Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
File:                     2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft (raw, json)
Hash identifier:          8uHdc/LyeRTk8Xk7idfBVP7b0NpcCTZ4etXiqcogbPg=
Subject key identifier:   9A:9E:48:DD:52:EE:BE:38:85:7A:EE:42:FA:3E:04:69:51:45:E8:BB
Authority key identifier: D9:93:66:35:D1:2D:6C:E2:32:E1:12:9C:8F:18:CE:DB:83:6E:CD:D7
Certificate issuer:       /CN=d9936635d12d6ce232e1129c8f18cedb836ecdd7
Certificate serial:       019EC06E161377FF55F6376994341F6F8094
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
Manifest number:          103B
Signing time:             Sat 13 Jun 2026 10:01:40 +0000
Manifest this update:     Sat 13 Jun 2026 10:01:40 +0000
Manifest next update:     Sun 14 Jun 2026 10:01:40 +0000
Files and hashes:         1: 2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl (hash: LwlSON52jlt18I+fA8t+LbTNVMpYz5BVtclcb+bsYwM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 08:43:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c0:6e:16:13:77:ff:55:f6:37:69:94:34:1f:6f:80:94
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d9936635d12d6ce232e1129c8f18cedb836ecdd7
        Validity
            Not Before: Jun 13 10:01:40 2026 GMT
            Not After : Jun 14 10:01:40 2026 GMT
        Subject: CN=9a9e48dd52eebe38857aee42fa3e04695145e8bb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:d9:49:a9:d0:cd:84:fa:45:1a:ef:ee:03:8c:
                    41:0e:ee:78:73:a3:66:a8:cc:ae:a4:2a:79:43:17:
                    75:48:49:88:33:56:8d:ea:6a:3d:d1:83:95:d2:cf:
                    00:61:eb:f1:b1:0c:c2:fc:fd:e8:29:22:de:f6:fc:
                    9e:b7:28:81:84:92:6c:73:ba:e7:22:2c:6f:55:39:
                    e4:07:60:a5:43:b1:79:04:0c:07:14:ed:3d:e7:ba:
                    e2:c3:93:ee:ca:47:93:eb:bd:6d:ee:88:b9:02:83:
                    17:3a:7c:90:ed:76:99:fc:cf:17:46:0c:f7:2a:92:
                    1d:6b:fa:e0:34:67:72:b3:87:44:09:3e:17:62:49:
                    41:01:12:43:38:86:cf:cc:fe:a0:48:d7:fa:ff:24:
                    3b:2c:ed:6d:f8:73:30:3d:fd:43:07:38:7b:c5:ab:
                    dc:e9:9d:4b:aa:e1:f9:99:02:54:34:fd:58:0f:8e:
                    f3:d0:22:b1:c8:1b:6c:38:1b:cc:2c:bb:5b:86:d3:
                    cb:1d:b5:fb:f9:ad:5c:f6:84:24:01:23:3a:cd:48:
                    ad:7b:df:a6:9e:28:22:35:fc:73:09:c7:50:83:c5:
                    83:64:08:cc:ea:f4:bc:dc:d7:66:b3:14:1b:2d:bd:
                    9c:c8:7a:99:e4:fa:f4:bb:65:13:38:df:49:cd:d9:
                    5d:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9A:9E:48:DD:52:EE:BE:38:85:7A:EE:42:FA:3E:04:69:51:45:E8:BB
            X509v3 Authority Key Identifier:
                keyid:D9:93:66:35:D1:2D:6C:E2:32:E1:12:9C:8F:18:CE:DB:83:6E:CD:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2a:b4:d9:6f:ad:91:4f:5e:84:79:88:65:5d:55:c1:86:80:ef:
         d4:d2:d5:a7:54:ce:84:34:5b:2b:36:65:7e:18:d3:09:f5:67:
         d2:22:c0:3a:62:e8:d8:5d:d1:d8:df:99:8d:a5:15:33:7e:08:
         a3:29:e6:45:a1:a1:7b:15:75:02:71:51:1b:e4:86:33:2e:9a:
         6c:b5:00:53:f7:85:86:fe:14:f6:64:ea:01:81:61:5d:43:d9:
         fe:0e:45:29:0f:61:f9:bd:3e:79:e1:a4:a3:71:53:7b:f9:7b:
         a0:27:46:ac:fc:62:ad:4f:28:a7:56:25:0f:2c:39:18:51:ae:
         0b:d6:fa:97:9f:d1:03:30:2f:fa:88:1c:83:60:cd:a2:3a:9a:
         bb:75:8f:e6:2d:4a:16:70:0d:9b:ec:ad:80:53:60:c4:46:1d:
         29:81:ca:93:24:2c:28:35:c2:7a:55:1b:e6:f6:42:49:01:79:
         a6:68:f2:22:a7:30:18:8b:4d:81:9b:db:cc:a7:d7:47:b2:cc:
         7d:03:59:6e:04:56:ee:a1:b2:fd:81:c8:38:a6:d4:70:bb:0a:
         5e:d0:13:a3:0a:98:04:be:93:84:14:95:35:4f:2d:c8:68:b2:
         d5:b4:f1:5d:a0:12:b1:48:c2:3c:a4:c6:ea:0c:fc:70:a6:08:
         64:8d:ba:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----