Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/f16c15-de76-433d-b97f-62f9f446ad01/1/SzgbqgoK3TKp-UFPmyyaWjIlNC4.mft
File:                     SzgbqgoK3TKp-UFPmyyaWjIlNC4.mft (raw, json)
Hash identifier:          RjfU0QYj+P1XR1GkC93HJhipkzuWhqNn4TCKhmQZNFA=
Subject key identifier:   F0:FA:A1:94:01:BD:01:76:32:B0:5D:29:35:38:D9:DA:37:6C:99:DF
Authority key identifier: 4B:38:1B:AA:0A:0A:DD:32:A9:F9:41:4F:9B:2C:9A:5A:32:25:34:2E
Certificate issuer:       /CN=4b381baa0a0add32a9f9414f9b2c9a5a3225342e
Certificate serial:       019D9B514AE9DE8E290CAB0363378E7999F4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SzgbqgoK3TKp-UFPmyyaWjIlNC4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fb/f16c15-de76-433d-b97f-62f9f446ad01/1/SzgbqgoK3TKp-UFPmyyaWjIlNC4.mft
Manifest number:          114A
Signing time:             Fri 17 Apr 2026 12:01:28 +0000
Manifest this update:     Fri 17 Apr 2026 12:01:28 +0000
Manifest next update:     Sat 18 Apr 2026 12:01:28 +0000
Files and hashes:         1: SzgbqgoK3TKp-UFPmyyaWjIlNC4.crl (hash: cILltiHgYlMCtP27KiX/lhPT+SXfvpoPH1c49HsHqig=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fb/f16c15-de76-433d-b97f-62f9f446ad01/1/SzgbqgoK3TKp-UFPmyyaWjIlNC4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fb/f16c15-de76-433d-b97f-62f9f446ad01/1/SzgbqgoK3TKp-UFPmyyaWjIlNC4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SzgbqgoK3TKp-UFPmyyaWjIlNC4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 07:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:9b:51:4a:e9:de:8e:29:0c:ab:03:63:37:8e:79:99:f4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b381baa0a0add32a9f9414f9b2c9a5a3225342e
        Validity
            Not Before: Apr 17 12:01:28 2026 GMT
            Not After : Apr 18 12:01:28 2026 GMT
        Subject: CN=f0faa19401bd017632b05d293538d9da376c99df
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:9c:7e:d1:43:31:fa:8c:95:bb:95:26:4f:e4:
                    20:c4:9b:ef:d8:4f:35:4c:2c:d8:67:96:0b:55:f1:
                    27:93:ec:3b:1c:0a:72:c9:90:6b:36:f0:c4:e1:6e:
                    d6:c3:c8:36:76:e1:0d:6d:eb:34:4b:a1:ab:2c:fd:
                    72:6d:1b:f1:37:e7:a1:c4:60:5a:4d:16:de:12:2c:
                    16:31:21:dc:ba:e8:ab:14:43:05:a8:5e:ab:6f:13:
                    6c:12:b4:ef:73:1c:4a:39:44:9e:c9:a6:91:00:75:
                    fb:bb:59:65:21:e0:fc:73:54:13:85:fd:29:c3:69:
                    25:8d:5b:c1:51:e2:47:e3:77:2f:cd:53:bf:f3:fb:
                    02:07:e4:bf:b5:4d:96:d7:69:56:a3:07:5d:5d:c3:
                    ab:f4:e8:d7:04:78:1f:3f:81:e1:e7:e8:0b:ee:59:
                    5b:24:ee:ff:dc:a8:35:ef:e1:1b:df:a9:56:22:1b:
                    88:0f:fa:d9:d8:76:b9:be:2b:61:e4:a1:4f:50:c6:
                    f8:19:08:b1:3a:13:e1:4f:3f:f5:48:b8:29:18:2b:
                    62:78:77:a3:69:96:ed:e5:57:7e:46:e9:35:0d:4f:
                    80:1a:11:86:41:76:82:bd:1e:25:95:77:16:90:d4:
                    2c:da:14:80:0b:db:d0:63:fd:6f:f5:06:c5:33:8d:
                    f1:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F0:FA:A1:94:01:BD:01:76:32:B0:5D:29:35:38:D9:DA:37:6C:99:DF
            X509v3 Authority Key Identifier:
                keyid:4B:38:1B:AA:0A:0A:DD:32:A9:F9:41:4F:9B:2C:9A:5A:32:25:34:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SzgbqgoK3TKp-UFPmyyaWjIlNC4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f16c15-de76-433d-b97f-62f9f446ad01/1/SzgbqgoK3TKp-UFPmyyaWjIlNC4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f16c15-de76-433d-b97f-62f9f446ad01/1/SzgbqgoK3TKp-UFPmyyaWjIlNC4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:42:0c:e0:80:8f:cb:31:e1:8b:5d:1c:e9:6d:58:ad:67:48:
         e7:e0:da:9b:06:49:15:86:c7:9b:2a:b4:06:c1:89:6d:6e:46:
         0a:13:39:be:9c:11:53:67:06:95:bd:33:63:12:64:af:1b:ee:
         7c:17:01:f1:c2:6b:5a:1a:b6:1a:12:c3:3f:3f:c9:5f:89:fe:
         2c:c1:93:c6:ab:30:9b:50:44:39:96:8b:d4:ab:bb:06:d7:cf:
         61:6d:07:97:8a:71:90:b8:2d:13:06:d2:ab:ba:fd:e4:7a:3a:
         76:9b:c7:3c:d3:52:75:58:5b:f6:54:45:ce:ac:f1:47:b8:ff:
         53:2f:ca:74:89:78:8a:0b:12:3b:7b:52:5a:fe:90:0b:57:c2:
         2b:c1:d2:23:d9:a0:77:0d:33:72:e8:d0:94:8b:5f:2c:8f:90:
         6c:31:78:1e:a0:e7:ab:68:45:63:45:08:4e:de:44:42:83:0c:
         60:11:2f:08:a7:5f:93:f4:3c:ab:ec:63:e3:60:3f:d8:56:03:
         4c:e1:43:49:07:1c:b8:3d:ad:8b:9f:52:32:50:e1:83:62:50:
         ab:cc:81:66:2c:26:99:5d:7f:ea:49:b8:06:59:99:a3:7f:9b:
         c6:bc:0f:97:03:47:f8:c7:bb:cc:77:61:16:e9:33:41:65:b1:
         1b:03:8c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----