Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/4c31f2-8f30-4dbe-938d-b2f0b1bcae5c/1/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.mft
File:                     NeZ2RZTgDZq4AXiTxxCSz1FrEB8.mft (raw, json)
Hash identifier:          NZP1lefyoY82bTVPYmxTSV0KsPqj6lGTMmZmJu348ZY=
Subject key identifier:   38:9C:E7:18:F0:03:8C:98:C2:9F:62:89:39:83:61:CF:94:8A:46:52
Authority key identifier: 35:E6:76:45:94:E0:0D:9A:B8:01:78:93:C7:10:92:CF:51:6B:10:1F
Certificate issuer:       /CN=35e6764594e00d9ab8017893c71092cf516b101f
Certificate serial:       019D97AA713D2EC3775D3272D6756EEBEE54
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fc/4c31f2-8f30-4dbe-938d-b2f0b1bcae5c/1/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.mft
Manifest number:          184E
Signing time:             Thu 16 Apr 2026 19:00:22 +0000
Manifest this update:     Thu 16 Apr 2026 19:00:22 +0000
Manifest next update:     Fri 17 Apr 2026 19:00:22 +0000
Files and hashes:         1: NeZ2RZTgDZq4AXiTxxCSz1FrEB8.crl (hash: YrEajKwSCFfoFNOkaawNZLIxB5x4eVV4b40YCsyVRiw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fc/4c31f2-8f30-4dbe-938d-b2f0b1bcae5c/1/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fc/4c31f2-8f30-4dbe-938d-b2f0b1bcae5c/1/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 19:00:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:97:aa:71:3d:2e:c3:77:5d:32:72:d6:75:6e:eb:ee:54
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=35e6764594e00d9ab8017893c71092cf516b101f
        Validity
            Not Before: Apr 16 19:00:22 2026 GMT
            Not After : Apr 17 19:00:22 2026 GMT
        Subject: CN=389ce718f0038c98c29f6289398361cf948a4652
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:ef:e0:7e:39:06:9b:f7:52:7f:e1:02:cf:c1:
                    69:7a:ff:2b:75:c0:4e:14:88:df:25:36:40:46:21:
                    61:af:8c:5b:cf:c7:02:5d:77:78:19:2a:10:b0:5a:
                    87:ac:b4:87:c5:15:a1:84:85:94:4b:1c:11:a1:e9:
                    4e:c7:51:eb:4e:c0:63:87:64:de:1e:b4:eb:0a:72:
                    0c:64:59:6c:6f:93:39:e7:55:9e:70:4b:0f:ad:aa:
                    09:b9:06:d1:22:2c:4c:3e:e0:f5:47:21:87:5e:78:
                    df:ca:0a:7a:14:6c:0c:04:72:76:e6:91:5c:83:44:
                    29:bb:c0:c2:20:95:2a:7f:41:09:3c:00:a2:71:60:
                    a1:b9:ba:61:fe:86:07:3e:4d:08:e7:19:fd:96:d2:
                    3d:0e:e1:eb:e8:ed:71:c6:56:91:b6:8f:d2:b1:2f:
                    8a:65:18:2e:3a:29:c6:a6:ae:b5:bd:2f:1a:f3:5d:
                    d9:44:05:c2:e2:0f:9c:40:80:29:0b:f5:bb:87:b7:
                    7f:ed:03:8e:38:51:ed:17:2f:69:8e:f6:bd:50:ad:
                    13:b4:5c:26:30:91:b2:11:c3:08:e7:1c:d5:5b:b0:
                    73:8f:11:37:e8:73:cc:dc:bc:d3:b6:ae:7f:05:f4:
                    65:83:06:8b:73:d8:ee:25:f0:07:28:fe:44:db:5a:
                    3f:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:9C:E7:18:F0:03:8C:98:C2:9F:62:89:39:83:61:CF:94:8A:46:52
            X509v3 Authority Key Identifier:
                keyid:35:E6:76:45:94:E0:0D:9A:B8:01:78:93:C7:10:92:CF:51:6B:10:1F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4c31f2-8f30-4dbe-938d-b2f0b1bcae5c/1/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/4c31f2-8f30-4dbe-938d-b2f0b1bcae5c/1/NeZ2RZTgDZq4AXiTxxCSz1FrEB8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a0:ff:2c:87:cb:24:98:cc:9a:7d:27:07:b1:21:21:e1:9e:6a:
         db:24:6e:94:8c:97:79:3e:ff:a7:1f:a5:a7:a9:65:33:3b:af:
         9b:94:f7:de:c7:a0:3b:8a:cf:e2:33:ef:07:d2:a4:c1:85:4c:
         3c:9c:a0:0b:11:0c:08:84:bf:a7:eb:78:70:f9:6f:7c:23:19:
         6a:f1:84:3b:97:cc:3f:4d:dd:06:d3:7d:87:32:66:21:e9:37:
         b9:23:a1:22:f6:09:76:ba:94:de:92:7f:fc:13:ce:01:43:23:
         91:ce:2c:2a:71:3d:73:85:6a:71:2c:bc:bc:52:7c:c2:da:06:
         3f:3a:1c:32:d3:33:7f:d2:11:be:40:f1:a4:36:73:82:f8:e3:
         f7:75:4e:f4:2d:21:07:12:ef:45:ec:8e:d5:3b:83:1d:a4:1f:
         06:9d:47:55:7f:34:fe:02:0c:8a:d4:40:d3:3d:5f:5c:68:11:
         d5:01:2d:ce:46:2e:8f:66:f2:47:f4:36:8e:92:e5:51:be:a3:
         c5:3a:6b:7e:cb:46:c5:45:65:0a:b7:53:ed:97:49:a4:b3:b8:
         ef:ed:ff:1e:e9:7c:72:f9:0e:5e:e1:01:d0:8d:a4:56:d0:b1:
         a0:54:a2:f7:6a:1f:63:e7:51:56:0c:fe:78:aa:6a:3a:8c:d0:
         ca:e0:d9:0a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2XqnE9LsN3XTJy1nVu6+5UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1ZTY3NjQ1OTRlMDBkOWFiODAxNzg5M2M3MTA5MmNmNTE2
YjEwMWYwHhcNMjYwNDE2MTkwMDIyWhcNMjYwNDE3MTkwMDIyWjAzMTEwLwYDVQQD
EygzODljZTcxOGYwMDM4Yzk4YzI5ZjYyODkzOTgzNjFjZjk0OGE0NjUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj+/gfjkGm/dSf+ECz8Fpev8rdcBO
FIjfJTZARiFhr4xbz8cCXXd4GSoQsFqHrLSHxRWhhIWUSxwRoelOx1HrTsBjh2Te
HrTrCnIMZFlsb5M551WecEsPraoJuQbRIixMPuD1RyGHXnjfygp6FGwMBHJ25pFc
g0Qpu8DCIJUqf0EJPACicWChubph/oYHPk0I5xn9ltI9DuHr6O1xxlaRto/SsS+K
ZRguOinGpq61vS8a813ZRAXC4g+cQIApC/W7h7d/7QOOOFHtFy9pjva9UK0TtFwm
MJGyEcMI5xzVW7BzjxE36HPM3LzTtq5/BfRlgwaLc9juJfAHKP5E21o/pQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDic5xjwA4yYwp9iiTmDYc+UikZSMB8GA1UdIwQY
MBaAFDXmdkWU4A2auAF4k8cQks9RaxAfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmVaMlJaVGdEWnE0QVhpVHh4Q1N6MUZyRUI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy80YzMxZjItOGYzMC00ZGJlLTkzOGQt
YjJmMGIxYmNhZTVjLzEvTmVaMlJaVGdEWnE0QVhpVHh4Q1N6MUZyRUI4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy80YzMxZjItOGYzMC00ZGJlLTkzOGQtYjJmMGIxYmNhZTVj
LzEvTmVaMlJaVGdEWnE0QVhpVHh4Q1N6MUZyRUI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoP8sh8sk
mMyafScHsSEh4Z5q2yRulIyXeT7/px+lp6llMzuvm5T33segO4rP4jPvB9KkwYVM
PJygCxEMCIS/p+t4cPlvfCMZavGEO5fMP03dBtN9hzJmIek3uSOhIvYJdrqU3pJ/
/BPOAUMjkc4sKnE9c4VqcSy8vFJ8wtoGPzocMtMzf9IRvkDxpDZzgvjj93VO9C0h
BxLvReyO1TuDHaQfBp1HVX80/gIMitRA0z1fXGgR1QEtzkYuj2byR/Q2jpLlUb6j
xTprfstGxUVlCrdT7ZdJpLO47+3/Hul8cvkOXuEB0I2kVtCxoFSi92ofY+dRVgz+
eKpqOozQyuDZCg==
-----END CERTIFICATE-----