Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.mft
File:                     G3NaOdmSptxEu-c6TZm-PIQvqWg.mft (raw, json)
Hash identifier:          Eig0DuuZpNpgYzKXR8oS0t9utBBuGwER+PdO/mr2T3I=
Subject key identifier:   53:61:9B:3D:3C:C9:4B:B9:0A:30:87:34:0D:97:DC:B5:F0:04:1D:73
Authority key identifier: 1B:73:5A:39:D9:92:A6:DC:44:BB:E7:3A:4D:99:BE:3C:84:2F:A9:68
Certificate issuer:       /CN=1b735a39d992a6dc44bbe73a4d99be3c842fa968
Certificate serial:       019CABA1C9F79CDA2FDFE2AB5BD570892D34
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/G3NaOdmSptxEu-c6TZm-PIQvqWg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.mft
Manifest number:          05D5
Signing time:             Sun 01 Mar 2026 23:00:32 +0000
Manifest this update:     Sun 01 Mar 2026 23:00:32 +0000
Manifest next update:     Mon 02 Mar 2026 23:00:32 +0000
Files and hashes:         1: G3NaOdmSptxEu-c6TZm-PIQvqWg.crl (hash: 1qo/pva68me1WahqlS0sup4pGteV52jW8/hbfmTVQg8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/G3NaOdmSptxEu-c6TZm-PIQvqWg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 23:00:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:a1:c9:f7:9c:da:2f:df:e2:ab:5b:d5:70:89:2d:34
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1b735a39d992a6dc44bbe73a4d99be3c842fa968
        Validity
            Not Before: Mar  1 23:00:32 2026 GMT
            Not After : Mar  2 23:00:32 2026 GMT
        Subject: CN=53619b3d3cc94bb90a3087340d97dcb5f0041d73
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:86:d9:02:d2:97:17:45:72:ca:cd:77:72:0d:99:
                    94:73:63:01:5d:e8:71:58:07:8d:a8:bb:d5:d7:88:
                    f4:f4:3f:e3:da:f9:6e:69:b1:c6:47:4d:cb:95:50:
                    25:35:bf:87:96:4a:e2:fe:99:af:6e:6f:16:cd:23:
                    a2:0b:44:dd:dc:7f:9c:69:8b:61:cc:b4:2f:fb:75:
                    ff:8d:d5:1a:37:61:fa:86:29:5f:4d:72:7f:11:29:
                    f5:d9:be:2f:9f:8e:d0:c4:36:fc:69:3f:95:54:3a:
                    ec:ac:12:c7:fe:51:c0:d4:3d:29:e3:0d:86:1b:dc:
                    82:f4:ae:9a:80:ee:cd:43:63:df:3d:10:6c:78:ff:
                    9a:d6:a1:3f:fd:38:03:6c:65:18:9b:14:78:a3:a9:
                    b6:ea:6a:36:fa:b5:08:5c:e4:45:e4:c7:7e:93:e6:
                    9d:64:4a:be:24:b6:8f:d7:a2:f7:53:6f:ca:ff:46:
                    2b:b8:95:59:2d:e5:26:5e:90:cc:b9:43:81:db:c5:
                    26:b6:32:c2:f0:11:c8:08:b0:00:9c:0a:82:f9:98:
                    75:03:b1:3a:75:2f:c6:89:01:6a:bd:d9:c0:68:61:
                    e6:64:47:6a:2d:39:6f:5c:fb:d9:a4:be:ee:c0:a5:
                    6f:e9:8d:8f:54:b0:de:fd:92:34:ad:b1:fa:f5:94:
                    fe:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:61:9B:3D:3C:C9:4B:B9:0A:30:87:34:0D:97:DC:B5:F0:04:1D:73
            X509v3 Authority Key Identifier:
                keyid:1B:73:5A:39:D9:92:A6:DC:44:BB:E7:3A:4D:99:BE:3C:84:2F:A9:68

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G3NaOdmSptxEu-c6TZm-PIQvqWg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/06da0b-45fa-4bc9-9717-4001369ba11f/1/G3NaOdmSptxEu-c6TZm-PIQvqWg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:80:42:9b:79:b4:36:d3:d6:71:22:8c:af:dd:ff:7b:b8:ea:
         42:d4:4a:cf:22:41:53:91:99:5b:b8:ee:24:b5:b0:39:8f:18:
         3d:7b:03:12:94:3e:44:6a:db:4b:a9:7a:ad:82:8a:a3:ab:5b:
         84:c1:fd:b3:de:cd:8c:ad:50:df:3c:a3:e7:4b:78:c2:03:32:
         b2:e6:6c:52:1b:0e:f6:5c:25:54:4c:04:17:59:2a:10:10:b4:
         10:d8:9d:26:de:a8:38:98:4b:be:e8:59:a1:74:9e:86:d7:eb:
         0c:38:a5:fd:d4:07:87:67:d4:8b:00:32:7c:40:1e:a5:a5:56:
         8e:53:22:5c:14:c7:37:ca:fd:8b:1e:33:9b:c1:11:6c:a4:3f:
         95:d3:23:bf:45:af:7d:6a:23:51:1b:78:f9:18:86:e6:59:f6:
         44:2c:c2:08:d3:e8:77:10:29:e1:6d:e8:2f:10:dd:1e:4b:44:
         80:1e:06:a0:ba:24:17:54:91:9d:21:c7:81:e0:50:e8:7c:a9:
         ea:c4:a6:90:86:45:7c:e5:7c:24:bd:0f:60:24:32:92:39:26:
         bc:ad:84:d8:12:6b:fe:f7:cc:7b:83:3b:96:86:9a:45:4f:75:
         9e:7e:83:e1:b5:24:eb:c8:5e:76:81:62:be:3e:46:67:17:03:
         b3:c8:bc:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----