Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d528d3-2a93-460c-926d-40d15f36ea43/1/skFYMFfyBWPJOCuJTx_OrKVfvaM.mft
File:                     skFYMFfyBWPJOCuJTx_OrKVfvaM.mft (raw, json)
Hash identifier:          ubJDMEpcxo3vCnIkkYfuTiiVn1obDEWZGBs6tfCPxWc=
Subject key identifier:   44:A6:C5:07:5F:6C:58:7E:32:F5:7A:22:8E:68:FC:E3:4B:61:B3:C8
Authority key identifier: B2:41:58:30:57:F2:05:63:C9:38:2B:89:4F:1F:CE:AC:A5:5F:BD:A3
Certificate issuer:       /CN=b241583057f20563c9382b894f1fceaca55fbda3
Certificate serial:       019CAAC6E6E385012DB3CCB89D79E8F42DDF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/skFYMFfyBWPJOCuJTx_OrKVfvaM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d0/d528d3-2a93-460c-926d-40d15f36ea43/1/skFYMFfyBWPJOCuJTx_OrKVfvaM.mft
Manifest number:          1842
Signing time:             Sun 01 Mar 2026 19:01:27 +0000
Manifest this update:     Sun 01 Mar 2026 19:01:27 +0000
Manifest next update:     Mon 02 Mar 2026 19:01:27 +0000
Files and hashes:         1: skFYMFfyBWPJOCuJTx_OrKVfvaM.crl (hash: TzFgtu7PVx+mxvzxvGlb29HqvkvaoEhx+7ofNE7WiVI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d0/d528d3-2a93-460c-926d-40d15f36ea43/1/skFYMFfyBWPJOCuJTx_OrKVfvaM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d0/d528d3-2a93-460c-926d-40d15f36ea43/1/skFYMFfyBWPJOCuJTx_OrKVfvaM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/skFYMFfyBWPJOCuJTx_OrKVfvaM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 19:01:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:aa:c6:e6:e3:85:01:2d:b3:cc:b8:9d:79:e8:f4:2d:df
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b241583057f20563c9382b894f1fceaca55fbda3
        Validity
            Not Before: Mar  1 19:01:27 2026 GMT
            Not After : Mar  2 19:01:27 2026 GMT
        Subject: CN=44a6c5075f6c587e32f57a228e68fce34b61b3c8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:d2:2a:5d:fe:59:3a:71:05:2b:77:ef:94:e9:
                    34:36:ba:56:e9:99:89:af:3f:18:1f:56:93:d6:a0:
                    6c:b3:c4:9d:a4:91:6f:d7:4e:f8:1f:6e:37:7f:8a:
                    3f:59:80:8f:84:b7:15:14:95:c5:d2:d5:00:e3:be:
                    5b:8d:06:16:88:b3:ac:a4:ea:5f:57:8e:0b:80:05:
                    7f:34:65:3e:96:4a:80:d9:b5:cf:2f:ac:ac:48:23:
                    88:85:36:0d:4c:7b:de:fd:30:2a:3d:81:3a:3d:8b:
                    6b:28:26:55:f9:fb:d1:68:3b:6d:88:4f:df:31:40:
                    27:26:af:0e:a4:bd:6a:65:80:9a:16:5c:ef:9d:44:
                    cd:6c:99:bc:61:41:79:5c:eb:bc:5a:dd:e2:51:f6:
                    13:19:42:3c:08:e5:76:05:3d:0c:6f:ec:ab:2c:08:
                    fd:43:00:02:bd:66:a6:27:ee:9e:3d:b3:d4:ce:0a:
                    4f:18:93:e1:c0:00:c7:4b:69:76:3e:b3:a7:54:d2:
                    4b:fe:cc:b4:84:61:82:87:29:23:35:e0:75:51:ef:
                    b3:1a:33:2d:d8:84:7f:39:f7:5c:5e:c5:c8:ea:9b:
                    75:e2:d4:85:ea:d4:6e:67:70:1e:3a:4c:fc:2c:2d:
                    d0:be:fb:55:7d:52:4c:c8:00:80:98:26:99:95:40:
                    42:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:A6:C5:07:5F:6C:58:7E:32:F5:7A:22:8E:68:FC:E3:4B:61:B3:C8
            X509v3 Authority Key Identifier:
                keyid:B2:41:58:30:57:F2:05:63:C9:38:2B:89:4F:1F:CE:AC:A5:5F:BD:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skFYMFfyBWPJOCuJTx_OrKVfvaM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d528d3-2a93-460c-926d-40d15f36ea43/1/skFYMFfyBWPJOCuJTx_OrKVfvaM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d528d3-2a93-460c-926d-40d15f36ea43/1/skFYMFfyBWPJOCuJTx_OrKVfvaM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bb:cc:5f:9b:9f:9c:48:f3:4e:8e:d8:e9:d8:4f:1a:37:8d:17:
         d8:f0:1b:65:e4:65:27:5d:10:a0:b4:3b:af:ad:5d:97:3a:f3:
         cd:56:d9:f0:6d:87:68:af:35:d4:94:14:aa:a6:92:4d:56:57:
         72:1d:de:45:b9:e3:7e:ad:2f:10:6f:fc:01:51:4c:72:70:71:
         06:c2:d5:a7:be:81:c9:9f:67:42:03:70:d3:1c:51:89:a4:27:
         27:4b:9a:ec:99:97:a7:d6:5b:1e:2e:0d:db:20:f0:20:88:f4:
         b0:d5:ae:c8:a5:07:33:21:9f:5e:a3:f1:c9:95:76:3c:46:75:
         05:15:9e:3c:1f:dc:cb:da:99:b9:54:90:f5:d4:27:ee:94:b4:
         23:7b:50:18:9c:03:1c:1d:01:95:21:04:91:2d:01:df:87:cc:
         0c:0b:17:50:51:d4:53:cc:17:fa:c6:bf:fd:c7:f6:df:07:d5:
         c3:7a:53:7f:68:3b:0a:14:37:d9:73:6a:96:96:95:2f:fd:55:
         98:f7:8f:f6:41:4b:25:75:11:4a:1b:b1:36:83:62:a3:59:a7:
         1c:56:32:b4:db:8f:61:1e:b4:a2:34:87:93:47:82:4d:0c:9b:
         95:62:48:22:76:88:90:26:e9:5c:91:fc:8b:d4:59:ca:b8:17:
         47:05:68:68
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqxubjhQEts8y4nXno9C3fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyNDE1ODMwNTdmMjA1NjNjOTM4MmI4OTRmMWZjZWFjYTU1
ZmJkYTMwHhcNMjYwMzAxMTkwMTI3WhcNMjYwMzAyMTkwMTI3WjAzMTEwLwYDVQQD
Eyg0NGE2YzUwNzVmNmM1ODdlMzJmNTdhMjI4ZTY4ZmNlMzRiNjFiM2M4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodIqXf5ZOnEFK3fvlOk0NrpW6ZmJ
rz8YH1aT1qBss8SdpJFv1074H243f4o/WYCPhLcVFJXF0tUA475bjQYWiLOspOpf
V44LgAV/NGU+lkqA2bXPL6ysSCOIhTYNTHve/TAqPYE6PYtrKCZV+fvRaDttiE/f
MUAnJq8OpL1qZYCaFlzvnUTNbJm8YUF5XOu8Wt3iUfYTGUI8COV2BT0Mb+yrLAj9
QwACvWamJ+6ePbPUzgpPGJPhwADHS2l2PrOnVNJL/sy0hGGChykjNeB1Ue+zGjMt
2IR/OfdcXsXI6pt14tSF6tRuZ3AeOkz8LC3QvvtVfVJMyACAmCaZlUBC1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFESmxQdfbFh+MvV6Io5o/ONLYbPIMB8GA1UdIwQY
MBaAFLJBWDBX8gVjyTgriU8fzqylX72jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2tGWU1GZnlCV1BKT0N1SlR4X09yS1ZmdmFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9kNTI4ZDMtMmE5My00NjBjLTkyNmQt
NDBkMTVmMzZlYTQzLzEvc2tGWU1GZnlCV1BKT0N1SlR4X09yS1ZmdmFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC9kNTI4ZDMtMmE5My00NjBjLTkyNmQtNDBkMTVmMzZlYTQz
LzEvc2tGWU1GZnlCV1BKT0N1SlR4X09yS1ZmdmFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu8xfm5+c
SPNOjtjp2E8aN40X2PAbZeRlJ10QoLQ7r61dlzrzzVbZ8G2HaK811JQUqqaSTVZX
ch3eRbnjfq0vEG/8AVFMcnBxBsLVp76ByZ9nQgNw0xxRiaQnJ0ua7JmXp9ZbHi4N
2yDwIIj0sNWuyKUHMyGfXqPxyZV2PEZ1BRWePB/cy9qZuVSQ9dQn7pS0I3tQGJwD
HB0BlSEEkS0B34fMDAsXUFHUU8wX+sa//cf23wfVw3pTf2g7ChQ32XNqlpaVL/1V
mPeP9kFLJXURShuxNoNio1mnHFYytNuPYR60ojSHk0eCTQyblWJIInaIkCbpXJH8
i9RZyrgXRwVoaA==
-----END CERTIFICATE-----