Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
File:                     EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft (raw, json)
Hash identifier:          q0Agg5M3qQzEpVAdnoeSFluYlEO42u97M3kZwKBYJN8=
Subject key identifier:   AB:35:08:2E:8F:A1:85:6E:F1:90:6C:09:F7:A8:F6:CC:FB:BC:36:54
Authority key identifier: 10:38:D7:A2:95:4A:32:D2:AF:D1:6B:88:B3:63:B3:90:68:1C:D5:93
Certificate issuer:       /CN=1038d7a2954a32d2afd16b88b363b390681cd593
Certificate serial:       019CAB6BE406FCEA0320DD6D43139E8E38F9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
Manifest number:          1119
Signing time:             Sun 01 Mar 2026 22:01:40 +0000
Manifest this update:     Sun 01 Mar 2026 22:01:40 +0000
Manifest next update:     Mon 02 Mar 2026 22:01:40 +0000
Files and hashes:         1: EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl (hash: zNNgDOaTegt/oznK61Lvk8cop7r5rYDO1/avgjN5MGM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 15:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:6b:e4:06:fc:ea:03:20:dd:6d:43:13:9e:8e:38:f9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1038d7a2954a32d2afd16b88b363b390681cd593
        Validity
            Not Before: Mar  1 22:01:40 2026 GMT
            Not After : Mar  2 22:01:40 2026 GMT
        Subject: CN=ab35082e8fa1856ef1906c09f7a8f6ccfbbc3654
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:e6:91:07:48:af:93:01:b9:e8:b2:5e:cb:5d:
                    a8:5d:aa:e3:4e:bd:7a:52:68:ea:fa:37:c1:15:1c:
                    ac:15:54:ad:a6:9f:61:2c:24:27:01:f1:06:83:33:
                    b2:00:3a:18:69:d0:31:aa:85:1e:fb:17:3c:6a:2b:
                    9d:7b:f3:3e:b2:6d:6b:5a:c3:2c:72:16:e2:57:3b:
                    58:40:44:23:84:ac:e5:6a:25:ab:54:08:8d:80:34:
                    6f:10:c1:ca:ea:70:12:f6:15:05:3f:75:4f:64:44:
                    0d:98:7c:b1:9c:be:48:ca:9d:1b:cf:37:e2:2f:84:
                    96:3c:69:d3:ab:55:40:f3:ca:b5:e2:05:58:55:93:
                    e8:df:73:a2:67:17:00:65:8b:d4:e3:f3:f7:e5:b1:
                    7a:1e:e5:6c:7b:00:77:f0:50:1c:3a:ef:74:d6:82:
                    18:35:2a:37:4a:6d:1a:26:31:2c:82:6a:aa:61:81:
                    df:e8:fa:08:ce:5b:2e:5b:9d:00:09:13:1b:30:54:
                    9f:09:fe:e6:5d:a1:70:52:38:0b:c5:e6:d0:45:4c:
                    84:01:9a:b6:d0:92:2d:a2:e3:80:c1:ca:44:a8:55:
                    51:d5:1d:5e:9e:1c:e3:65:5c:52:68:a4:53:b8:1e:
                    8b:4c:9f:56:04:34:1b:43:ca:2c:a9:70:67:72:21:
                    d2:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:35:08:2E:8F:A1:85:6E:F1:90:6C:09:F7:A8:F6:CC:FB:BC:36:54
            X509v3 Authority Key Identifier:
                keyid:10:38:D7:A2:95:4A:32:D2:AF:D1:6B:88:B3:63:B3:90:68:1C:D5:93

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:73:ea:4e:5a:35:bb:69:a5:43:4b:53:be:08:12:8a:c9:6e:
         d1:44:e4:20:41:8f:7f:32:30:72:73:bc:4f:57:60:3b:fc:0e:
         7d:f9:20:b6:ac:9b:88:51:01:f2:a9:0e:f5:e8:50:95:cd:c1:
         e6:29:bd:82:7d:6b:e1:89:cc:bf:46:5c:24:6c:2a:a4:25:3d:
         cd:1d:18:2f:a2:d3:5e:1a:25:0e:ca:11:d8:be:8f:e8:8b:a3:
         da:15:b9:f8:37:32:ba:7b:d6:a8:66:9c:30:40:8b:6c:d7:c5:
         7f:05:e9:86:8c:06:6d:d8:2d:52:cf:8b:24:c7:f9:ed:d7:3f:
         45:0a:79:23:ba:2e:6a:03:dd:00:cc:46:d1:19:88:48:17:6d:
         7c:c7:fc:1f:04:8f:0d:61:68:ab:75:77:86:3f:58:d5:d6:89:
         6b:dd:e7:d2:3f:47:ca:1a:3e:40:de:47:4e:e3:31:1e:db:65:
         44:b4:2c:ad:d3:06:23:b5:01:73:8f:a7:6d:3d:9c:a0:08:95:
         49:01:00:35:52:57:7a:f9:1e:a3:35:42:ef:a8:ba:27:67:47:
         5d:a8:f6:33:21:1b:e4:07:4a:ce:2f:9b:bd:8c:df:b1:64:3f:
         b2:6d:ab:bd:8a:9d:25:f9:2e:94:e9:07:9f:b9:7b:dc:ae:f5:
         66:0b:22:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----