Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft
File:                     hTq7t9e8xKXFbpEu76wbC7BFUCE.mft (raw, json)
Hash identifier:          tV/bYIAITnDuv73psT4yyxa9xGKLpVTqM2yJqcv2A8Y=
Subject key identifier:   0F:BD:69:0F:B3:77:7D:78:82:C2:23:DE:50:06:AA:A1:88:C8:4A:16
Authority key identifier: 85:3A:BB:B7:D7:BC:C4:A5:C5:6E:91:2E:EF:AC:1B:0B:B0:45:50:21
Certificate issuer:       /CN=853abbb7d7bcc4a5c56e912eefac1b0bb0455021
Certificate serial:       019CAC7DEDFF73A26D1F1798D67EBEB74D0A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hTq7t9e8xKXFbpEu76wbC7BFUCE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft
Manifest number:          0792
Signing time:             Mon 02 Mar 2026 03:00:59 +0000
Manifest this update:     Mon 02 Mar 2026 03:00:59 +0000
Manifest next update:     Tue 03 Mar 2026 03:00:59 +0000
Files and hashes:         1: hTq7t9e8xKXFbpEu76wbC7BFUCE.crl (hash: W0VVucwwZW7X1RwduXR7ipx5F4AfPBOTkz/UC29pOa8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hTq7t9e8xKXFbpEu76wbC7BFUCE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:7d:ed:ff:73:a2:6d:1f:17:98:d6:7e:be:b7:4d:0a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=853abbb7d7bcc4a5c56e912eefac1b0bb0455021
        Validity
            Not Before: Mar  2 03:00:59 2026 GMT
            Not After : Mar  3 03:00:59 2026 GMT
        Subject: CN=0fbd690fb3777d7882c223de5006aaa188c84a16
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:6b:9a:40:11:30:be:3f:a2:b1:c3:fb:19:d3:
                    df:27:67:68:27:08:16:7f:75:b1:e0:84:4e:e3:62:
                    bb:0d:2f:a6:5e:e0:64:b5:aa:8b:b5:de:ef:fb:d1:
                    62:9c:27:79:5f:8f:f2:64:b2:37:59:bf:53:41:c9:
                    f0:9c:04:ce:bf:18:5f:77:1f:b8:63:d3:4f:4d:ae:
                    55:39:85:52:b5:5c:a3:7b:e8:1e:78:32:35:3d:5e:
                    00:d0:cb:b6:15:35:24:bd:8f:58:79:11:35:d7:5a:
                    f8:de:63:1f:c0:f5:17:4c:f8:5c:ed:21:df:29:5f:
                    7e:aa:71:fd:96:ab:13:a4:e4:7e:65:d7:81:80:3c:
                    cf:0a:22:5f:ed:e5:fb:5f:3c:c0:a8:25:93:fb:b2:
                    e5:7e:17:53:fa:b4:b6:09:ec:f2:ae:6f:a8:42:77:
                    e7:95:2d:cc:16:92:3e:8c:26:86:ea:c6:6c:94:7b:
                    51:78:f9:e6:9d:5e:b2:32:94:e0:e3:91:8d:7e:95:
                    e3:be:52:46:19:0f:2d:29:b5:ad:f5:b7:7c:fb:a5:
                    e7:eb:bf:ba:f4:a2:48:1e:21:e2:b1:36:b3:ba:cf:
                    20:89:1a:bb:f2:2a:21:84:f5:6e:1f:dd:2b:80:2d:
                    64:96:86:b8:d5:70:77:48:f4:57:dc:8c:fe:b7:c7:
                    94:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:BD:69:0F:B3:77:7D:78:82:C2:23:DE:50:06:AA:A1:88:C8:4A:16
            X509v3 Authority Key Identifier:
                keyid:85:3A:BB:B7:D7:BC:C4:A5:C5:6E:91:2E:EF:AC:1B:0B:B0:45:50:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTq7t9e8xKXFbpEu76wbC7BFUCE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/de/4238ae-a72f-471c-a9a9-5823f870141b/1/hTq7t9e8xKXFbpEu76wbC7BFUCE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:1c:e0:fe:73:d0:de:59:e9:56:5a:62:c3:e0:48:4d:4b:f7:
         4b:76:e0:f4:bc:de:60:86:71:bf:91:eb:5e:e3:b0:e2:35:4f:
         49:b7:e6:d1:86:47:9c:4f:ef:71:3b:82:1a:d9:45:bd:26:01:
         01:6a:c5:76:6d:c4:be:e3:d8:0b:1e:3a:aa:d2:cf:5b:2d:5b:
         a9:68:8a:ac:5b:b5:68:e4:de:2b:21:3f:5b:70:a6:22:8f:f6:
         b9:2b:6d:47:f2:86:5b:32:d5:07:4e:0b:8e:f5:f5:b3:61:c0:
         20:39:3c:e9:71:b2:23:5d:59:11:74:8c:f6:8f:e7:f2:0b:ca:
         83:7c:01:a3:50:02:1d:e7:67:f6:fc:b4:ca:b4:7a:77:e3:18:
         83:b4:6b:a2:83:15:ff:03:e9:26:de:68:42:a0:55:76:e3:59:
         2a:fb:11:aa:b2:98:1b:d1:d2:34:23:a1:4d:ec:97:24:1d:58:
         13:00:43:22:eb:61:c7:be:7e:cb:62:fd:7a:4b:7b:ff:a7:29:
         66:af:54:59:c9:f1:c8:cf:6b:2e:d3:db:20:48:ef:84:13:50:
         fc:31:21:4b:a6:37:cc:50:60:d8:5d:01:87:39:43:7b:32:04:
         13:c8:7e:17:77:f4:66:02:42:12:a6:77:64:5a:86:ad:1e:25:
         b3:d0:42:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----