Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.mft
File:                     97KiPZsF9XV53i8CRJtmYD4-Vzo.mft (raw, json)
Hash identifier:          +yTkdhNmN5Lpab+lBazhZPaU+0btHsmDjanRJhbgDlE=
Subject key identifier:   0D:01:B3:2A:78:1F:A2:5F:60:E8:5C:EB:60:FB:81:4A:88:E8:80:DB
Authority key identifier: F7:B2:A2:3D:9B:05:F5:75:79:DE:2F:02:44:9B:66:60:3E:3E:57:3A
Certificate issuer:       /CN=f7b2a23d9b05f57579de2f02449b66603e3e573a
Certificate serial:       019EBFC7F0E55BE6472E98E7520E9E762395
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/97KiPZsF9XV53i8CRJtmYD4-Vzo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.mft
Manifest number:          150D
Signing time:             Sat 13 Jun 2026 07:00:11 +0000
Manifest this update:     Sat 13 Jun 2026 07:00:11 +0000
Manifest next update:     Sun 14 Jun 2026 07:00:11 +0000
Files and hashes:         1: 97KiPZsF9XV53i8CRJtmYD4-Vzo.crl (hash: ICZZAOdkmrIn8vcd2I7TO3ZbD3kAlK3xGgGFukHlktQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/97KiPZsF9XV53i8CRJtmYD4-Vzo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:bf:c7:f0:e5:5b:e6:47:2e:98:e7:52:0e:9e:76:23:95
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f7b2a23d9b05f57579de2f02449b66603e3e573a
        Validity
            Not Before: Jun 13 07:00:11 2026 GMT
            Not After : Jun 14 07:00:11 2026 GMT
        Subject: CN=0d01b32a781fa25f60e85ceb60fb814a88e880db
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f7:72:bc:23:4e:5a:25:a9:16:e2:1f:94:5a:c8:
                    fa:8a:23:81:23:65:3b:ed:09:b4:24:64:4a:ee:42:
                    86:40:5f:58:da:39:e1:06:d7:07:bf:22:d1:c3:4b:
                    25:21:b5:34:68:1d:64:c0:84:81:57:51:4d:5d:7c:
                    6d:e9:12:6e:ab:0a:40:af:22:8f:7d:32:c9:c1:a6:
                    dd:a7:46:e5:9e:d5:64:27:c5:f3:69:1a:ad:e1:1b:
                    1f:af:51:5d:e0:74:25:4a:0c:74:00:0e:cc:75:ff:
                    51:b5:17:b5:bf:9f:27:a4:2c:a1:19:7b:1a:29:61:
                    f9:dc:e2:26:ad:67:28:df:27:95:53:38:b9:3f:47:
                    06:bd:1a:3a:56:41:2c:ff:08:b9:b9:27:16:29:46:
                    e5:23:75:78:2b:8d:44:3b:ae:c6:8d:9c:1b:11:9e:
                    46:79:aa:d7:d3:3d:7c:23:6c:e7:05:3b:1c:f8:75:
                    ca:b2:15:5f:ce:fc:b6:9f:a4:f8:ad:00:2b:f9:67:
                    29:13:90:45:d1:97:e8:f9:01:27:8f:f7:8b:00:08:
                    cb:fc:43:1e:7d:31:af:90:84:22:9c:15:73:4e:0d:
                    c3:38:84:78:4c:e1:ca:77:ee:ff:2a:46:37:46:a7:
                    ef:3f:04:3e:7e:00:64:45:24:07:bc:45:ab:39:19:
                    3e:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:01:B3:2A:78:1F:A2:5F:60:E8:5C:EB:60:FB:81:4A:88:E8:80:DB
            X509v3 Authority Key Identifier:
                keyid:F7:B2:A2:3D:9B:05:F5:75:79:DE:2F:02:44:9B:66:60:3E:3E:57:3A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/97KiPZsF9XV53i8CRJtmYD4-Vzo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/20/0a1b7f-dfd2-46f9-8313-5be6a759f318/1/97KiPZsF9XV53i8CRJtmYD4-Vzo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:44:54:a0:4c:d5:36:29:08:a5:ef:92:43:8a:b1:49:6f:d7:
         bf:f9:e9:ec:35:f4:69:4e:63:6f:c0:c9:ec:5e:15:32:c2:f7:
         50:c6:bb:26:d7:a4:54:97:ea:f8:40:db:02:1b:ae:7e:4f:d8:
         61:ec:aa:d1:df:5f:df:3c:0f:af:80:ba:48:d0:2a:b1:c6:0e:
         4f:46:53:a6:e0:ff:7a:69:68:2b:b1:77:05:2a:4d:bc:21:ea:
         94:84:98:af:29:4c:d3:df:a0:6b:d7:f5:75:b0:e1:ad:83:c4:
         b5:36:e0:ba:40:54:8e:d1:f6:b4:6a:a5:6d:5b:b1:20:e2:ba:
         f5:ea:80:58:a2:ce:27:36:6c:ce:db:31:88:29:3d:69:cd:34:
         15:57:27:12:50:8a:55:45:49:8b:fd:d9:2f:cb:49:51:7c:00:
         d8:0d:d0:e2:db:0d:7e:f7:bb:03:b0:05:b3:da:83:a7:2a:13:
         33:05:59:e1:42:63:f4:41:f4:6e:55:6d:28:fb:fd:74:4c:7b:
         7c:4a:d3:dc:80:c0:06:7c:e5:8f:e4:f5:d8:58:d5:f8:28:7c:
         62:2f:06:29:91:7f:3d:be:2f:6d:44:3a:e5:a3:c5:30:ef:3c:
         a8:c7:1f:50:07:45:61:16:e9:b9:b7:8b:31:71:23:21:5c:95:
         6b:7b:31:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6/x/DlW+ZHLpjnUg6ediOVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3YjJhMjNkOWIwNWY1NzU3OWRlMmYwMjQ0OWI2NjYwM2Uz
ZTU3M2EwHhcNMjYwNjEzMDcwMDExWhcNMjYwNjE0MDcwMDExWjAzMTEwLwYDVQQD
EygwZDAxYjMyYTc4MWZhMjVmNjBlODVjZWI2MGZiODE0YTg4ZTg4MGRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA93K8I05aJakW4h+UWsj6iiOBI2U7
7Qm0JGRK7kKGQF9Y2jnhBtcHvyLRw0slIbU0aB1kwISBV1FNXXxt6RJuqwpAryKP
fTLJwabdp0blntVkJ8XzaRqt4Rsfr1Fd4HQlSgx0AA7Mdf9RtRe1v58npCyhGXsa
KWH53OImrWco3yeVUzi5P0cGvRo6VkEs/wi5uScWKUblI3V4K41EO67GjZwbEZ5G
earX0z18I2znBTsc+HXKshVfzvy2n6T4rQAr+WcpE5BF0Zfo+QEnj/eLAAjL/EMe
fTGvkIQinBVzTg3DOIR4TOHKd+7/KkY3RqfvPwQ+fgBkRSQHvEWrORk+RQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA0Bsyp4H6JfYOhc62D7gUqI6IDbMB8GA1UdIwQY
MBaAFPeyoj2bBfV1ed4vAkSbZmA+Plc6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOTdLaVBac0Y5WFY1M2k4Q1JKdG1ZRDQtVnpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8wYTFiN2YtZGZkMi00NmY5LTgzMTMt
NWJlNmE3NTlmMzE4LzEvOTdLaVBac0Y5WFY1M2k4Q1JKdG1ZRDQtVnpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC8wYTFiN2YtZGZkMi00NmY5LTgzMTMtNWJlNmE3NTlmMzE4
LzEvOTdLaVBac0Y5WFY1M2k4Q1JKdG1ZRDQtVnpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARURUoEzV
NikIpe+SQ4qxSW/Xv/np7DX0aU5jb8DJ7F4VMsL3UMa7JtekVJfq+EDbAhuufk/Y
Yeyq0d9f3zwPr4C6SNAqscYOT0ZTpuD/emloK7F3BSpNvCHqlISYrylM09+ga9f1
dbDhrYPEtTbgukBUjtH2tGqlbVuxIOK69eqAWKLOJzZsztsxiCk9ac00FVcnElCK
VUVJi/3ZL8tJUXwA2A3Q4tsNfve7A7AFs9qDpyoTMwVZ4UJj9EH0blVtKPv9dEx7
fErT3IDABnzlj+T12FjV+Ch8Yi8GKZF/Pb4vbUQ65aPFMO88qMcfUAdFYRbpubeL
MXEjIVyVa3sxTA==
-----END CERTIFICATE-----