Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/0ceec3-482a-41a5-97eb-bfe1e173d8f0/1/SVfItkDqWWxdEac7PSZu54w_Cds.mft
File:                     SVfItkDqWWxdEac7PSZu54w_Cds.mft (raw, json)
Hash identifier:          Wsl5Q3TWJLk3jB3782/v2dnTa+C3svfY6wmpVGCjpwM=
Subject key identifier:   EB:99:79:C8:E4:69:2E:5E:85:87:FD:9F:53:84:17:02:65:EA:9E:97
Authority key identifier: 49:57:C8:B6:40:EA:59:6C:5D:11:A7:3B:3D:26:6E:E7:8C:3F:09:DB
Certificate issuer:       /CN=4957c8b640ea596c5d11a73b3d266ee78c3f09db
Certificate serial:       019CAA21300EADCAF0900F479FC3BF7F2A6F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SVfItkDqWWxdEac7PSZu54w_Cds.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/0ceec3-482a-41a5-97eb-bfe1e173d8f0/1/SVfItkDqWWxdEac7PSZu54w_Cds.mft
Manifest number:          0AD3
Signing time:             Sun 01 Mar 2026 16:00:27 +0000
Manifest this update:     Sun 01 Mar 2026 16:00:27 +0000
Manifest next update:     Mon 02 Mar 2026 16:00:27 +0000
Files and hashes:         1: SVfItkDqWWxdEac7PSZu54w_Cds.crl (hash: oLXWkZKp/QivEVYQjvNM+JezIxZO6icUu9JE1KMRFfU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/0ceec3-482a-41a5-97eb-bfe1e173d8f0/1/SVfItkDqWWxdEac7PSZu54w_Cds.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/0ceec3-482a-41a5-97eb-bfe1e173d8f0/1/SVfItkDqWWxdEac7PSZu54w_Cds.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SVfItkDqWWxdEac7PSZu54w_Cds.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 15:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:21:30:0e:ad:ca:f0:90:0f:47:9f:c3:bf:7f:2a:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4957c8b640ea596c5d11a73b3d266ee78c3f09db
        Validity
            Not Before: Mar  1 16:00:27 2026 GMT
            Not After : Mar  2 16:00:27 2026 GMT
        Subject: CN=eb9979c8e4692e5e8587fd9f5384170265ea9e97
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:e7:8a:75:3c:1c:de:64:41:f8:70:5b:ba:50:
                    b4:0c:57:51:4d:4b:93:8b:90:fc:6b:4b:54:34:1c:
                    2b:ce:8b:05:70:8c:a8:44:8e:d4:b0:dc:f8:24:cb:
                    8e:1c:d5:5b:3f:f6:0b:26:aa:26:ce:1e:fe:49:d1:
                    5e:a3:37:70:8f:9c:40:cd:7d:c7:ec:8a:44:35:ae:
                    56:4e:a7:cf:ca:04:59:e8:2f:15:a2:9f:54:6d:e5:
                    9f:24:d8:1f:b0:7f:c1:81:58:4d:75:61:84:d6:23:
                    2f:c1:88:51:0e:d8:1c:3d:46:5a:99:84:ca:d2:fb:
                    8b:60:22:44:83:ec:3d:38:c6:83:d6:5f:e1:8e:1e:
                    41:48:b5:ad:81:77:f4:ff:6c:3e:11:25:f5:08:d2:
                    0a:02:06:dc:0e:d1:03:4d:44:8c:92:95:b3:45:32:
                    53:7b:10:d1:a0:78:8c:70:09:5d:2d:b4:27:9a:35:
                    d5:75:e3:ac:4e:cc:84:23:14:e7:93:99:3a:da:ba:
                    53:b8:b5:0f:11:0f:46:8f:90:94:a6:47:31:38:0a:
                    9c:5b:30:4d:5c:38:ed:7b:85:8a:a4:c0:61:59:f5:
                    d6:29:48:34:aa:6b:89:3e:1b:d4:d7:40:ee:91:c8:
                    3c:8c:18:48:ef:99:73:03:03:90:a1:5b:7d:2f:02:
                    62:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EB:99:79:C8:E4:69:2E:5E:85:87:FD:9F:53:84:17:02:65:EA:9E:97
            X509v3 Authority Key Identifier:
                keyid:49:57:C8:B6:40:EA:59:6C:5D:11:A7:3B:3D:26:6E:E7:8C:3F:09:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SVfItkDqWWxdEac7PSZu54w_Cds.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0ceec3-482a-41a5-97eb-bfe1e173d8f0/1/SVfItkDqWWxdEac7PSZu54w_Cds.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/0ceec3-482a-41a5-97eb-bfe1e173d8f0/1/SVfItkDqWWxdEac7PSZu54w_Cds.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:bf:79:9a:65:cb:c1:54:b9:de:55:c7:1a:e1:b1:24:c0:73:
         45:55:c9:91:b4:f1:7a:6c:6b:9a:82:d7:6a:33:d6:bd:4b:65:
         3d:19:7f:55:d5:d6:5b:31:81:de:3a:5d:a8:ce:5c:45:c9:de:
         7d:1a:be:f0:0e:6c:11:99:62:dd:95:3c:46:a2:89:99:d6:2e:
         44:3f:65:1d:e0:19:a4:85:e2:d7:e0:d2:68:54:ef:52:ba:ce:
         da:fe:30:a8:1c:d1:4f:4d:da:34:78:d8:25:63:31:c2:98:1a:
         81:8b:8a:0b:c1:c4:9b:58:af:89:3b:d9:58:65:86:84:cc:9d:
         f3:eb:43:c7:2b:63:97:dd:8e:ac:6a:72:57:fc:89:81:c6:2c:
         8c:24:ad:3e:b9:d3:9b:b7:df:b9:50:7d:65:74:b1:6c:78:51:
         30:0d:ce:da:34:5b:2e:64:41:a1:ab:15:fe:56:30:57:d7:2f:
         81:15:56:95:0c:8e:f1:b3:a2:7d:35:e5:50:b1:62:3a:ed:2c:
         9b:cc:f8:e6:8e:df:17:cf:29:59:9c:16:85:9b:28:9e:ff:7f:
         de:3d:70:63:95:cf:db:7a:8e:f3:10:df:6d:af:d2:1b:e9:46:
         c4:c6:e3:4f:6a:4c:ce:bf:2b:5b:78:bf:d6:75:65:d5:94:fb:
         7f:0d:f4:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----