Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.mft
File:                     ScKchYIxItOsfH9IBdWyQocNLeI.mft (raw, json)
Hash identifier:          l6ADD/ydWO4r7CzAyI8LFPNTvNdnv1u8niQPKAJyUCM=
Subject key identifier:   FA:E5:1D:BC:7D:DB:BE:F7:4F:3D:EE:E0:CE:10:F2:76:0D:9D:59:17
Authority key identifier: 49:C2:9C:85:82:31:22:D3:AC:7C:7F:48:05:D5:B2:42:87:0D:2D:E2
Certificate issuer:       /CN=49c29c85823122d3ac7c7f4805d5b242870d2de2
Certificate serial:       019D98BD79BC1A39DF0C908AC45088C6E48B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ScKchYIxItOsfH9IBdWyQocNLeI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.mft
Manifest number:          1656
Signing time:             Fri 17 Apr 2026 00:00:47 +0000
Manifest this update:     Fri 17 Apr 2026 00:00:47 +0000
Manifest next update:     Sat 18 Apr 2026 00:00:47 +0000
Files and hashes:         1: ScKchYIxItOsfH9IBdWyQocNLeI.crl (hash: XmEyW04pC9LypbOpTDPKxqmCXGfxCwCWe4x5kGlW/ik=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ScKchYIxItOsfH9IBdWyQocNLeI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:bd:79:bc:1a:39:df:0c:90:8a:c4:50:88:c6:e4:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=49c29c85823122d3ac7c7f4805d5b242870d2de2
        Validity
            Not Before: Apr 17 00:00:47 2026 GMT
            Not After : Apr 18 00:00:47 2026 GMT
        Subject: CN=fae51dbc7ddbbef74f3deee0ce10f2760d9d5917
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:09:7a:4a:5f:4f:7c:ff:63:68:94:2d:a3:ed:
                    64:8f:0e:5b:d4:9c:42:5a:fc:56:89:72:8b:50:bc:
                    fa:27:cd:bf:1a:0a:06:a0:86:76:01:be:f8:8f:f5:
                    ab:c4:57:f5:f3:bb:a9:d7:cb:25:f7:65:ea:4a:43:
                    fc:88:fb:6c:0b:11:29:0c:0d:c0:20:92:bf:69:08:
                    eb:6d:9f:dc:d8:d0:40:3d:5c:03:f7:23:69:b5:24:
                    28:56:19:3b:85:86:1e:3a:25:85:08:31:13:a1:b3:
                    9e:85:4c:7d:ac:ba:20:a8:14:e3:07:c4:b7:e4:b1:
                    1e:6b:5c:1c:c9:e1:70:ec:62:3e:15:78:73:90:ec:
                    9a:29:2d:1d:0a:c2:d8:42:74:76:85:2e:6a:f4:52:
                    b4:82:13:a5:8c:b3:bb:60:92:7f:32:4c:02:e2:3f:
                    c0:c8:73:77:7a:55:50:7b:a8:7f:0a:33:fd:09:56:
                    6a:2b:b6:43:42:4a:cb:34:65:23:d6:81:a8:03:26:
                    7a:cc:79:54:e3:47:de:40:1b:a7:f9:28:e3:15:7d:
                    be:02:d7:f9:c2:4d:db:ca:5a:d4:df:69:25:33:a9:
                    c7:e2:22:69:b9:c1:46:c2:bd:8c:bc:d2:dc:d3:f2:
                    fc:3b:10:b7:fb:7d:8b:c2:10:06:79:33:d0:b0:e7:
                    bd:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:E5:1D:BC:7D:DB:BE:F7:4F:3D:EE:E0:CE:10:F2:76:0D:9D:59:17
            X509v3 Authority Key Identifier:
                keyid:49:C2:9C:85:82:31:22:D3:AC:7C:7F:48:05:D5:B2:42:87:0D:2D:E2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ScKchYIxItOsfH9IBdWyQocNLeI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:39:29:22:9d:5f:c4:7b:ad:53:ce:a8:39:90:d3:f8:81:79:
         ee:32:e5:d8:89:a1:95:5c:6a:a7:20:ea:d9:d9:e8:58:51:9c:
         a9:ad:fc:12:2d:fa:e2:f5:f9:fa:05:67:5c:11:e2:ed:28:b8:
         8e:7a:f7:30:fa:e6:93:d0:58:61:9e:33:78:4a:3a:63:13:5f:
         31:16:42:cf:17:2e:8e:d7:63:ac:a9:ea:68:1e:1e:95:f2:1a:
         eb:9d:9f:c8:1c:5b:32:bd:ff:46:b5:c8:af:b8:08:8d:bc:69:
         2d:91:38:7d:a0:c0:50:32:37:48:ba:3c:60:72:63:4c:85:bf:
         76:c3:f9:a5:e7:c2:24:88:94:32:99:a0:4c:f3:eb:f4:61:a5:
         7e:d9:7a:d9:ad:61:a1:53:f7:25:6b:ac:89:92:ca:0b:0a:ea:
         87:5f:f5:bf:3f:20:f0:c7:b4:8b:ed:60:de:d4:4c:73:eb:2c:
         51:7f:c0:8f:cb:94:d9:49:cf:c2:0c:37:82:38:c2:e6:8c:53:
         52:cf:72:20:27:7a:18:94:0a:5e:13:a3:22:2e:87:e7:da:2a:
         10:af:a6:6c:38:e0:4f:4e:10:ac:cf:b8:2a:a8:88:6a:3e:bf:
         47:a2:e8:ce:28:ff:7b:cc:62:84:fd:22:b6:61:7b:68:c2:bc:
         e0:70:75:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----