Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
File:                     4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft (raw, json)
Hash identifier:          5Lr5TA2nHoRDLHeuBw7ErAM9TDRyYWrRNM5Xb0m55ZM=
Subject key identifier:   EB:3F:DD:92:46:48:A9:92:FB:80:0B:E7:F2:3C:D1:25:11:95:67:00
Authority key identifier: E0:B8:67:13:11:00:C1:5D:E8:90:11:00:63:E6:38:A5:F0:23:67:C4
Certificate issuer:       /CN=e0b867131100c15de890110063e638a5f02367c4
Certificate serial:       019D9BBE86E7937F3BAD91B75D937645A695
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
Manifest number:          18C1
Signing time:             Fri 17 Apr 2026 14:00:47 +0000
Manifest this update:     Fri 17 Apr 2026 14:00:47 +0000
Manifest next update:     Sat 18 Apr 2026 14:00:47 +0000
Files and hashes:         1: 4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl (hash: 0jSU3CWf1jMnGzuhHG6k/WiK+vuK+QVaAlOfjUnBtuc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 14:00:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9b:be:86:e7:93:7f:3b:ad:91:b7:5d:93:76:45:a6:95
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e0b867131100c15de890110063e638a5f02367c4
        Validity
            Not Before: Apr 17 14:00:47 2026 GMT
            Not After : Apr 18 14:00:47 2026 GMT
        Subject: CN=eb3fdd924648a992fb800be7f23cd12511956700
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:e6:a3:49:7e:17:db:d1:a0:02:74:0a:5f:c6:
                    ec:0d:bb:ec:58:c0:2f:77:1e:9f:52:ad:08:35:7e:
                    15:ab:8d:f1:de:79:aa:cf:24:86:d4:c3:a3:f3:13:
                    23:05:74:ba:1c:7a:2a:ac:b8:77:ff:b5:a7:f7:d3:
                    fd:95:ed:36:26:5f:68:f6:65:1f:3c:56:c5:b1:23:
                    86:fe:17:d5:37:db:37:a7:21:b2:fa:4f:c0:d3:78:
                    31:26:00:12:83:f1:6e:80:ea:e3:49:ba:64:38:3c:
                    7a:b0:e4:c8:78:15:82:69:d0:2c:60:c5:d9:87:dd:
                    0e:cf:9d:a8:0d:63:3b:7b:32:b3:4b:b1:8b:58:98:
                    d6:20:84:c5:3a:d6:3d:d2:3a:dc:df:ec:a5:bc:a3:
                    fd:ef:db:cc:3a:d8:b9:27:a2:b2:f4:d0:ef:35:07:
                    45:5e:b3:14:4c:ca:12:f1:21:7f:47:fa:2e:98:04:
                    0d:9b:6e:23:7f:e8:ef:95:ef:4a:76:cd:86:4c:ec:
                    1f:fe:20:5c:54:30:3d:83:2f:64:88:0a:2a:35:44:
                    b2:b8:64:df:e7:c4:cc:28:32:03:e1:c5:50:6a:29:
                    85:19:46:bd:15:93:7d:9e:fd:5e:37:80:7a:f5:9f:
                    93:50:19:72:58:61:88:cf:c2:c4:5b:ea:7f:0e:c9:
                    18:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EB:3F:DD:92:46:48:A9:92:FB:80:0B:E7:F2:3C:D1:25:11:95:67:00
            X509v3 Authority Key Identifier:
                keyid:E0:B8:67:13:11:00:C1:5D:E8:90:11:00:63:E6:38:A5:F0:23:67:C4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:73:fe:57:77:d6:b5:b3:b3:0c:34:21:cd:d9:5d:7b:91:cc:
         fa:f2:ea:20:70:19:e7:fd:0c:19:5b:78:da:d1:83:54:aa:5f:
         71:56:56:2b:e5:0b:d9:45:05:47:13:5f:b7:ef:7f:1d:17:cd:
         ff:02:05:f6:b3:87:51:ed:b8:be:8a:52:c2:f9:9d:d7:05:11:
         b7:c8:26:19:2a:10:1d:ec:28:ac:5e:c0:bb:ba:d3:f4:df:ab:
         62:f2:11:b7:7b:41:fe:b9:3c:01:3a:4e:d7:c3:ec:6b:82:5b:
         75:e2:41:19:db:3c:59:a6:96:16:87:92:6e:51:9a:9d:9e:f5:
         26:c3:9e:0f:5b:89:8f:a9:6f:cb:75:af:73:ed:d8:64:42:28:
         a7:1d:72:8b:b3:38:1c:13:00:41:5d:bd:20:cb:4d:9c:c7:12:
         a2:a2:01:91:c6:16:39:13:91:7c:e8:4a:6a:ef:d0:67:60:22:
         f0:df:f3:e6:2c:05:09:7d:b3:dc:bd:88:2c:94:d6:32:63:d1:
         53:0b:11:94:d1:4a:12:20:90:3c:03:40:64:d9:5c:f0:c4:62:
         6b:38:03:7f:d0:7f:a9:74:48:95:4e:16:7e:25:36:d6:8d:27:
         81:18:45:94:7a:f2:cd:41:f4:c1:9f:fb:e3:c2:b1:09:59:ea:
         41:92:be:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----