Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.mft
File:                     FyesE93M6XjmP3r186adq0mS1kU.mft (raw, json)
Hash identifier:          mmKhkg07loM2FD+yy5Ep13ZYo4c6XZWpQrSNAMrIWiQ=
Subject key identifier:   48:41:5C:61:50:4E:18:57:D1:AA:FB:EA:C1:74:F2:96:6D:AF:DF:45
Authority key identifier: 17:27:AC:13:DD:CC:E9:78:E6:3F:7A:F5:F3:A6:9D:AB:49:92:D6:45
Certificate issuer:       /CN=1727ac13ddcce978e63f7af5f3a69dab4992d645
Certificate serial:       019CAC4779CB0F78610B144B6F2C408C88FC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FyesE93M6XjmP3r186adq0mS1kU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.mft
Manifest number:          0BA5
Signing time:             Mon 02 Mar 2026 02:01:31 +0000
Manifest this update:     Mon 02 Mar 2026 02:01:31 +0000
Manifest next update:     Tue 03 Mar 2026 02:01:31 +0000
Files and hashes:         1: FyesE93M6XjmP3r186adq0mS1kU.crl (hash: SCil5xnD4O5okRdf1rIPiVUsmPnGddXWF23/HBX8HEM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FyesE93M6XjmP3r186adq0mS1kU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:47:79:cb:0f:78:61:0b:14:4b:6f:2c:40:8c:88:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1727ac13ddcce978e63f7af5f3a69dab4992d645
        Validity
            Not Before: Mar  2 02:01:31 2026 GMT
            Not After : Mar  3 02:01:31 2026 GMT
        Subject: CN=48415c61504e1857d1aafbeac174f2966dafdf45
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:72:4a:3f:f9:7d:da:85:16:3c:b6:4e:88:e9:
                    9e:c7:ef:30:d4:58:dd:a4:74:51:82:7e:78:64:c0:
                    ba:50:83:2d:df:1d:bb:ec:06:06:5f:7d:8e:d0:83:
                    4c:55:83:6c:83:60:3b:c6:ca:55:fb:0b:df:4b:d3:
                    8e:ac:83:d0:51:17:cf:59:c4:9d:70:51:5e:9f:06:
                    1d:1b:f1:f9:2b:80:c6:68:35:6b:f6:83:0e:4b:85:
                    8d:7c:f4:f4:04:89:59:5b:28:7d:e1:13:d6:09:90:
                    3e:fe:ab:f1:d9:86:f8:7f:15:86:9a:c1:15:37:dd:
                    07:4e:9f:d7:45:f4:d5:95:2b:07:ba:46:96:cc:45:
                    4e:d4:59:23:e5:3f:3c:d1:d4:ff:c1:ca:1d:b8:1a:
                    d3:55:c3:2f:17:be:8d:75:46:43:a6:15:38:9f:18:
                    88:38:82:07:d9:0a:a8:e0:b3:13:0b:0a:22:29:c6:
                    fc:fc:4f:bd:e2:85:8d:78:37:64:0e:bb:84:ac:0d:
                    7f:10:80:61:40:a9:ed:45:d4:e4:91:2d:3f:cc:bd:
                    4c:83:da:b7:14:06:ea:bc:da:bb:77:4b:2e:01:c4:
                    1d:5f:54:45:fd:2a:cb:bd:ef:39:01:e6:82:13:6b:
                    8a:45:1a:af:2e:6a:a8:6f:39:7a:e4:43:b8:27:ce:
                    fb:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:41:5C:61:50:4E:18:57:D1:AA:FB:EA:C1:74:F2:96:6D:AF:DF:45
            X509v3 Authority Key Identifier:
                keyid:17:27:AC:13:DD:CC:E9:78:E6:3F:7A:F5:F3:A6:9D:AB:49:92:D6:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyesE93M6XjmP3r186adq0mS1kU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:06:ad:8a:c1:27:a3:d5:22:df:f4:ba:b6:2a:4b:14:1f:b7:
         36:b2:27:37:67:7f:36:4b:30:08:2c:11:04:5f:77:12:07:d0:
         a6:c2:fd:a1:76:1b:68:14:fa:d7:54:ba:9e:1e:44:6a:a2:00:
         fd:3e:db:bc:5b:31:9f:66:58:f0:87:41:c4:94:9c:1f:39:ce:
         38:38:74:98:a4:99:cc:79:6b:f3:f7:35:d8:6b:41:40:a2:26:
         9e:f0:b8:a4:d5:cd:2e:23:4b:0a:5f:56:f5:24:98:c6:77:48:
         4d:a2:ac:ae:d5:00:4e:8e:c0:76:78:eb:20:c8:23:be:10:55:
         32:f8:4d:e2:e6:f9:6a:c6:88:af:6f:f7:05:e2:40:06:ec:6e:
         de:95:e1:9f:87:35:4a:49:f9:74:6e:a4:50:c3:d6:84:ea:dc:
         e7:ca:44:a9:96:27:82:f7:e8:3b:c5:f1:7d:c6:31:e3:6e:a7:
         37:aa:e2:42:4f:b9:a4:4c:fc:fe:5e:3e:d2:96:b0:89:69:60:
         6a:86:53:57:53:27:2c:53:09:f0:06:c9:e5:1e:53:bd:3e:08:
         bf:b4:37:9e:a9:8c:de:71:3e:ca:a8:99:88:c4:87:a1:26:d1:
         e2:cc:0e:47:e8:ba:7e:df:be:de:4a:bb:1e:71:fd:d2:80:9a:
         eb:9f:d4:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----