Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
File:                     EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft (raw, json)
Hash identifier:          OyvryMFNcyqnDHtld+/y5m7E5jhJKwHB051VXSuhD1w=
Subject key identifier:   FF:21:B1:F2:BC:1D:95:83:24:D6:34:12:B6:7D:BB:79:9E:FE:AC:15
Authority key identifier: 10:38:D7:A2:95:4A:32:D2:AF:D1:6B:88:B3:63:B3:90:68:1C:D5:93
Certificate issuer:       /CN=1038d7a2954a32d2afd16b88b363b390681cd593
Certificate serial:       019D98F458D770E79C3C429347B34F59D276
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
Manifest number:          1194
Signing time:             Fri 17 Apr 2026 01:00:43 +0000
Manifest this update:     Fri 17 Apr 2026 01:00:43 +0000
Manifest next update:     Sat 18 Apr 2026 01:00:43 +0000
Files and hashes:         1: EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl (hash: IPd3W3FtOoCcorV5pyBMmgW9AnWbwTSHqnHSSKt/zgw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 01:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f4:58:d7:70:e7:9c:3c:42:93:47:b3:4f:59:d2:76
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1038d7a2954a32d2afd16b88b363b390681cd593
        Validity
            Not Before: Apr 17 01:00:43 2026 GMT
            Not After : Apr 18 01:00:43 2026 GMT
        Subject: CN=ff21b1f2bc1d958324d63412b67dbb799efeac15
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:f9:37:13:dc:52:b4:a7:3e:c8:01:31:3c:e0:
                    7e:d6:e3:74:68:1e:2d:d4:0b:48:3c:6f:40:d0:bb:
                    c8:f7:20:d0:be:a7:99:24:f2:f5:99:0b:d5:b8:90:
                    5f:52:41:2b:79:d4:c4:da:cb:2e:03:f3:de:5b:76:
                    a8:34:1d:99:f3:e5:4b:47:57:3f:a6:ff:83:79:22:
                    13:e5:a9:c2:be:ae:e7:83:0a:28:aa:09:e0:68:cb:
                    47:fb:87:06:fc:4c:f0:be:f6:f5:02:51:25:b6:3d:
                    36:b8:ab:93:d1:4f:8f:7b:c8:29:7c:75:5d:c8:04:
                    0d:a6:a1:c4:9e:37:60:f1:8e:fa:f9:97:2f:54:70:
                    7f:7e:8d:46:84:f7:2d:7e:b6:22:43:f0:ad:d7:a1:
                    5e:96:60:81:99:a2:57:d9:a2:8a:74:33:5c:72:00:
                    38:63:d7:ce:43:be:b1:e6:e7:a1:b5:23:74:87:7c:
                    6e:17:ab:db:80:c4:55:98:17:f6:ba:c7:d1:7d:f4:
                    d9:f5:65:c6:84:c2:cd:ab:06:cc:e3:67:bf:64:59:
                    8f:b3:3a:5a:18:28:51:95:ce:fa:6d:96:e7:43:3b:
                    91:97:c8:26:38:9c:40:29:54:16:72:49:f1:03:a2:
                    67:64:14:a6:6d:f3:b1:73:b5:36:71:3b:f3:7c:ca:
                    25:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:21:B1:F2:BC:1D:95:83:24:D6:34:12:B6:7D:BB:79:9E:FE:AC:15
            X509v3 Authority Key Identifier:
                keyid:10:38:D7:A2:95:4A:32:D2:AF:D1:6B:88:B3:63:B3:90:68:1C:D5:93

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b7:7f:d2:a3:77:30:e0:ce:86:da:a0:5f:34:3a:eb:e7:8a:98:
         99:97:22:c3:25:6d:5d:04:26:cf:0d:c0:8f:94:f4:f6:64:a5:
         74:7e:e2:f2:a1:2e:60:e0:df:35:07:02:49:68:a5:2c:7e:63:
         d6:50:d7:06:54:6f:2e:d7:5f:75:04:2b:be:7f:b9:51:88:5c:
         44:b8:64:56:34:aa:2c:1b:a2:9e:b7:23:e7:7b:1f:83:47:ae:
         5d:1d:ca:fd:1b:9a:05:de:99:e7:22:00:af:2c:17:96:60:a4:
         d1:29:81:e1:d0:75:d1:39:e8:85:a6:f8:28:d2:5d:3f:9c:ad:
         4f:46:28:16:a3:11:cf:7c:c5:01:a5:fb:6b:52:b4:9d:91:c1:
         8b:92:b0:12:af:25:fb:ca:32:e8:48:f4:c5:e0:0e:67:22:a3:
         c4:e2:13:85:f0:d1:ac:b7:ec:96:69:4c:2e:c1:e9:f8:99:3e:
         3f:cc:9a:1a:8f:78:16:e5:b3:7d:1c:33:44:75:a7:72:f0:88:
         8b:07:66:16:f4:c1:d3:33:92:da:51:df:57:5f:b5:2b:ca:af:
         bf:4e:e3:90:1d:b0:d1:67:5a:69:ee:7e:b3:72:be:7d:a4:fe:
         6f:d4:65:59:d2:00:a8:86:6c:ae:e5:a7:13:6a:02:5f:b2:2a:
         6e:d7:2a:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9FjXcOecPEKTR7NPWdJ2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwMzhkN2EyOTU0YTMyZDJhZmQxNmI4OGIzNjNiMzkwNjgx
Y2Q1OTMwHhcNMjYwNDE3MDEwMDQzWhcNMjYwNDE4MDEwMDQzWjAzMTEwLwYDVQQD
EyhmZjIxYjFmMmJjMWQ5NTgzMjRkNjM0MTJiNjdkYmI3OTllZmVhYzE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3/k3E9xStKc+yAExPOB+1uN0aB4t
1AtIPG9A0LvI9yDQvqeZJPL1mQvVuJBfUkEredTE2ssuA/PeW3aoNB2Z8+VLR1c/
pv+DeSIT5anCvq7ngwooqgngaMtH+4cG/Ezwvvb1AlEltj02uKuT0U+Pe8gpfHVd
yAQNpqHEnjdg8Y76+ZcvVHB/fo1GhPctfrYiQ/Ct16FelmCBmaJX2aKKdDNccgA4
Y9fOQ76x5uehtSN0h3xuF6vbgMRVmBf2usfRffTZ9WXGhMLNqwbM42e/ZFmPszpa
GChRlc76bZbnQzuRl8gmOJxAKVQWcknxA6JnZBSmbfOxc7U2cTvzfMolQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP8hsfK8HZWDJNY0ErZ9u3me/qwVMB8GA1UdIwQY
MBaAFBA416KVSjLSr9FriLNjs5BoHNWTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRURqWG9wVktNdEt2MFd1SXMyT3prR2djMVpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC82Mjc1NTctNzhhOC00YjRlLWEzYjgt
OWE4MThkZGQxNTU4LzEvRURqWG9wVktNdEt2MFd1SXMyT3prR2djMVpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC82Mjc1NTctNzhhOC00YjRlLWEzYjgtOWE4MThkZGQxNTU4
LzEvRURqWG9wVktNdEt2MFd1SXMyT3prR2djMVpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt3/So3cw
4M6G2qBfNDrr54qYmZciwyVtXQQmzw3Aj5T09mSldH7i8qEuYODfNQcCSWilLH5j
1lDXBlRvLtdfdQQrvn+5UYhcRLhkVjSqLBuinrcj53sfg0euXR3K/RuaBd6Z5yIA
rywXlmCk0SmB4dB10Tnohab4KNJdP5ytT0YoFqMRz3zFAaX7a1K0nZHBi5KwEq8l
+8oy6Ej0xeAOZyKjxOIThfDRrLfslmlMLsHp+Jk+P8yaGo94FuWzfRwzRHWncvCI
iwdmFvTB0zOS2lHfV1+1K8qvv07jkB2w0Wdaae5+s3K+faT+b9RlWdIAqIZsruWn
E2oCX7IqbtcqdQ==
-----END CERTIFICATE-----