Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft
File:                     02jCohY2GiT97Jfx838uHRIHEIc.mft (raw, json)
Hash identifier:          Z1YP04c4VB97uaN6jnuBD/6R785WCC5bMReLYTrl0ls=
Subject key identifier:   36:DC:38:D4:EA:B3:C2:C4:F4:DE:BA:0E:B7:21:19:C4:A6:22:04:FF
Authority key identifier: D3:68:C2:A2:16:36:1A:24:FD:EC:97:F1:F3:7F:2E:1D:12:07:10:87
Certificate issuer:       /CN=d368c2a216361a24fdec97f1f37f2e1d12071087
Certificate serial:       019CACB56D7F9101964175D2FEDFE83F288D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft
Manifest number:          1843
Signing time:             Mon 02 Mar 2026 04:01:37 +0000
Manifest this update:     Mon 02 Mar 2026 04:01:37 +0000
Manifest next update:     Tue 03 Mar 2026 04:01:37 +0000
Files and hashes:         1: 02jCohY2GiT97Jfx838uHRIHEIc.crl (hash: DQTAk/ITAqf15Car30WaIB1KrePHHdtc5t2cwOtX80I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:b5:6d:7f:91:01:96:41:75:d2:fe:df:e8:3f:28:8d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d368c2a216361a24fdec97f1f37f2e1d12071087
        Validity
            Not Before: Mar  2 04:01:37 2026 GMT
            Not After : Mar  3 04:01:37 2026 GMT
        Subject: CN=36dc38d4eab3c2c4f4deba0eb72119c4a62204ff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:06:78:8d:67:a8:1f:da:f2:14:4e:be:50:b9:
                    36:52:77:2f:cb:79:cf:ee:59:11:ef:c5:cb:55:b6:
                    1a:a8:6b:a1:b0:91:3c:65:bb:80:e1:93:d6:a8:88:
                    0e:8b:b4:2e:c3:f9:62:a4:b6:4d:38:a7:6a:72:8d:
                    ea:2c:a3:fb:30:4d:c9:17:a6:5e:fe:01:35:fa:c6:
                    56:f3:46:c5:64:de:f0:91:0e:68:ed:b7:7a:ac:0e:
                    35:ed:7c:ad:0f:3a:38:b1:7d:ad:9a:76:1c:0e:10:
                    06:ce:c0:34:07:56:66:93:0c:4d:e4:d3:1e:0e:51:
                    58:d2:23:45:d8:b9:f1:c5:21:ee:30:3f:91:04:49:
                    2c:ae:7d:b2:94:c9:3f:c2:71:4e:b1:bb:dc:c3:43:
                    d0:e1:58:8a:03:6d:ff:c1:f7:da:fb:d6:36:18:83:
                    ee:12:37:5f:df:db:4e:a2:ae:be:ff:8e:b4:fa:c3:
                    b9:80:41:76:10:f3:20:38:2c:5e:cf:0e:2e:05:63:
                    49:f5:ef:a5:8d:17:b1:7b:0a:7d:ce:da:9a:77:fe:
                    27:d3:22:d0:b5:af:42:17:f6:14:ce:cd:5d:44:8f:
                    34:ae:7d:da:23:42:68:dd:fe:0c:80:dd:c5:b4:f3:
                    f0:b0:86:82:5a:6d:8f:ca:7e:0c:dd:83:c0:cd:9b:
                    9a:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                36:DC:38:D4:EA:B3:C2:C4:F4:DE:BA:0E:B7:21:19:C4:A6:22:04:FF
            X509v3 Authority Key Identifier:
                keyid:D3:68:C2:A2:16:36:1A:24:FD:EC:97:F1:F3:7F:2E:1D:12:07:10:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:80:3b:9b:9f:4d:38:82:41:f2:34:ad:f7:41:ea:60:6b:03:
         43:12:18:10:e4:ef:19:56:b8:9b:b3:bb:e7:d9:ab:25:55:0b:
         29:be:e3:8b:69:25:7c:dd:9c:ea:f2:52:91:49:05:c3:71:25:
         01:27:4e:87:1c:a1:1b:59:e6:ff:a5:11:82:0b:23:89:92:c7:
         18:fc:c2:15:f9:fd:7c:58:b6:06:84:18:1f:31:67:86:d1:af:
         7a:dc:da:1b:76:3b:f9:e9:1d:6e:de:10:14:6a:b2:c0:51:28:
         ed:f8:3f:b4:45:fe:86:62:81:80:93:51:ca:59:47:91:d2:4b:
         c9:6c:a4:b3:ac:dd:7a:09:89:a7:c3:6d:7e:d8:74:ce:1f:fe:
         81:99:a4:d2:19:92:13:01:ee:3d:ed:3b:c9:1b:79:db:8d:1c:
         d1:c2:1e:72:b1:1b:33:f7:ed:61:ec:85:a2:a4:d7:70:27:a6:
         57:d6:59:ce:63:fa:13:69:ce:cf:04:05:3f:2e:5d:b3:a0:a1:
         2a:67:56:27:5a:e3:66:ce:f0:78:37:9e:57:52:9c:ba:26:30:
         fc:e5:56:1d:2f:04:6d:ec:59:c9:d1:7a:e9:ca:93:8c:5d:55:
         35:b1:c2:b8:47:98:21:c5:a9:49:1f:14:fa:18:2c:77:3e:4e:
         cf:a1:13:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----