwkMaAWKIxzMIXe1/XvJ3E5CaJDB+r
8urYL156zYUmCuWl46sS2Gh1zUrBuZbR6IducV5GJlI2AzcH2KUpilm08MGykvKE
L807HvnYc2GzExz7/qFMeUQD61qsxWnMdTEiWSWESGrr4S6DTPh98qQ0ZBtHUMw+
MXavZ5KpvAcVpYzTJfXvw3kXZPgAkKV2T2yLU8faFubirVrDpSjBPklJiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBxuybXe3SAZzwBZdGJVKnbNQU74MB8GA1UdIwQY
MBaAFIl/NaxIKK6pX6XS2ATTOnsM/0WKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYt
YjBlNDEwM2Y0OTYyLzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYtYjBlNDEwM2Y0OTYy
LzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARIV2kigZ
HXfRcRJNEZgndADRkPcJxqWmdVZkJO/XrsDZPaCvWnVuK+KnJ+1McPw5/1xHULxX
No1Pj7fArQF4YG5pjxrMCHd71w62VJWHO5/jy6PcWKEU/C2iofxLw8EOaJSMgPb0
QGp01XIpQrz/k8fi1yhh5uufH2F5U3NROm9gVCMTzkYtQtia2F9WhtMumskMYQWS
gnQ8GHQQCUdw4yhqLKmknkeM1ifUSUck/giGtQQJuR9EuYG0D3KloB2ruukq2tlG
I7ED0uMU2xazsE6r3lsKh3+rATwyzHX/C+yljZE7t9JGAwLzwwTpUlC6tVLaZR94
GdSuuU18/YSPMg==
-----END CERTIFICATE-----