Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.mft
File:                     bQmekI59iHniTR7eCdgSz0at4sw.mft (raw, json)
Hash identifier:          6UPY7YhGAePK7Dipro1OyCtZjhkvyPyb8Zz4mjsVhZU=
Subject key identifier:   C0:5D:79:30:FD:F5:14:2F:7D:FC:12:89:76:45:56:19:A9:8A:20:E3
Authority key identifier: 6D:09:9E:90:8E:7D:88:79:E2:4D:1E:DE:09:D8:12:CF:46:AD:E2:CC
Certificate issuer:       /CN=6d099e908e7d8879e24d1ede09d812cf46ade2cc
Certificate serial:       019D99623D3341EBD81A4202F2333CBF5C8B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bQmekI59iHniTR7eCdgSz0at4sw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.mft
Manifest number:          07BD
Signing time:             Fri 17 Apr 2026 03:00:45 +0000
Manifest this update:     Fri 17 Apr 2026 03:00:45 +0000
Manifest next update:     Sat 18 Apr 2026 03:00:45 +0000
Files and hashes:         1: bQmekI59iHniTR7eCdgSz0at4sw.crl (hash: V10bXMSNoCk7nDyq/EqfQ1HCjLnem9j86tvk649bEVM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bQmekI59iHniTR7eCdgSz0at4sw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 22:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:99:62:3d:33:41:eb:d8:1a:42:02:f2:33:3c:bf:5c:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6d099e908e7d8879e24d1ede09d812cf46ade2cc
        Validity
            Not Before: Apr 17 03:00:45 2026 GMT
            Not After : Apr 18 03:00:45 2026 GMT
        Subject: CN=c05d7930fdf5142f7dfc128976455619a98a20e3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:cd:62:73:d8:c7:1f:70:5f:0d:c7:82:42:9f:
                    e5:d0:27:b2:d2:4e:0d:78:27:9d:30:ba:50:73:ad:
                    1c:2e:e0:61:b2:fd:cb:eb:42:41:d8:9b:84:47:71:
                    60:10:79:1a:0b:f0:7e:2c:59:8a:e1:ca:f0:f5:f6:
                    20:51:86:da:ce:14:69:92:92:8d:bb:fa:ea:8a:b7:
                    98:01:00:2c:7b:bf:f8:35:f8:46:4e:47:b5:c9:8e:
                    c4:61:56:53:67:8f:1a:9e:1d:e6:e1:8f:a7:35:2b:
                    7c:f6:d6:e1:14:59:30:05:34:98:1f:13:75:68:7b:
                    63:a3:e1:d1:4c:9c:b3:ab:de:2b:92:8e:48:d9:57:
                    7c:29:61:4b:8b:76:d0:57:1b:5c:2a:16:20:d8:de:
                    a8:5f:d4:f4:af:87:5e:54:b2:fe:d5:88:01:1a:3e:
                    1e:12:f3:03:b2:bb:60:23:de:e8:50:92:6e:45:54:
                    fa:15:b5:18:e6:7f:1a:df:75:3c:a3:54:33:a5:7a:
                    b3:82:30:24:57:58:57:97:62:14:a5:07:8f:d0:83:
                    39:d9:71:db:aa:0a:2e:81:81:70:bc:6b:1d:41:80:
                    61:7d:51:a9:43:bc:ad:ef:fc:33:9a:14:2d:04:76:
                    25:55:50:41:c6:ec:92:33:02:56:d9:2e:68:ff:66:
                    ae:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C0:5D:79:30:FD:F5:14:2F:7D:FC:12:89:76:45:56:19:A9:8A:20:E3
            X509v3 Authority Key Identifier:
                keyid:6D:09:9E:90:8E:7D:88:79:E2:4D:1E:DE:09:D8:12:CF:46:AD:E2:CC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQmekI59iHniTR7eCdgSz0at4sw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:60:f4:1c:62:95:fb:9d:15:d9:c2:4c:d8:e9:db:10:e6:52:
         d1:25:97:52:59:85:8c:2a:c1:b5:b5:db:d3:3f:3e:31:13:f6:
         f9:0b:e7:f9:4a:7d:29:21:94:db:18:97:e0:f2:7f:7b:53:11:
         21:13:ec:cc:4a:cf:7c:1b:21:5a:79:92:50:05:9d:5a:0a:bb:
         9c:fb:1b:89:69:74:d6:b9:3b:57:95:3c:47:33:69:6a:0e:23:
         f0:a2:bd:b8:89:a7:20:90:85:f5:fd:f8:96:3b:64:ce:bc:34:
         45:bf:6c:d4:38:b8:67:58:60:f9:b0:97:9d:18:a8:36:b1:bf:
         4c:8e:5d:9c:75:b9:53:17:92:73:ff:5e:16:c4:c0:49:56:75:
         d5:15:9d:1f:1f:05:9b:72:c8:5f:55:f2:df:7a:4d:de:d3:44:
         32:d4:07:18:18:db:85:fc:93:bc:64:f0:a6:89:1e:17:fd:a3:
         01:da:2a:54:e2:4a:1f:8f:a0:21:b1:98:df:d3:85:67:e4:0d:
         3a:91:ff:54:d8:62:47:48:e9:6e:0f:5b:ca:f1:cb:ef:bc:0a:
         2f:a2:06:1e:7a:31:e3:aa:85:73:ac:5d:c7:61:c8:8b:44:9a:
         53:61:17:62:85:fc:a2:ef:4b:31:5f:7a:ce:e4:ee:12:8d:46:
         84:31:71:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----