Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
File:                     5D7dxEvG9TRFds9ZrwATXGtiwB0.mft (raw, json)
Hash identifier:          NyrPnNtdLt4Jq9ZCRHelHHtNpRY3zmL85hT764nn/EI=
Subject key identifier:   11:B5:D6:19:79:FD:79:5D:35:C5:83:D6:9B:D3:65:28:87:A5:0B:34
Authority key identifier: E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D
Certificate issuer:       /CN=e43eddc44bc6f5344576cf59af00135c6b62c01d
Certificate serial:       019EBEECF6C2204872F45E6DE36507FA2969
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
Manifest number:          0FC0
Signing time:             Sat 13 Jun 2026 03:01:01 +0000
Manifest this update:     Sat 13 Jun 2026 03:01:01 +0000
Manifest next update:     Sun 14 Jun 2026 03:01:01 +0000
Files and hashes:         1: 5D7dxEvG9TRFds9ZrwATXGtiwB0.crl (hash: 3Bxd1lMGgM5G8noe8T7mX9zhhbIGj+VW/Z52NzhAuvQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:ec:f6:c2:20:48:72:f4:5e:6d:e3:65:07:fa:29:69
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e43eddc44bc6f5344576cf59af00135c6b62c01d
        Validity
            Not Before: Jun 13 03:01:01 2026 GMT
            Not After : Jun 14 03:01:01 2026 GMT
        Subject: CN=11b5d61979fd795d35c583d69bd3652887a50b34
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:10:13:34:0d:cd:a9:8d:85:0f:41:88:69:00:
                    5d:b5:0a:f0:c1:0f:4d:c2:8d:5c:bc:c3:0a:23:0c:
                    4d:ac:17:1f:aa:be:ca:e2:60:e2:ec:52:e2:2e:2a:
                    1d:b3:76:87:d1:12:e1:05:cd:d6:08:02:9d:7a:16:
                    a2:5d:87:94:27:1d:23:95:a3:7f:73:be:b7:e6:6c:
                    61:60:2f:4a:92:c2:b5:1b:fe:2a:93:a1:65:86:1e:
                    d7:88:27:49:b3:1d:79:12:5c:99:25:cd:0c:9e:77:
                    4b:16:46:07:6a:d6:a5:08:f7:2e:19:40:89:aa:9b:
                    60:49:b7:b9:8b:af:a2:46:a7:75:dd:7d:a7:e1:0a:
                    6c:a3:d5:3b:11:a7:84:f4:74:d0:1e:9a:18:f6:5d:
                    cd:e3:ac:33:4e:9e:0a:a8:6e:3e:35:25:21:06:c5:
                    52:d9:cf:a7:25:c6:0f:6a:1f:b1:bf:ea:75:ee:86:
                    f6:d7:ce:f9:2f:89:e9:88:00:e0:d3:23:ea:e3:87:
                    52:e6:89:52:c6:54:de:b5:6b:73:ba:ae:53:57:15:
                    41:42:11:42:c3:45:d9:52:54:a6:a6:1e:67:ac:dc:
                    e1:1e:5d:f9:c4:51:1b:76:c4:2e:c8:04:55:c7:da:
                    31:16:28:08:39:80:14:04:a4:91:df:41:79:c7:1d:
                    49:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:B5:D6:19:79:FD:79:5D:35:C5:83:D6:9B:D3:65:28:87:A5:0B:34
            X509v3 Authority Key Identifier:
                keyid:E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:93:bf:86:1e:79:15:80:b5:40:a9:2b:85:bd:df:74:76:88:
         fb:a0:b2:9a:00:68:5f:a2:d0:8a:4e:2d:59:25:f2:4e:a1:0d:
         aa:63:d1:9b:ac:77:8a:28:cc:3f:e5:42:96:22:33:0c:b3:86:
         86:3c:c3:6c:29:3e:9c:10:64:ad:23:c0:3c:70:19:77:af:13:
         ba:fd:61:5c:6a:cd:02:da:82:76:9c:20:a4:20:21:d8:9a:2f:
         58:98:3f:b7:d3:d8:3e:60:75:ea:62:bb:65:11:4f:1b:6b:e0:
         f3:89:18:49:db:7f:ff:80:63:17:2f:c7:23:d5:1c:2b:ab:e5:
         6f:98:ac:3f:97:3d:51:b2:a9:1c:94:73:d8:bc:fc:05:fd:a4:
         69:00:37:f8:ab:bb:07:35:71:10:8c:7a:c5:93:8f:09:d0:42:
         42:6a:74:d2:bc:d0:11:15:0d:ab:30:af:ea:6f:95:03:3c:4d:
         81:8d:cf:17:21:f7:17:cf:a5:d6:c9:39:1d:c6:d8:84:42:47:
         e8:19:5d:36:9b:64:dc:81:d5:25:f8:b9:8c:d5:33:6d:c4:09:
         cd:7b:90:a1:b0:f6:15:40:6d:eb:05:26:9b:66:fd:5f:6c:72:
         ed:93:bc:53:ab:d6:cc:f8:c8:e9:b6:25:ec:4f:59:4b:b0:fc:
         50:bf:86:65
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6+7PbCIEhy9F5t42UH+ilpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0M2VkZGM0NGJjNmY1MzQ0NTc2Y2Y1OWFmMDAxMzVjNmI2
MmMwMWQwHhcNMjYwNjEzMDMwMTAxWhcNMjYwNjE0MDMwMTAxWjAzMTEwLwYDVQQD
EygxMWI1ZDYxOTc5ZmQ3OTVkMzVjNTgzZDY5YmQzNjUyODg3YTUwYjM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBATNA3NqY2FD0GIaQBdtQrwwQ9N
wo1cvMMKIwxNrBcfqr7K4mDi7FLiLiods3aH0RLhBc3WCAKdehaiXYeUJx0jlaN/
c7635mxhYC9KksK1G/4qk6Flhh7XiCdJsx15ElyZJc0MnndLFkYHatalCPcuGUCJ
qptgSbe5i6+iRqd13X2n4Qpso9U7EaeE9HTQHpoY9l3N46wzTp4KqG4+NSUhBsVS
2c+nJcYPah+xv+p17ob21875L4npiADg0yPq44dS5olSxlTetWtzuq5TVxVBQhFC
w0XZUlSmph5nrNzhHl35xFEbdsQuyARVx9oxFigIOYAUBKSR30F5xx1JgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBG11hl5/XldNcWD1pvTZSiHpQs0MB8GA1UdIwQY
MBaAFOQ+3cRLxvU0RXbPWa8AE1xrYsAdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUQ3ZHhFdkc5VFJGZHM5WnJ3QVRYR3Rpd0IwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8yZGFhNzItMDMxNC00NmM1LWJlNWIt
OWE2OTMwNDI1OGEwLzEvNUQ3ZHhFdkc5VFJGZHM5WnJ3QVRYR3Rpd0IwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC8yZGFhNzItMDMxNC00NmM1LWJlNWItOWE2OTMwNDI1OGEw
LzEvNUQ3ZHhFdkc5VFJGZHM5WnJ3QVRYR3Rpd0IwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADpO/hh55
FYC1QKkrhb3fdHaI+6CymgBoX6LQik4tWSXyTqENqmPRm6x3iijMP+VCliIzDLOG
hjzDbCk+nBBkrSPAPHAZd68Tuv1hXGrNAtqCdpwgpCAh2JovWJg/t9PYPmB16mK7
ZRFPG2vg84kYSdt//4BjFy/HI9UcK6vlb5isP5c9UbKpHJRz2Lz8Bf2kaQA3+Ku7
BzVxEIx6xZOPCdBCQmp00rzQERUNqzCv6m+VAzxNgY3PFyH3F8+l1sk5HcbYhEJH
6BldNptk3IHVJfi5jNUzbcQJzXuQobD2FUBt6wUmm2b9X2xy7ZO8U6vWzPjI6bYl
7E9ZS7D8UL+GZQ==
-----END CERTIFICATE-----