Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
File:                     C1XbSaXB_JAcoahcjSXxPxhuL_o.mft (raw, json)
Hash identifier:          PxaLAg+vECxGnb1D7h+jFmXagLWl6VnodwYdjI8Gnx8=
Subject key identifier:   8E:D9:35:C2:97:67:AA:04:24:CB:3F:E9:3E:CF:7D:88:CB:8C:0D:94
Authority key identifier: 0B:55:DB:49:A5:C1:FC:90:1C:A1:A8:5C:8D:25:F1:3F:18:6E:2F:FA
Certificate issuer:       /CN=0b55db49a5c1fc901ca1a85c8d25f13f186e2ffa
Certificate serial:       019EC0DADF5E1FA8203663D65E86E3BB1DAD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
Manifest number:          1957
Signing time:             Sat 13 Jun 2026 12:00:29 +0000
Manifest this update:     Sat 13 Jun 2026 12:00:29 +0000
Manifest next update:     Sun 14 Jun 2026 12:00:29 +0000
Files and hashes:         1: C1XbSaXB_JAcoahcjSXxPxhuL_o.crl (hash: 9RfQ5zHQQb3f2B8mrZs2+h9oObmR8BNKPyvNW3SXGAg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 12:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c0:da:df:5e:1f:a8:20:36:63:d6:5e:86:e3:bb:1d:ad
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0b55db49a5c1fc901ca1a85c8d25f13f186e2ffa
        Validity
            Not Before: Jun 13 12:00:29 2026 GMT
            Not After : Jun 14 12:00:29 2026 GMT
        Subject: CN=8ed935c29767aa0424cb3fe93ecf7d88cb8c0d94
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:b7:0b:2f:78:d9:a8:52:b8:98:8b:46:06:91:
                    1e:73:6b:2c:9c:01:b3:b3:5d:4e:f7:95:74:38:bd:
                    39:0d:38:37:08:fc:bb:b3:11:3b:7b:46:73:32:80:
                    ed:ce:04:9f:9d:14:b3:a1:fc:cc:42:4b:c4:38:f9:
                    19:68:9c:8d:d0:35:19:ea:f4:04:3a:b7:8b:65:2b:
                    93:64:54:ee:36:2a:70:be:57:bc:c6:d4:b4:19:77:
                    76:07:b2:eb:da:5f:8b:f4:05:94:59:80:01:55:4a:
                    47:b2:10:70:57:24:17:ca:1b:46:11:1e:51:ea:b5:
                    f1:56:5d:93:84:97:8b:12:da:c8:9b:54:1e:a2:38:
                    bf:4c:68:8d:08:97:0d:e1:a3:b3:e6:55:9e:38:4a:
                    4c:3d:79:ff:22:be:49:5a:06:8b:d7:8d:94:e0:72:
                    65:d5:13:59:72:04:5c:ab:1b:c5:c9:d1:30:6e:4f:
                    0f:2a:63:61:3b:ed:e5:9b:b0:55:17:2d:44:f2:68:
                    39:f7:b4:5b:f9:97:5b:38:9b:64:3c:35:b3:b6:be:
                    b9:6c:c0:6b:69:49:c8:aa:45:5c:8d:65:7c:e5:12:
                    b6:52:a2:c0:49:16:c5:be:95:db:15:43:06:08:80:
                    61:4b:4f:5e:76:b0:59:4f:b9:c3:b5:de:9e:ee:b6:
                    84:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:D9:35:C2:97:67:AA:04:24:CB:3F:E9:3E:CF:7D:88:CB:8C:0D:94
            X509v3 Authority Key Identifier:
                keyid:0B:55:DB:49:A5:C1:FC:90:1C:A1:A8:5C:8D:25:F1:3F:18:6E:2F:FA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:68:74:62:93:6c:86:5e:d0:97:c2:03:ae:e9:50:ac:81:db:
         c8:4d:86:b0:b3:16:93:47:fe:b6:b1:00:c0:e5:55:84:dd:9e:
         ee:3c:10:de:fb:f6:b8:79:b3:e0:34:04:14:3b:af:5f:ff:9d:
         42:c0:9c:2f:64:49:e4:d8:a8:fb:46:03:79:a1:f6:f4:5e:4d:
         1e:e7:aa:b3:7d:06:03:14:7e:96:e6:46:b6:ae:22:23:07:1a:
         e6:d7:65:3a:47:b1:d2:c3:4c:da:cb:a7:8b:b1:26:0a:af:55:
         5f:ad:c3:2b:cb:84:ad:db:95:0a:a4:ae:8e:3b:0c:20:b0:d7:
         86:13:66:0d:c0:03:5f:e6:81:71:4c:21:9b:54:93:c8:7c:98:
         7f:62:09:89:d4:55:cd:c8:f4:25:9f:0d:fd:d8:54:c5:a8:ea:
         d8:77:f2:eb:04:d8:80:9d:47:83:8a:f0:fb:82:7f:1f:57:6e:
         f9:11:2a:c4:0e:f9:39:26:a6:71:12:8e:87:3e:70:21:e9:dd:
         e7:d3:08:a9:30:bb:b7:ab:21:0c:8a:4b:d6:d8:a3:e1:72:f2:
         de:18:d2:3d:5c:7f:ee:5f:1a:4b:09:5c:52:cc:2d:2d:ac:88:
         7a:d3:36:0b:60:b3:06:8c:d5:9d:2a:bf:f3:1e:f0:fb:46:47:
         11:33:8e:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7A2t9eH6ggNmPWXobjux2tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiNTVkYjQ5YTVjMWZjOTAxY2ExYTg1YzhkMjVmMTNmMTg2
ZTJmZmEwHhcNMjYwNjEzMTIwMDI5WhcNMjYwNjE0MTIwMDI5WjAzMTEwLwYDVQQD
Eyg4ZWQ5MzVjMjk3NjdhYTA0MjRjYjNmZTkzZWNmN2Q4OGNiOGMwZDk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrcLL3jZqFK4mItGBpEec2ssnAGz
s11O95V0OL05DTg3CPy7sxE7e0ZzMoDtzgSfnRSzofzMQkvEOPkZaJyN0DUZ6vQE
OreLZSuTZFTuNipwvle8xtS0GXd2B7Lr2l+L9AWUWYABVUpHshBwVyQXyhtGER5R
6rXxVl2ThJeLEtrIm1Qeoji/TGiNCJcN4aOz5lWeOEpMPXn/Ir5JWgaL142U4HJl
1RNZcgRcqxvFydEwbk8PKmNhO+3lm7BVFy1E8mg597Rb+ZdbOJtkPDWztr65bMBr
aUnIqkVcjWV85RK2UqLASRbFvpXbFUMGCIBhS09edrBZT7nDtd6e7raEuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI7ZNcKXZ6oEJMs/6T7PfYjLjA2UMB8GA1UdIwQY
MBaAFAtV20mlwfyQHKGoXI0l8T8Ybi/6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQzFYYlNhWEJfSkFjb2FoY2pTWHhQeGh1TF9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC81MjM5ODgtNWEwMC00MGE2LWIwNDQt
YTI3ZTc0Zjc1ZDI2LzEvQzFYYlNhWEJfSkFjb2FoY2pTWHhQeGh1TF9vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC81MjM5ODgtNWEwMC00MGE2LWIwNDQtYTI3ZTc0Zjc1ZDI2
LzEvQzFYYlNhWEJfSkFjb2FoY2pTWHhQeGh1TF9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATGh0YpNs
hl7Ql8IDrulQrIHbyE2GsLMWk0f+trEAwOVVhN2e7jwQ3vv2uHmz4DQEFDuvX/+d
QsCcL2RJ5Nio+0YDeaH29F5NHueqs30GAxR+luZGtq4iIwca5tdlOkex0sNM2sun
i7EmCq9VX63DK8uErduVCqSujjsMILDXhhNmDcADX+aBcUwhm1STyHyYf2IJidRV
zcj0JZ8N/dhUxajq2Hfy6wTYgJ1Hg4rw+4J/H1du+REqxA75OSamcRKOhz5wIend
59MIqTC7t6shDIpL1tij4XLy3hjSPVx/7l8aSwlcUswtLayIetM2C2CzBozVnSq/
8x7w+0ZHETOOBA==
-----END CERTIFICATE-----