Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
File:                     7GV-idqz-xXjuuDrGsf6yT32OF0.mft (raw, json)
Hash identifier:          N177XxTaEMXAaonBjH1nmBJjuy0NjSwanFzVLIUHHDE=
Subject key identifier:   ED:43:1C:2F:08:F5:18:6F:F9:21:C4:FF:B2:BD:4D:F1:0F:F0:98:9E
Authority key identifier: EC:65:7E:89:DA:B3:FB:15:E3:BA:E0:EB:1A:C7:FA:C9:3D:F6:38:5D
Certificate issuer:       /CN=ec657e89dab3fb15e3bae0eb1ac7fac93df6385d
Certificate serial:       019D9A0767217E2F43A50F5CF75C9D43C1E3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
Manifest number:          08B3
Signing time:             Fri 17 Apr 2026 06:01:09 +0000
Manifest this update:     Fri 17 Apr 2026 06:01:09 +0000
Manifest next update:     Sat 18 Apr 2026 06:01:09 +0000
Files and hashes:         1: 7GV-idqz-xXjuuDrGsf6yT32OF0.crl (hash: DC5+MUQ2aQs00bSqDfLdk+L5k5Dfm1fyjwHNvJILRHQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 06:01:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9a:07:67:21:7e:2f:43:a5:0f:5c:f7:5c:9d:43:c1:e3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ec657e89dab3fb15e3bae0eb1ac7fac93df6385d
        Validity
            Not Before: Apr 17 06:01:09 2026 GMT
            Not After : Apr 18 06:01:09 2026 GMT
        Subject: CN=ed431c2f08f5186ff921c4ffb2bd4df10ff0989e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:c1:a4:5a:d9:bb:5c:ba:89:84:ef:66:55:01:
                    07:aa:74:df:c4:27:6f:02:5d:36:ee:87:be:3c:f8:
                    86:85:48:61:da:f4:2a:32:ca:f5:71:fa:2c:a7:30:
                    73:16:47:4c:99:15:dc:a4:76:bb:9f:e6:cf:51:56:
                    8d:30:d4:e0:de:8a:87:53:1c:6a:4f:74:c5:4e:85:
                    bd:20:37:22:69:95:e3:90:4e:b2:b5:df:92:6d:9a:
                    3c:39:69:f5:22:b2:25:04:0b:32:76:28:fa:90:8c:
                    eb:c7:4b:18:b5:2e:14:43:d8:ec:72:5f:2c:14:ec:
                    67:3c:7b:00:1c:6c:a4:85:61:9e:e5:dc:99:99:5d:
                    bb:8b:15:b9:8c:27:fc:cb:4f:26:90:94:cb:81:fb:
                    03:bf:70:ba:8a:50:83:9d:74:d0:4f:95:83:b7:aa:
                    35:10:36:55:a9:a3:42:7f:3e:2a:e8:e2:48:3a:6d:
                    a4:1a:52:bb:f0:37:c6:a3:c5:c5:d3:a8:56:68:63:
                    61:bc:25:a8:57:b9:8f:fc:bd:03:88:4c:de:e4:5f:
                    a1:aa:95:11:dd:58:57:68:d1:f9:24:ba:2e:a9:bb:
                    ee:60:cd:a8:38:d7:90:9f:cf:fb:52:27:89:a6:34:
                    13:02:cc:61:8a:9c:7f:50:6d:6c:f8:b7:18:af:b7:
                    a2:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:43:1C:2F:08:F5:18:6F:F9:21:C4:FF:B2:BD:4D:F1:0F:F0:98:9E
            X509v3 Authority Key Identifier:
                keyid:EC:65:7E:89:DA:B3:FB:15:E3:BA:E0:EB:1A:C7:FA:C9:3D:F6:38:5D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cf:24:7f:1d:86:76:1a:c6:e3:7c:9b:cc:5c:e5:90:2b:0b:51:
         75:fd:24:24:ad:86:ba:d7:f4:29:f6:1f:ff:a3:ad:4d:59:bf:
         64:ca:5c:eb:d8:4d:e4:89:9b:3e:a7:c6:4e:e6:cc:5d:07:fb:
         8d:08:ca:02:9f:b2:c1:00:90:f6:4c:78:33:a1:a5:fd:86:ec:
         1c:8d:08:42:72:ca:76:73:1c:42:3f:fe:b9:66:8a:a8:11:c5:
         8d:e2:10:39:24:1c:c2:75:ea:df:ab:0d:03:39:f9:25:3c:96:
         3a:0a:5d:35:02:b7:9d:20:87:d3:26:59:89:bd:78:9e:b6:c0:
         73:fa:00:23:d0:3b:52:10:9a:3b:48:c1:f5:aa:84:73:c1:05:
         52:da:40:b3:a5:a5:c2:6a:d4:66:e5:1a:73:31:1d:22:76:80:
         e9:b7:4a:69:b8:d4:3e:fa:14:12:b9:a9:e8:d2:54:7d:a2:d4:
         76:bb:4d:d4:37:0c:de:1c:5e:54:87:63:0c:62:a6:f7:00:0c:
         f1:a7:8e:fe:00:57:83:e2:ce:d8:37:af:44:5b:f6:f9:1e:23:
         53:c8:03:6d:07:d1:03:06:d6:c7:d0:aa:22:f8:ee:3d:e0:57:
         51:57:80:cc:76:eb:eb:e3:0f:41:e6:a5:fb:35:da:2c:e0:e8:
         90:14:12:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----