Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft
File:                     Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft (raw, json)
Hash identifier:          wkoYNFXIGnuKKkePMTFHlAmakKTBx9t+QYQW1zYmh/w=
Subject key identifier:   CE:D1:20:8F:F9:33:E2:F0:E3:D3:7E:38:16:29:26:F2:02:A7:07:10
Authority key identifier: 0E:87:E5:D3:3A:9B:28:BE:7F:1A:F8:BC:9C:13:8B:15:80:90:F1:89
Certificate issuer:       /CN=0e87e5d33a9b28be7f1af8bc9c138b158090f189
Certificate serial:       019CAED9E5C2E92E6AC960DB09843FE0A90A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft
Manifest number:          06B4
Signing time:             Mon 02 Mar 2026 14:00:41 +0000
Manifest this update:     Mon 02 Mar 2026 14:00:41 +0000
Manifest next update:     Tue 03 Mar 2026 14:00:41 +0000
Files and hashes:         1: Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.crl (hash: e+bh6+CUnnfqmZmBVy7+hGHVIPXHu2yytaKFFvwahWQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 14:00:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ae:d9:e5:c2:e9:2e:6a:c9:60:db:09:84:3f:e0:a9:0a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0e87e5d33a9b28be7f1af8bc9c138b158090f189
        Validity
            Not Before: Mar  2 14:00:41 2026 GMT
            Not After : Mar  3 14:00:41 2026 GMT
        Subject: CN=ced1208ff933e2f0e3d37e38162926f202a70710
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:77:a7:9c:f7:b6:84:1e:10:e4:05:88:f1:60:
                    83:62:7d:37:68:81:67:2a:e2:85:13:9c:24:3a:2a:
                    c2:47:8f:6d:0e:e4:73:d1:6a:65:ce:d7:6c:81:ee:
                    58:96:ba:b7:31:28:dd:16:a4:6f:55:b4:e3:ba:86:
                    a0:58:22:66:f1:3a:db:2e:56:9d:59:90:5a:b3:e7:
                    d4:67:e2:ad:99:88:28:5a:5d:32:be:38:67:ff:8b:
                    f8:be:c9:13:4e:17:24:be:56:46:94:31:e9:e3:34:
                    5b:78:8d:7b:20:4a:e8:e3:d5:24:dd:54:bb:89:77:
                    79:0c:46:bc:bf:48:8c:40:35:f3:4b:c8:5d:58:d8:
                    b3:da:10:a3:d7:a5:29:2f:0b:9e:56:a0:1f:ee:05:
                    3c:78:a0:9d:ff:3a:c7:eb:47:91:97:f9:ce:7c:07:
                    90:5e:c7:21:c1:bd:da:80:6d:e1:e9:3f:c9:17:99:
                    be:9d:34:19:db:47:f3:f9:42:9a:2d:ec:fd:f1:2a:
                    16:a7:4f:c1:1c:26:8f:12:93:21:0d:b2:6b:57:b2:
                    17:52:a5:00:ab:b3:b4:b7:14:53:6b:5e:e7:bc:ef:
                    90:c2:ab:10:f0:f7:69:a5:15:b0:eb:09:e1:60:e9:
                    e3:84:2b:93:bd:4c:0c:86:c8:16:46:04:f7:6a:e3:
                    34:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:D1:20:8F:F9:33:E2:F0:E3:D3:7E:38:16:29:26:F2:02:A7:07:10
            X509v3 Authority Key Identifier:
                keyid:0E:87:E5:D3:3A:9B:28:BE:7F:1A:F8:BC:9C:13:8B:15:80:90:F1:89

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:26:2c:93:66:27:05:fa:c0:89:84:ba:92:1a:1e:c8:e0:69:
         50:9a:f5:2c:6d:52:95:f6:ee:83:97:4d:3a:03:50:22:a7:7e:
         81:4b:45:ca:6b:e0:22:4b:2d:70:0d:4a:02:0f:6d:93:3a:97:
         65:f0:cc:2e:c7:2f:65:7d:ae:ed:5c:cb:d1:45:3e:df:7a:dd:
         f7:c9:6d:60:c7:07:1b:00:50:2a:ab:50:d7:a9:0f:39:81:25:
         2f:b2:e7:16:0c:b1:31:d8:53:3f:c8:3a:7a:4b:7a:e0:cf:0e:
         21:44:47:f4:fe:34:e8:a8:5c:b6:a1:ae:04:23:2e:04:33:5b:
         35:b0:db:51:b9:90:24:88:2c:c7:e0:1b:4e:ee:ef:5b:df:06:
         23:e5:a5:84:50:0c:be:28:02:d6:f3:6f:58:36:54:64:e3:f9:
         65:30:df:6b:2f:61:8a:12:2a:ba:a4:65:a4:b2:da:97:da:8c:
         de:a1:43:fd:52:2f:fe:6e:31:7c:01:c6:5a:b1:ca:65:38:17:
         5d:c6:af:d0:1c:b5:b3:f8:34:a6:a6:16:ef:19:d4:b0:87:27:
         64:ec:40:5e:af:f0:0b:33:e0:a7:2d:ac:1b:3f:1e:a4:4e:a4:
         f4:ad:15:6f:c4:42:f9:4b:d3:65:24:2d:ca:8f:d2:be:ad:cd:
         11:22:9e:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyu2eXC6S5qyWDbCYQ/4KkKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlODdlNWQzM2E5YjI4YmU3ZjFhZjhiYzljMTM4YjE1ODA5
MGYxODkwHhcNMjYwMzAyMTQwMDQxWhcNMjYwMzAzMTQwMDQxWjAzMTEwLwYDVQQD
EyhjZWQxMjA4ZmY5MzNlMmYwZTNkMzdlMzgxNjI5MjZmMjAyYTcwNzEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXennPe2hB4Q5AWI8WCDYn03aIFn
KuKFE5wkOirCR49tDuRz0Wplztdsge5Ylrq3MSjdFqRvVbTjuoagWCJm8TrbLlad
WZBas+fUZ+KtmYgoWl0yvjhn/4v4vskTThckvlZGlDHp4zRbeI17IEro49Uk3VS7
iXd5DEa8v0iMQDXzS8hdWNiz2hCj16UpLwueVqAf7gU8eKCd/zrH60eRl/nOfAeQ
Xschwb3agG3h6T/JF5m+nTQZ20fz+UKaLez98SoWp0/BHCaPEpMhDbJrV7IXUqUA
q7O0txRTa17nvO+QwqsQ8PdppRWw6wnhYOnjhCuTvUwMhsgWRgT3auM02QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM7RII/5M+Lw49N+OBYpJvICpwcQMB8GA1UdIwQY
MBaAFA6H5dM6myi+fxr4vJwTixWAkPGJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRG9mbDB6cWJLTDVfR3ZpOG5CT0xGWUNROFlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9lMGEyNWMtZDUyNy00Yzc1LWExYmIt
M2VmNjQwZjkzN2M0LzEvRG9mbDB6cWJLTDVfR3ZpOG5CT0xGWUNROFlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9lMGEyNWMtZDUyNy00Yzc1LWExYmItM2VmNjQwZjkzN2M0
LzEvRG9mbDB6cWJLTDVfR3ZpOG5CT0xGWUNROFlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYyYsk2Yn
BfrAiYS6khoeyOBpUJr1LG1Slfbug5dNOgNQIqd+gUtFymvgIkstcA1KAg9tkzqX
ZfDMLscvZX2u7VzL0UU+33rd98ltYMcHGwBQKqtQ16kPOYElL7LnFgyxMdhTP8g6
ekt64M8OIURH9P406KhctqGuBCMuBDNbNbDbUbmQJIgsx+AbTu7vW98GI+WlhFAM
vigC1vNvWDZUZOP5ZTDfay9hihIquqRlpLLal9qM3qFD/VIv/m4xfAHGWrHKZTgX
Xcav0By1s/g0pqYW7xnUsIcnZOxAXq/wCzPgpy2sGz8epE6k9K0Vb8RC+UvTZSQt
yo/Svq3NESKefQ==
-----END CERTIFICATE-----