Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
File:                     0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft (raw, json)
Hash identifier:          4VKrnZoKWLwUjYqx66lwfq+iFiiTtjOp+N94y18TTFA=
Subject key identifier:   32:E1:6C:46:47:14:BE:31:A8:16:2B:13:4A:21:2F:86:C2:CB:7D:D7
Authority key identifier: D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0
Certificate issuer:       /CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
Certificate serial:       019EBF5AC74B3B9A2FD0B25D61F78DAAFCEF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
Manifest number:          0EDC
Signing time:             Sat 13 Jun 2026 05:00:57 +0000
Manifest this update:     Sat 13 Jun 2026 05:00:57 +0000
Manifest next update:     Sun 14 Jun 2026 05:00:57 +0000
Files and hashes:         1: 0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl (hash: asobSKIft5X3K7QaOwcsAP0Mba1QwBqiuNxQuI+XW5k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:bf:5a:c7:4b:3b:9a:2f:d0:b2:5d:61:f7:8d:aa:fc:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d3098e5e20d78f94e696c1372b5623ffa71d94d0
        Validity
            Not Before: Jun 13 05:00:57 2026 GMT
            Not After : Jun 14 05:00:57 2026 GMT
        Subject: CN=32e16c464714be31a8162b134a212f86c2cb7dd7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:3d:8b:29:c8:02:48:60:9d:15:31:d0:5f:4c:
                    7c:22:49:b6:9f:3a:84:64:12:76:9c:69:32:c5:f5:
                    c3:c2:c3:35:15:22:14:b8:f3:3f:b5:38:cd:05:58:
                    cf:0b:78:c8:ae:d4:73:3c:07:4e:98:ef:f8:68:68:
                    84:8b:93:de:de:f1:28:45:63:a5:0b:82:1c:81:e2:
                    d7:94:f5:35:ab:e1:06:7c:66:89:d1:4b:98:18:61:
                    de:1f:92:e6:67:f2:31:18:a0:fb:23:9d:1a:a1:fb:
                    1b:61:11:c5:12:7f:de:82:80:e2:00:2d:83:02:7f:
                    ca:17:5f:b2:4c:f0:4a:21:85:68:49:97:f6:4c:54:
                    a9:03:69:04:e7:93:cd:08:43:66:b9:ef:2a:9d:c5:
                    de:3e:fc:05:a9:f4:0c:2f:fe:95:bb:db:23:ce:c0:
                    88:7c:98:91:23:e5:23:b8:63:d9:d2:a9:ca:8b:65:
                    e8:21:16:32:d1:9a:ec:ae:28:bf:ba:f6:3e:f2:09:
                    a2:d2:a5:2d:27:96:7f:94:24:fc:5b:d4:f9:d7:ad:
                    ff:d9:d8:82:c9:14:77:f0:d9:d5:41:dd:ec:85:04:
                    31:cd:ca:90:5c:6e:11:8d:39:40:05:01:6b:65:1f:
                    ad:5d:3b:1b:7c:ce:f8:9b:1f:02:90:e6:e4:95:6a:
                    4f:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                32:E1:6C:46:47:14:BE:31:A8:16:2B:13:4A:21:2F:86:C2:CB:7D:D7
            X509v3 Authority Key Identifier:
                keyid:D3:09:8E:5E:20:D7:8F:94:E6:96:C1:37:2B:56:23:FF:A7:1D:94:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/5361cc-b04d-4465-938d-617a26327e98/1/0wmOXiDXj5TmlsE3K1Yj_6cdlNA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:61:c8:a9:b6:62:13:3e:fc:64:00:03:86:22:27:6c:67:35:
         65:54:19:07:ef:89:a8:a8:7a:0c:1e:17:42:dc:5d:e1:32:fa:
         53:58:b8:7f:a9:c3:e5:2a:4a:cd:f4:e9:d8:3b:51:f0:84:2a:
         5f:77:3c:8a:d0:35:59:82:06:ae:58:5e:38:22:45:7a:4c:ca:
         95:95:32:4e:33:a0:8f:f8:72:3a:99:1b:10:69:f3:69:79:84:
         e1:97:44:f3:d8:38:fd:2f:38:f2:9d:a6:1c:5a:24:26:09:7e:
         1a:4a:cf:42:03:83:54:ee:03:d0:fe:5c:d1:55:15:7c:00:5c:
         fb:5f:fb:5f:b5:94:f4:c4:f0:5a:de:b6:c5:41:8e:53:0d:b9:
         e0:b8:07:7f:b0:d7:a8:f0:38:4b:94:eb:82:40:db:e5:6e:b1:
         b0:c8:3e:c9:70:85:1a:7b:c1:60:c6:fb:42:0c:47:2c:72:bf:
         e9:db:62:96:5c:c0:4f:3f:76:58:5a:78:98:cf:83:9a:ed:cb:
         4b:b7:da:8d:49:75:c2:4b:de:6d:cb:43:d1:b9:5a:0a:2f:0c:
         af:c2:a6:e4:8e:0f:3c:71:ce:d7:47:08:6c:cf:d4:3a:55:d7:
         da:09:cb:89:24:62:eb:87:c6:83:b0:2f:5b:9c:82:fe:c6:9d:
         69:65:94:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6/WsdLO5ov0LJdYfeNqvzvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzMDk4ZTVlMjBkNzhmOTRlNjk2YzEzNzJiNTYyM2ZmYTcx
ZDk0ZDAwHhcNMjYwNjEzMDUwMDU3WhcNMjYwNjE0MDUwMDU3WjAzMTEwLwYDVQQD
EygzMmUxNmM0NjQ3MTRiZTMxYTgxNjJiMTM0YTIxMmY4NmMyY2I3ZGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyz2LKcgCSGCdFTHQX0x8Ikm2nzqE
ZBJ2nGkyxfXDwsM1FSIUuPM/tTjNBVjPC3jIrtRzPAdOmO/4aGiEi5Pe3vEoRWOl
C4IcgeLXlPU1q+EGfGaJ0UuYGGHeH5LmZ/IxGKD7I50aofsbYRHFEn/egoDiAC2D
An/KF1+yTPBKIYVoSZf2TFSpA2kE55PNCENmue8qncXePvwFqfQML/6Vu9sjzsCI
fJiRI+UjuGPZ0qnKi2XoIRYy0Zrsrii/uvY+8gmi0qUtJ5Z/lCT8W9T5163/2diC
yRR38NnVQd3shQQxzcqQXG4RjTlABQFrZR+tXTsbfM74mx8CkObklWpP7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDLhbEZHFL4xqBYrE0ohL4bCy33XMB8GA1UdIwQY
MBaAFNMJjl4g14+U5pbBNytWI/+nHZTQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHdtT1hpRFhqNVRtbHNFM0sxWWpfNmNkbE5BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC81MzYxY2MtYjA0ZC00NDY1LTkzOGQt
NjE3YTI2MzI3ZTk4LzEvMHdtT1hpRFhqNVRtbHNFM0sxWWpfNmNkbE5BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC81MzYxY2MtYjA0ZC00NDY1LTkzOGQtNjE3YTI2MzI3ZTk4
LzEvMHdtT1hpRFhqNVRtbHNFM0sxWWpfNmNkbE5BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMWHIqbZi
Ez78ZAADhiInbGc1ZVQZB++JqKh6DB4XQtxd4TL6U1i4f6nD5SpKzfTp2DtR8IQq
X3c8itA1WYIGrlheOCJFekzKlZUyTjOgj/hyOpkbEGnzaXmE4ZdE89g4/S848p2m
HFokJgl+GkrPQgODVO4D0P5c0VUVfABc+1/7X7WU9MTwWt62xUGOUw254LgHf7DX
qPA4S5TrgkDb5W6xsMg+yXCFGnvBYMb7QgxHLHK/6dtillzATz92WFp4mM+Dmu3L
S7fajUl1wkvebctD0blaCi8Mr8Km5I4PPHHO10cIbM/UOlXX2gnLiSRi64fGg7Av
W5yC/sadaWWUBw==
-----END CERTIFICATE-----