Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
File:                     tRm7YH6Ot267nMsgIsxkbDzOC2A.mft (raw, json)
Hash identifier:          o4bPiZPpWOi6Qqc9ivClg5bbf/Yab4sJvupvONTOJa0=
Subject key identifier:   51:D8:77:15:9F:BF:0B:31:52:00:0C:DB:83:FB:80:33:91:BB:7B:BC
Authority key identifier: B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60
Certificate issuer:       /CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60
Certificate serial:       019DA29C73517684E554ADDED43D6C4BAFA4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
Manifest number:          18C2
Signing time:             Sat 18 Apr 2026 22:00:55 +0000
Manifest this update:     Sat 18 Apr 2026 22:00:55 +0000
Manifest next update:     Sun 19 Apr 2026 22:00:55 +0000
Files and hashes:         1: tRm7YH6Ot267nMsgIsxkbDzOC2A.crl (hash: w4X7mhNFROhz7St7gEP1SjkTenJHJ4gwM8xQWh/z4vY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 19 Apr 2026 22:00:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:a2:9c:73:51:76:84:e5:54:ad:de:d4:3d:6c:4b:af:a4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60
        Validity
            Not Before: Apr 18 22:00:55 2026 GMT
            Not After : Apr 19 22:00:55 2026 GMT
        Subject: CN=51d877159fbf0b3152000cdb83fb803391bb7bbc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:e5:00:c0:17:b7:75:1f:d8:a9:1e:af:06:75:
                    7e:5d:61:bf:33:63:af:3b:6e:83:be:11:a2:f1:88:
                    3b:e0:06:16:06:6a:54:9e:c7:cc:05:3b:cc:88:2d:
                    ea:2e:fa:9c:a0:bb:cb:eb:b3:ab:63:ae:8f:03:8a:
                    70:ce:4e:78:74:63:f4:1f:7d:47:a8:30:b7:35:76:
                    83:00:be:68:3a:aa:24:d1:c5:b9:cb:3a:ff:6b:eb:
                    2c:1f:57:ee:64:e1:a5:d0:47:46:a0:a1:d0:d3:91:
                    68:6f:e7:05:36:d1:76:75:b9:95:2b:67:eb:81:b9:
                    26:fd:8e:4f:e3:01:81:a6:24:74:b6:36:1e:78:ff:
                    fd:4f:5d:d6:59:93:57:00:3b:e9:57:52:55:ff:6c:
                    cf:e2:18:40:c1:52:9c:db:39:6b:60:80:10:44:b6:
                    83:71:46:ff:65:64:88:2b:c6:a2:b4:ee:85:60:c0:
                    c9:9f:54:dc:c4:2c:85:13:37:67:a0:33:b8:b2:b1:
                    ce:97:95:f6:30:a3:a2:1c:6f:17:a6:e8:ba:f3:f9:
                    9f:74:b8:bb:e1:b1:11:04:59:af:e6:22:54:4f:92:
                    55:e8:c9:5b:4f:55:4d:92:2c:39:4e:86:6f:d3:7f:
                    b2:d1:9c:2f:5c:b2:bb:a6:a9:86:57:d5:bb:34:1d:
                    c1:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:D8:77:15:9F:BF:0B:31:52:00:0C:DB:83:FB:80:33:91:BB:7B:BC
            X509v3 Authority Key Identifier:
                keyid:B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:35:ce:e6:63:36:b6:23:61:db:2f:df:68:78:5c:8b:88:66:
         b9:6a:2c:fe:6d:60:a0:87:bd:d9:31:06:14:79:7e:7c:04:31:
         a1:23:27:8c:29:a7:ce:f1:49:36:f9:8e:e1:63:10:8c:4e:5e:
         3c:7b:4c:86:a0:1d:d8:d2:8f:b1:b1:69:b4:68:4f:d9:d9:d6:
         c2:05:ff:9e:57:d4:46:0f:d9:e2:42:b3:13:c3:47:0f:b8:66:
         6a:0e:c3:66:0e:c0:c4:a2:2d:aa:c2:f1:52:49:fd:0f:0a:54:
         69:8f:a4:45:65:13:d5:0e:11:cc:ef:5f:bf:ef:bb:6e:32:88:
         25:e9:1b:00:cc:9f:c2:9a:71:03:2f:46:cc:86:35:0f:a0:9e:
         ac:5b:1f:9c:3b:ad:a0:e2:f9:78:fa:ee:64:4b:e1:a7:84:eb:
         87:5d:66:cc:19:b7:64:7d:20:ac:0f:92:1f:e7:b2:54:52:48:
         ce:de:9f:1c:c2:2e:47:20:dd:21:26:f7:bc:55:50:6e:2e:d6:
         14:33:3a:2a:68:10:0c:af:21:8f:80:d3:32:91:2e:c5:d6:28:
         6d:b8:e0:e2:18:8c:ec:73:bb:af:9d:bf:3b:80:a9:b6:ac:4b:
         77:d1:85:65:ad:6c:df:a5:1b:09:0d:49:7c:dd:41:a1:ea:84:
         ae:97:d9:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----