Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/407213-b264-4853-9343-ee5585ae13b7/1/oLNzv45HcndefI_F-9Mpze5Eoyw.mft
File:                     oLNzv45HcndefI_F-9Mpze5Eoyw.mft (raw, json)
Hash identifier:          YdH8vchc60ikwakZdWFt0zW/KkH4wY72Nyift4eii+I=
Subject key identifier:   E6:52:66:69:47:73:D8:BF:28:B2:EF:8F:8A:FD:B6:CB:C2:E3:6A:17
Authority key identifier: A0:B3:73:BF:8E:47:72:77:5E:7C:8F:C5:FB:D3:29:CD:EE:44:A3:2C
Certificate issuer:       /CN=a0b373bf8e4772775e7c8fc5fbd329cdee44a32c
Certificate serial:       019CADFE2DB67B9D34D3FCF2DAD3F96DFE05
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oLNzv45HcndefI_F-9Mpze5Eoyw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e6/407213-b264-4853-9343-ee5585ae13b7/1/oLNzv45HcndefI_F-9Mpze5Eoyw.mft
Manifest number:          1844
Signing time:             Mon 02 Mar 2026 10:00:42 +0000
Manifest this update:     Mon 02 Mar 2026 10:00:42 +0000
Manifest next update:     Tue 03 Mar 2026 10:00:42 +0000
Files and hashes:         1: oLNzv45HcndefI_F-9Mpze5Eoyw.crl (hash: 05RtBMLGGii4MRtcBGxmiIU4BF3YfOZWH+cI/+sSZHo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e6/407213-b264-4853-9343-ee5585ae13b7/1/oLNzv45HcndefI_F-9Mpze5Eoyw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e6/407213-b264-4853-9343-ee5585ae13b7/1/oLNzv45HcndefI_F-9Mpze5Eoyw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oLNzv45HcndefI_F-9Mpze5Eoyw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 09:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:fe:2d:b6:7b:9d:34:d3:fc:f2:da:d3:f9:6d:fe:05
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a0b373bf8e4772775e7c8fc5fbd329cdee44a32c
        Validity
            Not Before: Mar  2 10:00:42 2026 GMT
            Not After : Mar  3 10:00:42 2026 GMT
        Subject: CN=e65266694773d8bf28b2ef8f8afdb6cbc2e36a17
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:ba:13:d2:9e:e6:0c:d0:19:74:3f:78:00:1d:
                    4c:e3:d8:42:f2:c6:9c:b9:13:5b:59:d1:e5:57:57:
                    c4:8c:0f:85:6e:eb:0c:d7:2a:d6:97:69:06:53:09:
                    7a:91:f8:8a:c2:10:c1:ae:64:4e:bc:5f:c6:c9:58:
                    e2:4f:31:39:0d:fb:20:4b:5c:4f:54:d5:bc:03:ef:
                    3c:15:73:27:92:b8:8f:12:36:ca:7c:1a:17:95:76:
                    16:c7:60:66:f0:e0:9d:0c:93:77:28:e5:54:fc:f2:
                    67:59:22:7a:ba:60:90:13:1e:d6:6a:0c:02:cf:63:
                    1e:6b:d7:6e:e6:07:a3:1c:be:90:ad:12:9b:67:fa:
                    56:e2:72:f5:78:aa:01:9d:97:08:aa:7f:bc:0c:bc:
                    56:42:bc:13:f4:18:f5:a3:8d:01:f4:62:f7:78:6a:
                    26:ff:75:98:37:73:6d:c2:2d:85:04:9b:7c:05:31:
                    cc:b0:a8:2a:d0:92:75:06:a8:85:14:45:ac:56:04:
                    b5:d8:98:6e:99:fb:72:e1:65:65:71:79:9a:45:75:
                    1d:2a:fb:dc:df:bd:4b:b5:2b:8a:cd:cf:3d:35:5a:
                    50:46:cb:fb:25:94:db:d0:89:cf:f8:77:9b:50:69:
                    f1:a0:8c:8d:af:5e:64:9e:4b:f2:4e:8d:f0:7f:d7:
                    73:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:52:66:69:47:73:D8:BF:28:B2:EF:8F:8A:FD:B6:CB:C2:E3:6A:17
            X509v3 Authority Key Identifier:
                keyid:A0:B3:73:BF:8E:47:72:77:5E:7C:8F:C5:FB:D3:29:CD:EE:44:A3:2C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oLNzv45HcndefI_F-9Mpze5Eoyw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/407213-b264-4853-9343-ee5585ae13b7/1/oLNzv45HcndefI_F-9Mpze5Eoyw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/407213-b264-4853-9343-ee5585ae13b7/1/oLNzv45HcndefI_F-9Mpze5Eoyw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:68:21:dc:43:e1:29:aa:d0:b8:c6:e1:eb:93:21:9b:75:6b:
         e2:a0:26:ce:d6:5e:d2:ad:85:91:20:5d:7f:14:ee:0f:34:a4:
         0f:1b:c8:ac:8d:76:0e:6c:8d:6f:83:4b:ba:4a:59:66:f3:fa:
         36:5f:50:8f:25:0d:e0:b3:a6:27:bd:0c:1f:c4:55:5a:e2:0a:
         4c:23:af:b9:dd:96:bf:4f:ce:dd:73:ea:95:93:9d:e7:28:f1:
         e0:5f:df:fa:7b:7a:22:51:4f:cc:07:60:8f:44:a5:d4:23:37:
         64:35:cf:50:19:29:db:23:06:49:ef:9d:78:d1:a4:02:90:70:
         2b:01:e7:7c:7a:58:81:e1:ee:ba:29:55:6b:bc:aa:88:bf:be:
         09:bd:29:b7:a6:cb:06:8a:94:cb:ae:ce:34:43:62:d5:0d:eb:
         76:05:ee:6d:cb:83:d9:75:a9:8e:58:be:a0:fe:36:2b:6d:13:
         31:06:cf:8a:b7:81:07:3e:ab:b7:f3:59:95:92:7b:87:35:70:
         8e:73:05:e6:63:88:a6:00:e4:24:19:b7:2b:f1:0f:48:a7:78:
         28:ff:38:52:c1:e4:f8:4c:c1:33:23:92:b2:21:18:a0:88:1b:
         35:2d:bb:7d:a1:4a:60:e8:1b:93:c3:70:8d:d0:fc:c8:1f:39:
         99:df:63:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----