Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
File:                     FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft (raw, json)
Hash identifier:          A8k6rEEh9LC+kxGHdNgWo/pXIRtCCMmNGEy6dOSrP84=
Subject key identifier:   B6:E1:E3:3D:50:68:C6:26:BE:C2:1F:7E:9F:4A:1B:DE:B2:AD:30:24
Authority key identifier: 16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08
Certificate issuer:       /CN=16536fc756a5864aaa2c1e77bb764248dabe2608
Certificate serial:       019D9962105ADF69B39F82CA8BCEC326D162
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
Manifest number:          0913
Signing time:             Fri 17 Apr 2026 03:00:33 +0000
Manifest this update:     Fri 17 Apr 2026 03:00:33 +0000
Manifest next update:     Sat 18 Apr 2026 03:00:33 +0000
Files and hashes:         1: FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl (hash: /DPSCdJvxQy+rFiON6ir1B92X6O1scSGwVVIuM6IAxY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 03:00:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:99:62:10:5a:df:69:b3:9f:82:ca:8b:ce:c3:26:d1:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=16536fc756a5864aaa2c1e77bb764248dabe2608
        Validity
            Not Before: Apr 17 03:00:33 2026 GMT
            Not After : Apr 18 03:00:33 2026 GMT
        Subject: CN=b6e1e33d5068c626bec21f7e9f4a1bdeb2ad3024
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:40:8e:ca:59:c6:20:17:a8:bd:b3:25:22:da:
                    10:8d:dc:87:41:27:a4:3d:cd:6e:5d:b3:7b:42:ea:
                    20:21:82:84:02:61:e0:99:a8:8e:a9:c9:5e:62:df:
                    56:62:ce:7e:56:6c:3e:50:73:97:a9:c4:31:6c:c7:
                    cf:40:82:f6:ad:0c:0c:0e:8a:93:88:eb:2d:d0:c3:
                    eb:05:9d:57:f3:49:fe:15:6d:87:22:ea:ee:36:86:
                    e8:65:65:c8:11:60:ad:27:11:4e:44:e2:1c:fc:3d:
                    22:bc:6d:33:47:b6:67:3d:a4:ce:58:45:4e:1c:b0:
                    55:9a:2d:5f:f1:a8:86:37:e4:ca:c3:b8:8d:4b:be:
                    5a:65:1d:fe:71:50:05:20:b8:f9:78:31:78:a2:1e:
                    8e:bc:e3:56:53:ab:cd:61:00:af:22:78:01:84:57:
                    cc:e9:f2:36:25:08:7d:51:0f:e5:0e:2f:cd:b1:2c:
                    23:66:41:06:23:6f:fe:20:99:dc:8e:12:df:65:85:
                    22:38:a8:f3:84:e4:33:8e:15:be:4d:0f:47:5c:42:
                    28:ae:b2:be:2b:6c:cc:31:f7:83:c1:b9:01:51:0d:
                    ff:43:5d:0a:31:8d:10:25:b1:70:5e:d1:ef:3b:cc:
                    13:8e:58:71:72:c3:b7:a0:3f:77:a4:5c:cf:77:4e:
                    b8:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:E1:E3:3D:50:68:C6:26:BE:C2:1F:7E:9F:4A:1B:DE:B2:AD:30:24
            X509v3 Authority Key Identifier:
                keyid:16:53:6F:C7:56:A5:86:4A:AA:2C:1E:77:BB:76:42:48:DA:BE:26:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FlNvx1alhkqqLB53u3ZCSNq-Jgg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9a4b45-dac0-4c79-8e14-7f3eb7546102/1/FlNvx1alhkqqLB53u3ZCSNq-Jgg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:3c:66:6d:ed:00:58:1c:70:3f:24:f7:ab:cf:bc:27:e0:02:
         6d:e2:b0:f9:38:d9:ea:61:b4:f6:d4:be:93:4d:61:73:b8:c1:
         ba:3e:cf:c9:0d:e9:30:6d:c0:97:f8:f8:b7:b0:19:29:4a:0f:
         f5:09:e6:83:1d:fc:3a:6b:19:c8:69:bb:0d:91:86:62:ed:31:
         77:dd:c2:21:2a:49:2e:4a:aa:9d:38:a4:44:e1:2b:f7:89:ab:
         ea:7e:87:0d:d0:bf:69:2a:64:ec:60:af:28:a9:31:5b:2c:b8:
         42:f2:c5:b4:86:01:83:a6:ba:94:c6:4d:fa:1e:7a:4e:d2:55:
         bf:01:d2:54:ab:2c:dc:69:d2:7f:de:ac:57:9d:5f:1a:24:92:
         89:8d:29:82:2e:a7:c3:b6:52:41:b8:9f:e7:ff:dd:8d:23:fe:
         74:1f:23:37:1a:29:22:a4:15:a3:2d:79:1b:9c:ee:ec:39:ad:
         1b:f7:6e:97:88:71:ea:d0:66:e3:0f:7a:23:d3:17:34:0e:cf:
         8b:90:f1:c3:df:96:e2:44:01:fb:42:e3:8d:b3:b7:a3:2e:9f:
         6e:30:48:b3:0c:21:0c:73:d8:ce:63:02:4a:11:71:6f:bb:d2:
         55:72:21:f3:97:d4:06:77:77:8f:1a:13:18:4a:d6:69:a9:4a:
         7d:9b:dd:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----