Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/cea161-cb5c-4e41-b836-d80077e12b5d/1/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.mft
File:                     D0nEmnXPbiSMm1HHBU2y-Nnc7cs.mft (raw, json)
Hash identifier:          hvpuYmbUhlIElJztWJp66IC9joLWtPRpnU8/+kFlFEk=
Subject key identifier:   1E:5B:2F:58:78:42:8C:42:6B:BE:9A:D7:AB:88:30:D9:2D:55:D5:DC
Authority key identifier: 0F:49:C4:9A:75:CF:6E:24:8C:9B:51:C7:05:4D:B2:F8:D9:DC:ED:CB
Certificate issuer:       /CN=0f49c49a75cf6e248c9b51c7054db2f8d9dcedcb
Certificate serial:       019EBE47E6547FB76F5706A56D50FF7C4D57
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/25/cea161-cb5c-4e41-b836-d80077e12b5d/1/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.mft
Manifest number:          0E64
Signing time:             Sat 13 Jun 2026 00:00:43 +0000
Manifest this update:     Sat 13 Jun 2026 00:00:43 +0000
Manifest next update:     Sun 14 Jun 2026 00:00:43 +0000
Files and hashes:         1: D0nEmnXPbiSMm1HHBU2y-Nnc7cs.crl (hash: Er7ySpKX9VA8QLONFaIMC9qkDEu5duBtVNJ4H7yZbHk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/25/cea161-cb5c-4e41-b836-d80077e12b5d/1/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/25/cea161-cb5c-4e41-b836-d80077e12b5d/1/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 00:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:47:e6:54:7f:b7:6f:57:06:a5:6d:50:ff:7c:4d:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0f49c49a75cf6e248c9b51c7054db2f8d9dcedcb
        Validity
            Not Before: Jun 13 00:00:43 2026 GMT
            Not After : Jun 14 00:00:43 2026 GMT
        Subject: CN=1e5b2f5878428c426bbe9ad7ab8830d92d55d5dc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:e5:6e:ac:0a:33:4e:aa:bc:72:22:55:8a:ee:
                    f0:c8:35:c8:a0:9c:47:da:ec:8a:9c:32:ca:44:08:
                    23:0b:14:10:8d:36:7e:4c:c0:5f:98:39:98:34:7d:
                    84:3c:c8:f9:db:38:80:2e:0b:e4:a0:c8:3b:3e:0e:
                    ab:70:da:35:a1:ca:8f:72:cb:1f:9d:00:2c:6f:1b:
                    0b:01:a2:9a:ee:c4:b4:95:2f:e9:31:6f:52:bb:c2:
                    69:00:fd:12:01:f1:ab:13:92:16:5b:3d:de:be:47:
                    9d:68:f1:d3:df:a0:eb:22:69:89:96:bf:ad:af:70:
                    8f:77:71:b8:f6:c3:fd:fb:b3:ca:79:a6:ee:da:35:
                    45:a0:ff:4f:f6:4f:66:fb:d7:bd:87:67:fc:48:7a:
                    b4:2f:e1:6d:cb:58:83:3a:44:68:c7:16:99:90:fb:
                    21:23:6a:8b:56:3b:e7:95:dc:03:95:cf:95:8b:11:
                    59:b7:2b:b7:51:3b:d6:79:ed:f8:43:2f:77:41:e5:
                    93:5c:8c:93:7a:d7:4c:c3:d3:9d:c7:40:17:df:c7:
                    8c:44:8d:a7:d0:01:67:e8:a9:08:78:53:85:81:1b:
                    a8:36:87:99:f2:4d:08:fb:2a:ce:50:61:43:af:8e:
                    dc:d3:ed:f7:2b:35:2e:ec:94:0e:35:79:44:3c:5b:
                    6a:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:5B:2F:58:78:42:8C:42:6B:BE:9A:D7:AB:88:30:D9:2D:55:D5:DC
            X509v3 Authority Key Identifier:
                keyid:0F:49:C4:9A:75:CF:6E:24:8C:9B:51:C7:05:4D:B2:F8:D9:DC:ED:CB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/cea161-cb5c-4e41-b836-d80077e12b5d/1/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/25/cea161-cb5c-4e41-b836-d80077e12b5d/1/D0nEmnXPbiSMm1HHBU2y-Nnc7cs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:ee:ce:74:ad:b3:1e:f9:36:57:f0:f2:ca:af:9c:f3:08:21:
         e1:a1:c6:90:ed:85:0b:59:28:ec:5b:fe:db:9c:87:a7:cd:22:
         f6:1b:da:77:b5:8c:e9:6a:0d:4e:58:8d:b3:c7:c9:5b:cc:38:
         2f:1c:ff:9b:ef:07:d0:e8:b2:5e:49:37:94:56:9b:0f:a7:fc:
         fa:ae:93:a6:20:37:e7:3b:74:57:ce:49:61:d6:b2:28:e1:31:
         3d:c4:10:cd:63:82:82:b6:f6:9b:4a:d2:c4:5b:89:d5:71:1b:
         23:d8:25:90:84:c4:83:d2:92:a4:2d:ce:e7:00:c7:e9:23:4f:
         2a:81:4a:7a:67:f5:6d:fd:f2:99:71:20:79:37:f7:ad:9a:af:
         35:17:3f:6c:ad:28:c3:5b:7f:6e:67:b0:04:b8:2b:d0:43:dc:
         a7:49:66:35:3e:7b:76:45:1b:03:ca:5f:8c:c2:51:eb:00:f3:
         dd:b8:a4:85:0e:1b:30:e1:fe:69:ca:bb:0b:28:29:24:2c:1c:
         ff:5e:3f:64:cc:97:f7:67:fb:08:7b:f8:c3:45:32:f9:59:ec:
         f6:50:b5:8f:83:90:2f:bc:6e:ec:b5:fe:d5:a3:f1:c6:14:c1:
         34:f8:20:cb:30:3a:45:47:15:38:74:6f:0c:f6:b2:eb:0a:a6:
         8a:5f:62:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6+R+ZUf7dvVwalbVD/fE1XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmNDljNDlhNzVjZjZlMjQ4YzliNTFjNzA1NGRiMmY4ZDlk
Y2VkY2IwHhcNMjYwNjEzMDAwMDQzWhcNMjYwNjE0MDAwMDQzWjAzMTEwLwYDVQQD
EygxZTViMmY1ODc4NDI4YzQyNmJiZTlhZDdhYjg4MzBkOTJkNTVkNWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkeVurAozTqq8ciJViu7wyDXIoJxH
2uyKnDLKRAgjCxQQjTZ+TMBfmDmYNH2EPMj52ziALgvkoMg7Pg6rcNo1ocqPcssf
nQAsbxsLAaKa7sS0lS/pMW9Su8JpAP0SAfGrE5IWWz3evkedaPHT36DrImmJlr+t
r3CPd3G49sP9+7PKeabu2jVFoP9P9k9m+9e9h2f8SHq0L+Fty1iDOkRoxxaZkPsh
I2qLVjvnldwDlc+VixFZtyu3UTvWee34Qy93QeWTXIyTetdMw9Odx0AX38eMRI2n
0AFn6KkIeFOFgRuoNoeZ8k0I+yrOUGFDr47c0+33KzUu7JQONXlEPFtq5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB5bL1h4QoxCa76a16uIMNktVdXcMB8GA1UdIwQY
MBaAFA9JxJp1z24kjJtRxwVNsvjZ3O3LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDBuRW1uWFBiaVNNbTFISEJVMnktTm5jN2NzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9jZWExNjEtY2I1Yy00ZTQxLWI4MzYt
ZDgwMDc3ZTEyYjVkLzEvRDBuRW1uWFBiaVNNbTFISEJVMnktTm5jN2NzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9jZWExNjEtY2I1Yy00ZTQxLWI4MzYtZDgwMDc3ZTEyYjVk
LzEvRDBuRW1uWFBiaVNNbTFISEJVMnktTm5jN2NzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqO7OdK2z
Hvk2V/Dyyq+c8wgh4aHGkO2FC1ko7Fv+25yHp80i9hvad7WM6WoNTliNs8fJW8w4
Lxz/m+8H0OiyXkk3lFabD6f8+q6TpiA35zt0V85JYdayKOExPcQQzWOCgrb2m0rS
xFuJ1XEbI9glkITEg9KSpC3O5wDH6SNPKoFKemf1bf3ymXEgeTf3rZqvNRc/bK0o
w1t/bmewBLgr0EPcp0lmNT57dkUbA8pfjMJR6wDz3bikhQ4bMOH+acq7CygpJCwc
/14/ZMyX92f7CHv4w0Uy+Vns9lC1j4OQL7xu7LX+1aPxxhTBNPggyzA6RUcVOHRv
DPay6wqmil9iBQ==
-----END CERTIFICATE-----