Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/54f8f6-b900-4405-927c-89c9892c14f0/1/BOIiiGeO__Ff6nne8kxgZ84kqic.mft
File:                     BOIiiGeO__Ff6nne8kxgZ84kqic.mft (raw, json)
Hash identifier:          BeZoj70fA4/IS8G0QnZW2JVsZmeS1JIQxBzxNXGu1qQ=
Subject key identifier:   C4:49:B9:1E:8C:6C:8E:5E:CB:3B:F2:06:4E:74:A2:3F:5D:31:2E:B7
Authority key identifier: 04:E2:22:88:67:8E:FF:F1:5F:EA:79:DE:F2:4C:60:67:CE:24:AA:27
Certificate issuer:       /CN=04e22288678efff15fea79def24c6067ce24aa27
Certificate serial:       019EC06D233F575D4A117FEDB85CA57FD0E2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BOIiiGeO__Ff6nne8kxgZ84kqic.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0b/54f8f6-b900-4405-927c-89c9892c14f0/1/BOIiiGeO__Ff6nne8kxgZ84kqic.mft
Manifest number:          1956
Signing time:             Sat 13 Jun 2026 10:00:38 +0000
Manifest this update:     Sat 13 Jun 2026 10:00:38 +0000
Manifest next update:     Sun 14 Jun 2026 10:00:38 +0000
Files and hashes:         1: BOIiiGeO__Ff6nne8kxgZ84kqic.crl (hash: HrguLpajxIwGYkSNCxs+OXP9vtoMVO8v7dd1bzF5cpM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0b/54f8f6-b900-4405-927c-89c9892c14f0/1/BOIiiGeO__Ff6nne8kxgZ84kqic.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0b/54f8f6-b900-4405-927c-89c9892c14f0/1/BOIiiGeO__Ff6nne8kxgZ84kqic.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BOIiiGeO__Ff6nne8kxgZ84kqic.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 10:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c0:6d:23:3f:57:5d:4a:11:7f:ed:b8:5c:a5:7f:d0:e2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=04e22288678efff15fea79def24c6067ce24aa27
        Validity
            Not Before: Jun 13 10:00:38 2026 GMT
            Not After : Jun 14 10:00:38 2026 GMT
        Subject: CN=c449b91e8c6c8e5ecb3bf2064e74a23f5d312eb7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:e9:37:03:ae:d4:4e:01:aa:6b:ab:94:53:c5:
                    6a:f6:23:af:eb:76:2e:c9:bc:fd:04:04:a6:57:89:
                    f4:ff:60:b6:23:cb:1e:53:f9:fc:f7:fd:80:8c:e0:
                    1d:77:c1:73:d8:19:fb:a5:45:d3:48:c7:7e:85:e0:
                    67:2c:c6:98:f0:b8:85:84:ad:a9:7e:d7:75:ac:b9:
                    d4:f5:f4:35:00:e1:4e:6a:1c:d7:13:72:00:41:b4:
                    52:49:a6:e0:9b:30:88:00:9d:01:fb:69:b4:ff:60:
                    a8:fb:68:df:83:3c:ad:90:4f:35:0b:d5:d3:6c:19:
                    9c:c1:24:8a:22:86:5e:b4:09:07:20:34:b7:95:f3:
                    7f:ed:83:f6:01:b2:92:90:74:b2:f4:4f:7a:6b:6a:
                    ec:79:62:c8:a5:a3:a2:88:8b:ca:b0:61:6a:e3:42:
                    7b:73:e2:43:6f:37:45:14:78:36:99:9d:87:89:89:
                    61:ad:ca:0c:fd:5e:e0:0c:db:90:f9:fe:c5:5c:2c:
                    b0:e9:29:51:81:2e:ac:1b:18:69:c5:fc:cd:c0:39:
                    fe:3f:6c:d0:5e:4a:70:27:c3:ad:dd:51:ad:8d:24:
                    15:07:fa:c9:79:c3:de:e5:89:f0:10:cc:96:28:a0:
                    82:27:1f:b4:fe:c3:5d:7b:1e:37:33:d2:37:61:05:
                    3a:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:49:B9:1E:8C:6C:8E:5E:CB:3B:F2:06:4E:74:A2:3F:5D:31:2E:B7
            X509v3 Authority Key Identifier:
                keyid:04:E2:22:88:67:8E:FF:F1:5F:EA:79:DE:F2:4C:60:67:CE:24:AA:27

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOIiiGeO__Ff6nne8kxgZ84kqic.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/54f8f6-b900-4405-927c-89c9892c14f0/1/BOIiiGeO__Ff6nne8kxgZ84kqic.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/54f8f6-b900-4405-927c-89c9892c14f0/1/BOIiiGeO__Ff6nne8kxgZ84kqic.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:c4:f8:26:2a:c6:e3:15:ba:f4:9d:9b:92:60:0d:8c:ed:b8:
         d3:86:c3:2a:de:a8:e9:74:bf:6f:1f:2f:c7:fa:f1:b2:c8:36:
         35:a3:e1:6c:40:fe:97:fb:7f:04:58:a5:03:a8:72:97:78:4b:
         f1:4f:ab:09:de:73:18:3d:48:28:6e:bc:17:bb:d3:ee:b5:bf:
         f2:19:4a:b6:14:db:25:b0:42:2b:12:7a:b0:0b:09:62:aa:ab:
         fd:02:81:d8:0c:36:cd:67:33:09:db:b1:81:d9:52:75:4a:4b:
         c6:92:af:82:79:37:42:f6:f8:5f:f2:ee:05:c0:00:37:85:e4:
         63:3d:8f:6d:a9:f6:3d:6e:b7:47:6c:0f:7b:4b:a3:ec:da:0f:
         f6:90:71:66:2a:ff:92:cf:5c:29:aa:4b:59:b0:a5:73:dc:5c:
         48:de:aa:a3:77:80:e3:7b:9b:1c:62:7c:81:0c:56:12:86:74:
         45:4f:66:4e:6e:63:78:6c:7d:24:9a:81:a2:b2:3d:1b:db:39:
         d6:b1:9c:24:e4:db:6b:95:af:78:52:86:ac:52:b9:7c:a6:74:
         c4:e7:d4:0d:a7:aa:d5:25:d1:3f:db:d0:17:e7:28:da:fc:46:
         29:e3:cf:45:ba:9e:4d:c2:fa:1a:15:a9:fe:2b:f3:21:ad:d4:
         ad:ea:bd:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----