Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
File:                     yVcXmb2ok6GGC0phbFYnivXsksU.mft (raw, json)
Hash identifier:          5yu0Lmmy9Nf1f9UaIB/cPDA3QKbgKYVIahZUt9PzIcQ=
Subject key identifier:   F4:69:FA:45:49:14:1C:2F:D1:95:FF:8A:8C:02:18:54:85:98:5D:05
Authority key identifier: C9:57:17:99:BD:A8:93:A1:86:0B:4A:61:6C:56:27:8A:F5:EC:92:C5
Certificate issuer:       /CN=c9571799bda893a1860b4a616c56278af5ec92c5
Certificate serial:       019D98500BC79B0B88E5E69912EDE3C5A872
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
Manifest number:          0DC5
Signing time:             Thu 16 Apr 2026 22:01:15 +0000
Manifest this update:     Thu 16 Apr 2026 22:01:15 +0000
Manifest next update:     Fri 17 Apr 2026 22:01:15 +0000
Files and hashes:         1: yVcXmb2ok6GGC0phbFYnivXsksU.crl (hash: YiqowfsB6iZNTcQk6Lrk5QUdxkjPpC8w2aO2Pziuueg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:50:0b:c7:9b:0b:88:e5:e6:99:12:ed:e3:c5:a8:72
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c9571799bda893a1860b4a616c56278af5ec92c5
        Validity
            Not Before: Apr 16 22:01:15 2026 GMT
            Not After : Apr 17 22:01:15 2026 GMT
        Subject: CN=f469fa4549141c2fd195ff8a8c02185485985d05
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:36:2a:04:81:93:56:fd:e8:02:c8:cf:69:66:
                    dc:40:af:16:e6:8b:57:8f:74:bb:56:9a:55:e9:61:
                    ec:9d:9c:17:bc:39:6a:46:e0:e5:75:ee:99:b3:05:
                    1c:8a:92:b7:a4:36:ed:52:0d:6b:fb:f1:9b:33:cc:
                    8f:1a:64:a6:62:48:c1:70:46:e1:68:63:da:ce:8a:
                    56:64:22:ba:48:d9:27:34:f3:06:af:54:a5:c3:9c:
                    9b:df:8f:dd:2b:2b:64:dd:a9:a8:8b:ff:a4:53:67:
                    d6:2f:49:b3:32:e2:51:23:9d:83:17:6b:bb:b2:9d:
                    0c:62:11:4f:40:54:e2:b0:28:3f:16:77:94:ee:55:
                    0b:b7:d2:90:e5:47:67:ed:c6:c1:ee:59:9a:6a:91:
                    f2:36:d9:4a:2e:b4:6a:a1:0e:4e:bf:58:8b:9d:11:
                    5a:33:62:97:fe:50:98:81:7b:de:5b:08:53:a5:dd:
                    63:8e:57:f4:01:ac:ca:4d:ac:1e:3c:28:0a:35:c5:
                    f3:74:b0:a5:b5:e1:3a:40:d2:f9:ea:29:ff:81:f7:
                    c6:dd:4d:5a:f9:84:6b:61:8e:b3:12:98:c3:21:aa:
                    d3:ae:ad:3d:63:e1:14:b8:65:12:b5:2f:1b:1e:20:
                    2a:1a:45:e8:6e:cc:a0:16:a9:6d:eb:fa:df:e8:bf:
                    be:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:69:FA:45:49:14:1C:2F:D1:95:FF:8A:8C:02:18:54:85:98:5D:05
            X509v3 Authority Key Identifier:
                keyid:C9:57:17:99:BD:A8:93:A1:86:0B:4A:61:6C:56:27:8A:F5:EC:92:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:6c:9c:ff:90:c8:b4:cc:cb:8c:0c:08:52:cd:e8:86:4a:6e:
         0b:d7:88:f8:5f:31:1b:82:a4:5e:4b:1e:b9:6b:1f:17:f5:bb:
         eb:9b:d3:bf:58:91:91:ab:72:57:86:60:c3:40:76:08:6a:a5:
         62:44:04:a9:50:ee:05:b8:d1:74:ae:0a:50:37:79:0d:48:19:
         50:5e:60:18:1f:cd:f5:7c:28:62:a0:f4:5f:8d:be:6c:52:34:
         50:7f:67:28:8c:ec:84:cb:1b:4f:10:29:ae:42:e0:df:33:e6:
         d1:eb:dc:db:2a:df:83:c5:d5:de:2d:9b:f8:ee:24:04:b1:dc:
         e7:de:bf:c2:8a:66:29:aa:ad:88:f1:e2:90:e6:ac:53:2e:d8:
         0f:be:3f:2d:01:0c:20:61:63:ae:9e:8d:19:06:a8:72:b9:d6:
         00:b9:7e:24:29:9c:55:aa:e4:8e:bb:65:9e:42:77:0e:ca:2b:
         bb:5c:e6:ed:b8:9c:7d:69:47:08:bf:19:27:73:e3:26:fa:fb:
         49:74:96:a5:d3:0c:68:c6:96:e6:4a:4b:a4:7e:13:0c:0d:58:
         6e:36:3e:8b:c3:1d:c6:7b:ba:23:f0:27:e4:d8:36:49:7e:6e:
         e6:53:ba:ac:6a:5e:1e:7f:60:44:df:47:17:ac:0f:4f:fa:dc:
         f9:37:dd:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2YUAvHmwuI5eaZEu3jxahyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5NTcxNzk5YmRhODkzYTE4NjBiNGE2MTZjNTYyNzhhZjVl
YzkyYzUwHhcNMjYwNDE2MjIwMTE1WhcNMjYwNDE3MjIwMTE1WjAzMTEwLwYDVQQD
EyhmNDY5ZmE0NTQ5MTQxYzJmZDE5NWZmOGE4YzAyMTg1NDg1OTg1ZDA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwTYqBIGTVv3oAsjPaWbcQK8W5otX
j3S7VppV6WHsnZwXvDlqRuDlde6ZswUcipK3pDbtUg1r+/GbM8yPGmSmYkjBcEbh
aGPazopWZCK6SNknNPMGr1Slw5yb34/dKytk3amoi/+kU2fWL0mzMuJRI52DF2u7
sp0MYhFPQFTisCg/FneU7lULt9KQ5Udn7cbB7lmaapHyNtlKLrRqoQ5Ov1iLnRFa
M2KX/lCYgXveWwhTpd1jjlf0AazKTawePCgKNcXzdLClteE6QNL56in/gffG3U1a
+YRrYY6zEpjDIarTrq09Y+EUuGUStS8bHiAqGkXobsygFqlt6/rf6L++RwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPRp+kVJFBwv0ZX/iowCGFSFmF0FMB8GA1UdIwQY
MBaAFMlXF5m9qJOhhgtKYWxWJ4r17JLFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVZjWG1iMm9rNkdHQzBwaGJGWW5pdlhza3NVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS8wOGVmODctY2Y1NS00YjVkLTk4MjEt
MDM3NDZkN2JkMjk0LzEveVZjWG1iMm9rNkdHQzBwaGJGWW5pdlhza3NVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS8wOGVmODctY2Y1NS00YjVkLTk4MjEtMDM3NDZkN2JkMjk0
LzEveVZjWG1iMm9rNkdHQzBwaGJGWW5pdlhza3NVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcGyc/5DI
tMzLjAwIUs3ohkpuC9eI+F8xG4KkXkseuWsfF/W765vTv1iRkatyV4Zgw0B2CGql
YkQEqVDuBbjRdK4KUDd5DUgZUF5gGB/N9XwoYqD0X42+bFI0UH9nKIzshMsbTxAp
rkLg3zPm0evc2yrfg8XV3i2b+O4kBLHc596/wopmKaqtiPHikOasUy7YD74/LQEM
IGFjrp6NGQaocrnWALl+JCmcVarkjrtlnkJ3Dsoru1zm7bicfWlHCL8ZJ3PjJvr7
SXSWpdMMaMaW5kpLpH4TDA1YbjY+i8Mdxnu6I/An5Ng2SX5u5lO6rGpeHn9gRN9H
F6wPT/rc+TfdAA==
-----END CERTIFICATE-----