Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
File:                     tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft (raw, json)
Hash identifier:          S4kdtkhy9D00q9aTXp+UkSEWlosNEG/+dHWw5EJqeig=
Subject key identifier:   B2:D9:0F:81:87:88:40:9F:E1:CE:06:6E:47:62:E8:3C:BF:CA:24:B8
Authority key identifier: B5:94:EB:B6:74:8F:DC:12:12:7C:3F:92:7E:7F:B9:B1:AF:89:26:2C
Certificate issuer:       /CN=b594ebb6748fdc12127c3f927e7fb9b1af89262c
Certificate serial:       019CAD59CEF1EF10573F132B2FB7DF304228
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tZTrtnSP3BISfD-Sfn-5sa-JJiw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
Manifest number:          1844
Signing time:             Mon 02 Mar 2026 07:01:09 +0000
Manifest this update:     Mon 02 Mar 2026 07:01:09 +0000
Manifest next update:     Tue 03 Mar 2026 07:01:09 +0000
Files and hashes:         1: tZTrtnSP3BISfD-Sfn-5sa-JJiw.crl (hash: scbRcdzMhINsHhoFy9R7/hYoiyqAAlgahqmVAU1Z64E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tZTrtnSP3BISfD-Sfn-5sa-JJiw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:59:ce:f1:ef:10:57:3f:13:2b:2f:b7:df:30:42:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b594ebb6748fdc12127c3f927e7fb9b1af89262c
        Validity
            Not Before: Mar  2 07:01:09 2026 GMT
            Not After : Mar  3 07:01:09 2026 GMT
        Subject: CN=b2d90f818788409fe1ce066e4762e83cbfca24b8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:e9:85:b1:92:b2:7c:6e:06:11:af:35:14:1a:
                    09:63:7d:e2:21:14:e2:f1:9d:9c:a5:81:62:01:5b:
                    d0:35:4b:ac:e7:7c:f2:a6:d6:32:90:5b:18:86:fd:
                    47:4f:08:a8:5e:d7:62:69:25:63:b7:20:38:5d:ad:
                    c0:83:41:42:0e:85:bd:eb:c0:3a:58:25:4a:45:fc:
                    fd:49:58:b6:17:58:87:e0:9f:52:a3:21:37:31:a2:
                    6b:a5:71:63:57:7f:a3:82:b5:33:81:43:87:95:55:
                    96:76:2d:d2:a2:b8:10:d7:71:4c:30:55:e0:01:da:
                    65:82:f5:2a:d5:9f:6b:25:7c:05:a1:d6:72:3d:68:
                    48:3e:93:e9:5a:35:df:98:bf:c0:67:d2:6a:37:3f:
                    d7:c6:44:bf:e6:80:6f:5f:dd:a2:f1:9e:13:bb:1b:
                    d3:0e:c2:45:4f:81:dd:b5:81:27:02:ad:b2:5c:b1:
                    d7:dd:4b:09:8c:0e:d7:81:8b:1e:e5:fb:81:50:59:
                    5e:66:53:d0:11:93:56:31:55:e7:8a:75:b3:b3:b8:
                    78:55:10:d5:0a:f0:22:b1:f0:7f:dd:fa:20:91:b1:
                    9a:4e:bc:bb:46:a0:f9:82:7f:9d:50:cd:db:0a:ea:
                    36:bd:5c:43:29:9e:c8:2a:02:2f:81:d1:cc:75:b4:
                    af:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:D9:0F:81:87:88:40:9F:E1:CE:06:6E:47:62:E8:3C:BF:CA:24:B8
            X509v3 Authority Key Identifier:
                keyid:B5:94:EB:B6:74:8F:DC:12:12:7C:3F:92:7E:7F:B9:B1:AF:89:26:2C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tZTrtnSP3BISfD-Sfn-5sa-JJiw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/8aa081-3969-432c-98d0-821936b31518/1/tZTrtnSP3BISfD-Sfn-5sa-JJiw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:6d:03:5b:a0:bb:a2:85:cb:41:ec:2d:f5:9e:cc:95:a0:fc:
         9d:a5:d7:a4:ce:99:76:d2:85:0e:0b:a3:d4:cb:cc:20:8d:fb:
         12:5a:55:fc:2a:af:34:93:77:23:99:88:d9:4e:c9:89:fd:1e:
         1f:a4:cb:1d:e0:ba:47:93:45:dc:b4:02:07:02:a9:33:d7:a9:
         c7:b0:46:ef:a5:a5:5d:16:14:73:2d:81:3d:ae:cd:b9:18:31:
         25:e7:f4:8d:7c:21:23:45:66:3b:af:c6:d9:fc:7f:54:98:3f:
         79:92:c9:c5:fd:ee:36:4f:f3:3b:be:81:33:13:84:81:58:be:
         85:55:da:ba:9e:e8:76:0e:0b:a3:ed:95:d4:e7:34:83:8b:73:
         6a:5b:81:e1:9c:dc:8e:c9:6d:13:3f:45:23:bf:d4:94:c5:f9:
         44:80:3f:e3:0f:61:a5:39:d8:d2:c7:2d:1f:f0:75:d8:9c:5f:
         48:dd:36:5d:1f:2d:7c:57:54:ea:5d:6f:14:0d:eb:bc:1d:27:
         a1:71:16:b9:bc:6c:36:29:3e:ce:4f:0e:bb:2d:4f:4d:c7:e8:
         c9:96:f2:f4:8e:c8:48:6b:03:56:d5:dc:ea:57:f2:4a:ec:2d:
         09:69:43:0f:2f:62:42:15:95:43:e1:3a:2d:18:01:4b:1d:d1:
         a1:98:21:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----