Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/6658c0-5653-4a9f-a8e8-140aada54b61/1/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.mft
File:                     j0n0pM2Ck0RRn0UqOw4eZv6NPiU.mft (raw, json)
Hash identifier:          xi6ZmWn7s0ZlqMGovYjkuVyHDt2BX08yzcX+uO1/240=
Subject key identifier:   7A:87:FC:E6:45:69:F3:86:43:06:35:41:10:08:5A:E9:0B:10:B8:75
Authority key identifier: 8F:49:F4:A4:CD:82:93:44:51:9F:45:2A:3B:0E:1E:66:FE:8D:3E:25
Certificate issuer:       /CN=8f49f4a4cd829344519f452a3b0e1e66fe8d3e25
Certificate serial:       019CAC4684159F9C16506BD562162D40D2DB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c6/6658c0-5653-4a9f-a8e8-140aada54b61/1/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.mft
Manifest number:          1843
Signing time:             Mon 02 Mar 2026 02:00:28 +0000
Manifest this update:     Mon 02 Mar 2026 02:00:28 +0000
Manifest next update:     Tue 03 Mar 2026 02:00:28 +0000
Files and hashes:         1: j0n0pM2Ck0RRn0UqOw4eZv6NPiU.crl (hash: hPI/PVx6x35Pq5MbzgEmyBdagDPWXmhhAU0Nqnd6ueE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c6/6658c0-5653-4a9f-a8e8-140aada54b61/1/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c6/6658c0-5653-4a9f-a8e8-140aada54b61/1/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:46:84:15:9f:9c:16:50:6b:d5:62:16:2d:40:d2:db
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8f49f4a4cd829344519f452a3b0e1e66fe8d3e25
        Validity
            Not Before: Mar  2 02:00:28 2026 GMT
            Not After : Mar  3 02:00:28 2026 GMT
        Subject: CN=7a87fce64569f3864306354110085ae90b10b875
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:6f:01:b6:8d:2d:f9:d8:ff:21:ac:c9:ff:2a:
                    e5:53:74:f6:d6:48:9c:b6:82:be:3c:96:1b:dd:78:
                    88:d3:5f:a8:c1:75:69:ec:d7:b2:20:28:14:d3:96:
                    00:bc:04:73:6a:7a:9d:58:54:49:57:52:db:92:7a:
                    e8:58:32:90:cd:b6:90:ac:7f:43:88:e1:2f:04:87:
                    4a:eb:3b:f0:c6:64:15:ba:e2:21:2c:78:4d:d3:69:
                    9d:56:45:1c:94:45:f1:77:23:71:a3:13:1e:f0:bf:
                    04:7f:d2:fa:52:8c:7b:53:00:fe:5e:c4:0c:c9:0e:
                    ab:c6:7b:8d:ee:a6:f0:58:85:c4:1f:32:70:c5:cc:
                    fb:fe:12:97:0c:48:f5:6c:c9:d2:e2:16:0a:65:25:
                    e5:5e:0d:6a:e9:71:e5:0e:53:6e:2f:22:63:50:46:
                    c7:77:37:d9:83:4b:64:0a:77:f6:13:c2:34:29:67:
                    19:50:73:8d:a3:de:fd:01:0d:ea:54:54:16:71:a7:
                    47:e8:3d:70:f4:b9:50:b5:74:3e:c6:bc:b9:c0:ea:
                    ec:37:de:71:71:41:58:10:ef:3f:63:e7:7c:34:59:
                    63:14:26:de:98:4e:11:89:99:08:eb:84:68:2c:65:
                    95:83:71:f4:9d:fd:9c:e1:ca:f0:1e:07:49:68:93:
                    74:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7A:87:FC:E6:45:69:F3:86:43:06:35:41:10:08:5A:E9:0B:10:B8:75
            X509v3 Authority Key Identifier:
                keyid:8F:49:F4:A4:CD:82:93:44:51:9F:45:2A:3B:0E:1E:66:FE:8D:3E:25

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/6658c0-5653-4a9f-a8e8-140aada54b61/1/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/6658c0-5653-4a9f-a8e8-140aada54b61/1/j0n0pM2Ck0RRn0UqOw4eZv6NPiU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:9c:55:76:8a:a8:42:03:58:7f:9b:c3:16:d2:53:ce:47:09:
         f5:0f:ee:49:da:1e:2f:86:ff:35:70:b6:a3:be:cd:67:a4:77:
         9c:30:52:85:61:1e:c2:87:c4:fb:5f:1b:fe:db:0a:e6:e0:54:
         35:99:0c:2f:e4:98:e3:c5:2f:be:0f:bf:bb:c3:ae:88:4d:12:
         5d:cc:c2:0e:8e:0f:17:d0:2b:53:28:f0:a3:b9:60:f8:15:86:
         b4:a5:d1:50:d1:a4:33:95:8e:ff:de:db:37:81:d2:7d:bc:1a:
         01:3e:a9:cd:38:b9:c0:8a:a7:1d:56:5b:90:b5:9b:c3:0e:0f:
         89:98:cf:c7:f3:a2:7b:d1:8a:3a:c2:c9:cd:31:18:fc:a4:65:
         91:31:b0:4b:64:d6:18:4f:28:62:fb:04:9d:81:fe:e1:5e:d4:
         a3:3d:28:d8:e1:33:79:4b:e0:33:ac:ea:d4:e6:0f:d7:6d:83:
         ad:13:c4:d9:36:03:f4:86:9c:eb:2b:a0:a6:c0:e2:a8:5c:76:
         32:42:b8:f7:50:0e:81:44:83:b8:49:89:98:7a:d3:02:6a:e3:
         05:da:35:f0:d6:b0:25:dd:ef:26:07:08:c6:8c:a0:f9:10:51:
         76:a6:83:fb:82:00:fc:32:f6:0d:f0:09:96:80:e5:8f:ff:68:
         f2:b1:a7:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----