Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
File:                     2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft (raw, json)
Hash identifier:          bTYRtDHRfA7uAkc087TMQuuKwMsD7GD+klpAXkclwsc=
Subject key identifier:   1D:A7:C0:97:E0:39:68:AF:59:30:51:6B:61:24:79:FF:5E:4A:A1:E4
Authority key identifier: DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C
Certificate issuer:       /CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
Certificate serial:       019EBF5A9F683EE3F5F5F8B15B7D33BCDE42
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
Manifest number:          079B
Signing time:             Sat 13 Jun 2026 05:00:47 +0000
Manifest this update:     Sat 13 Jun 2026 05:00:47 +0000
Manifest next update:     Sun 14 Jun 2026 05:00:47 +0000
Files and hashes:         1: 2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl (hash: QRMPpg/rVr7q3jNNYoCqBYKp2lX1LR+yq3Rt80ds22k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:bf:5a:9f:68:3e:e3:f5:f5:f8:b1:5b:7d:33:bc:de:42
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=daa67c58b4a6fe212fc20fb756949addc1a9a62c
        Validity
            Not Before: Jun 13 05:00:47 2026 GMT
            Not After : Jun 14 05:00:47 2026 GMT
        Subject: CN=1da7c097e03968af5930516b612479ff5e4aa1e4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:46:5e:15:ce:02:e0:ee:b2:7a:41:86:f3:af:
                    78:33:fd:cd:ff:90:9e:ac:81:96:7c:bf:bf:eb:81:
                    13:9f:76:61:28:a0:d0:09:41:97:35:0e:bc:61:df:
                    12:e6:ca:2d:e7:17:5a:d1:b8:85:d8:c8:23:2d:97:
                    b4:b0:30:19:71:54:2a:2f:4c:94:ca:bf:32:7b:d8:
                    d5:e5:46:b4:cd:a9:4c:fd:4f:65:5a:94:02:ae:fc:
                    7e:88:7d:bc:15:8d:57:0a:1a:41:29:5b:82:e5:ef:
                    b5:21:de:06:33:07:69:76:fe:07:4f:a3:d5:75:e4:
                    fd:f6:0c:f2:bc:b8:a7:d1:1a:ef:a0:12:39:41:03:
                    bc:68:4f:e0:d1:a7:bd:b0:ab:ab:3a:63:d2:7d:78:
                    a4:19:ab:79:51:ad:7b:1f:9e:10:3c:9c:cf:32:c2:
                    6a:40:9b:6b:21:cb:7a:56:c9:42:4d:d9:e8:8c:ff:
                    c9:12:da:19:d3:39:52:29:2f:99:01:13:06:ad:e7:
                    ed:5f:e4:2d:a1:a2:48:4b:8e:e8:da:fe:7c:4b:9d:
                    56:1b:b8:ce:3d:18:ed:d7:96:19:77:2d:ee:84:d3:
                    8b:2f:2e:96:18:91:af:68:55:e0:c9:f8:36:07:f5:
                    95:6c:d5:20:25:73:37:25:68:b6:13:20:39:08:96:
                    c9:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:A7:C0:97:E0:39:68:AF:59:30:51:6B:61:24:79:FF:5E:4A:A1:E4
            X509v3 Authority Key Identifier:
                keyid:DA:A6:7C:58:B4:A6:FE:21:2F:C2:0F:B7:56:94:9A:DD:C1:A9:A6:2C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2qZ8WLSm_iEvwg-3VpSa3cGppiw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/f295ce-826d-4f54-970f-50f34f435f03/1/2qZ8WLSm_iEvwg-3VpSa3cGppiw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:70:30:22:c4:32:e1:97:92:97:d6:d6:f5:e2:51:b6:be:ad:
         7b:1e:d0:12:7c:22:7a:b8:97:c2:58:4a:75:f2:d2:3a:b6:fd:
         20:ba:f8:bf:ca:4d:fc:40:c2:f5:ef:62:65:aa:9b:f4:09:7d:
         68:03:8e:51:34:3e:cc:02:e5:bf:56:37:8e:74:f9:91:b7:3c:
         69:e2:9b:bc:31:7c:4b:10:30:6c:ba:84:98:4d:ca:d2:ca:53:
         2b:f7:3b:03:33:7d:f5:67:9e:4e:e0:33:e7:0a:67:86:93:e1:
         63:1e:2b:a5:e1:dc:05:26:e4:d7:da:50:72:4c:af:a9:e4:92:
         2a:1c:26:81:26:8d:4e:83:d8:aa:62:94:a5:45:91:5c:6d:29:
         0e:76:e5:e6:57:86:89:10:50:97:b4:87:44:aa:ec:60:d4:e8:
         b0:1f:17:c3:96:1b:bd:8f:f2:ef:51:ea:7b:4f:13:6c:8f:67:
         46:17:78:a7:bf:5a:58:a1:0d:65:4b:42:77:e3:6b:6c:7f:4e:
         e9:4b:3c:36:be:60:ce:68:82:a3:22:63:46:0a:f8:8c:19:59:
         cf:66:ac:ae:24:10:42:9b:91:68:89:24:6d:b3:95:03:37:46:
         a0:ac:b6:f6:c4:5e:fd:92:cb:eb:b5:ab:84:6c:f9:65:06:95:
         01:ca:f0:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6/Wp9oPuP19fixW30zvN5CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhYTY3YzU4YjRhNmZlMjEyZmMyMGZiNzU2OTQ5YWRkYzFh
OWE2MmMwHhcNMjYwNjEzMDUwMDQ3WhcNMjYwNjE0MDUwMDQ3WjAzMTEwLwYDVQQD
EygxZGE3YzA5N2UwMzk2OGFmNTkzMDUxNmI2MTI0NzlmZjVlNGFhMWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApEZeFc4C4O6yekGG8694M/3N/5Ce
rIGWfL+/64ETn3ZhKKDQCUGXNQ68Yd8S5sot5xda0biF2MgjLZe0sDAZcVQqL0yU
yr8ye9jV5Ua0zalM/U9lWpQCrvx+iH28FY1XChpBKVuC5e+1Id4GMwdpdv4HT6PV
deT99gzyvLin0RrvoBI5QQO8aE/g0ae9sKurOmPSfXikGat5Ua17H54QPJzPMsJq
QJtrIct6VslCTdnojP/JEtoZ0zlSKS+ZARMGreftX+QtoaJIS47o2v58S51WG7jO
PRjt15YZdy3uhNOLLy6WGJGvaFXgyfg2B/WVbNUgJXM3JWi2EyA5CJbJ3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB2nwJfgOWivWTBRa2Ekef9eSqHkMB8GA1UdIwQY
MBaAFNqmfFi0pv4hL8IPt1aUmt3BqaYsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMnFaOFdMU21faUV2d2ctM1ZwU2EzY0dwcGl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9mMjk1Y2UtODI2ZC00ZjU0LTk3MGYt
NTBmMzRmNDM1ZjAzLzEvMnFaOFdMU21faUV2d2ctM1ZwU2EzY0dwcGl3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9mMjk1Y2UtODI2ZC00ZjU0LTk3MGYtNTBmMzRmNDM1ZjAz
LzEvMnFaOFdMU21faUV2d2ctM1ZwU2EzY0dwcGl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHHAwIsQy
4ZeSl9bW9eJRtr6tex7QEnwieriXwlhKdfLSOrb9ILr4v8pN/EDC9e9iZaqb9Al9
aAOOUTQ+zALlv1Y3jnT5kbc8aeKbvDF8SxAwbLqEmE3K0spTK/c7AzN99WeeTuAz
5wpnhpPhYx4rpeHcBSbk19pQckyvqeSSKhwmgSaNToPYqmKUpUWRXG0pDnbl5leG
iRBQl7SHRKrsYNTosB8Xw5YbvY/y71Hqe08TbI9nRhd4p79aWKENZUtCd+NrbH9O
6Us8Nr5gzmiCoyJjRgr4jBlZz2asriQQQpuRaIkkbbOVAzdGoKy29sRe/ZLL67Wr
hGz5ZQaVAcrwaw==
-----END CERTIFICATE-----