Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft
File:                     7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft (raw, json)
Hash identifier:          9XUAf6kqJGdIuS3MrnIz9qOAloeSUxNndmKNUCPJGUw=
Subject key identifier:   49:A3:6B:DB:5F:04:D7:C9:39:57:73:85:48:D8:75:E3:B2:37:D4:3B
Authority key identifier: EE:68:B6:64:CC:D5:0C:A7:67:D4:6F:FB:34:F5:3A:06:D1:20:B5:23
Certificate issuer:       /CN=ee68b664ccd50ca767d46ffb34f53a06d120b523
Certificate serial:       019EBF5AE86965486172DBA3EA51CFD770A7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft
Manifest number:          0D80
Signing time:             Sat 13 Jun 2026 05:01:06 +0000
Manifest this update:     Sat 13 Jun 2026 05:01:06 +0000
Manifest next update:     Sun 14 Jun 2026 05:01:06 +0000
Files and hashes:         1: 7mi2ZMzVDKdn1G_7NPU6BtEgtSM.crl (hash: Qa7CaIiLeKYw9Yr1vQ7q9KtoQSuCsJsGeFeDpRjbaZ0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 05:01:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:bf:5a:e8:69:65:48:61:72:db:a3:ea:51:cf:d7:70:a7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ee68b664ccd50ca767d46ffb34f53a06d120b523
        Validity
            Not Before: Jun 13 05:01:06 2026 GMT
            Not After : Jun 14 05:01:06 2026 GMT
        Subject: CN=49a36bdb5f04d7c93957738548d875e3b237d43b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:1e:ca:d1:66:29:dd:7d:f6:91:d5:aa:a0:fe:
                    ed:b3:ed:de:33:d6:40:18:03:46:b9:9a:87:35:0d:
                    45:3c:df:83:87:55:01:ff:5c:d9:10:d1:ab:2a:bc:
                    d0:98:0d:05:4a:cf:01:53:4c:63:0e:a7:1e:7f:54:
                    10:2a:91:ab:a8:c6:17:56:80:09:d0:17:3d:6f:5f:
                    da:75:dd:f3:34:9f:34:b9:22:9e:48:af:83:34:24:
                    73:2e:a1:d5:4b:61:04:2f:27:d8:95:d3:81:c4:06:
                    56:79:bc:f1:72:6c:b9:63:0c:26:a8:99:d6:14:27:
                    b2:64:20:fc:5a:a9:55:1b:5e:b6:bd:a5:d6:9c:a0:
                    6a:e6:6a:4b:d7:be:84:ee:84:11:51:8c:b1:34:8b:
                    8b:0c:1b:fb:29:95:31:40:11:04:37:90:12:91:db:
                    ae:3c:35:a2:5d:81:56:bf:db:c5:1a:a6:08:24:3d:
                    aa:c7:73:6a:c1:61:31:62:35:c2:cf:52:aa:70:e5:
                    4a:64:e0:c4:5d:57:c8:e1:7a:71:62:67:d6:34:4a:
                    66:c8:bf:a7:d4:94:eb:ea:52:07:74:66:17:21:11:
                    26:fd:69:76:17:e9:6b:42:14:98:95:8a:d8:8f:19:
                    4a:10:76:3c:00:07:28:bf:d3:41:8e:55:0a:4b:6b:
                    9c:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:A3:6B:DB:5F:04:D7:C9:39:57:73:85:48:D8:75:E3:B2:37:D4:3B
            X509v3 Authority Key Identifier:
                keyid:EE:68:B6:64:CC:D5:0C:A7:67:D4:6F:FB:34:F5:3A:06:D1:20:B5:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a5:bb:7d:9a:3f:f5:44:c8:1c:31:a5:5a:c5:21:aa:9d:d5:65:
         8e:77:47:e9:22:af:68:3c:0a:4f:da:0d:3b:2d:71:65:39:fd:
         b6:b3:ad:d5:61:dd:44:d8:4e:37:e4:2e:ae:24:a6:18:fb:6c:
         7c:3d:1b:86:03:eb:63:9e:e8:00:17:0f:9e:5b:42:20:7e:7e:
         62:ef:f2:86:42:60:5d:06:a4:e3:88:37:13:c0:3b:e7:46:19:
         a1:86:ad:f0:6c:1e:48:e3:00:62:76:00:56:c8:00:18:5a:2b:
         68:fa:29:91:af:a8:aa:2c:71:6c:f6:f0:7b:8a:53:7d:c6:87:
         82:ac:d1:db:91:ff:92:ce:43:8b:c4:04:b6:37:54:0d:9e:88:
         27:fd:ea:9c:a2:a6:c6:46:c6:0d:b1:5a:32:72:b2:d0:65:28:
         50:c7:6d:c6:59:03:24:8c:89:da:7f:c4:ba:7d:d2:23:63:96:
         cf:b7:23:1d:3f:3a:69:55:2e:46:03:67:e9:4c:fa:8b:15:f6:
         37:4f:51:ba:5c:0f:ca:3e:4d:54:b0:d0:8f:69:bd:e0:cf:a1:
         35:00:59:65:1d:d3:34:ba:3a:1f:18:e4:d1:eb:18:2a:b3:75:
         46:7a:68:b8:34:90:7e:4f:c3:80:7d:3a:a4:3b:5f:96:a9:68:
         28:a1:50:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----