Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.mft
File:                     8DpbV31dnm0cX9O-1ADpacC-fDQ.mft (raw, json)
Hash identifier:          awJK7dSGWEhyk3TPbMw5at70qG6gDIIm87VO9tzRtgc=
Subject key identifier:   46:2B:52:E2:5F:6B:12:50:16:25:C3:A5:91:15:72:8D:92:1B:9C:2F
Authority key identifier: F0:3A:5B:57:7D:5D:9E:6D:1C:5F:D3:BE:D4:00:E9:69:C0:BE:7C:34
Certificate issuer:       /CN=f03a5b577d5d9e6d1c5fd3bed400e969c0be7c34
Certificate serial:       019EC148754B0525A564EC9229F5F85D827E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8DpbV31dnm0cX9O-1ADpacC-fDQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.mft
Manifest number:          1955
Signing time:             Sat 13 Jun 2026 14:00:11 +0000
Manifest this update:     Sat 13 Jun 2026 14:00:11 +0000
Manifest next update:     Sun 14 Jun 2026 14:00:11 +0000
Files and hashes:         1: 8DpbV31dnm0cX9O-1ADpacC-fDQ.crl (hash: G0Nx0ur2Blpb3gIN9hbQSqP/z0MbCH/3B/MscstV2sY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8DpbV31dnm0cX9O-1ADpacC-fDQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 14:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c1:48:75:4b:05:25:a5:64:ec:92:29:f5:f8:5d:82:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f03a5b577d5d9e6d1c5fd3bed400e969c0be7c34
        Validity
            Not Before: Jun 13 14:00:11 2026 GMT
            Not After : Jun 14 14:00:11 2026 GMT
        Subject: CN=462b52e25f6b12501625c3a59115728d921b9c2f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:cd:cd:eb:de:d7:92:7f:a0:f4:4a:b0:63:db:
                    bb:ba:d0:cb:fc:c4:0c:9d:26:e2:90:dc:df:ff:75:
                    cb:9c:4a:3e:30:61:94:f5:d0:31:ac:9e:8b:e2:42:
                    3f:a7:7c:45:42:0f:ee:f1:21:d7:99:4d:7a:d7:be:
                    04:06:ca:01:91:44:05:97:54:0f:81:f9:5f:0f:13:
                    62:f4:ae:ba:f1:5c:cf:b2:6e:b1:a1:b3:af:cb:13:
                    90:48:3a:86:f1:61:90:a6:f8:fd:21:d1:fb:e4:5e:
                    8e:61:cf:c1:69:e8:ec:ba:8c:a6:40:77:92:a4:96:
                    95:c1:c7:ce:84:31:14:9f:25:63:20:12:6b:64:6a:
                    b0:bc:4b:ab:82:68:00:62:e5:92:a2:1f:d0:4e:55:
                    07:47:1e:ff:e3:bc:ea:2b:11:67:30:34:79:d2:15:
                    d5:09:33:fb:22:a3:16:0d:c4:ba:ea:09:d6:4a:f3:
                    57:0c:15:7f:55:48:9f:d5:bb:37:75:c8:15:9b:9a:
                    b8:34:f7:5e:9f:37:f5:db:01:59:67:6c:af:c7:72:
                    6d:f4:31:6d:a3:88:a1:95:62:dc:f7:b4:b7:b0:bf:
                    9d:30:21:8c:15:be:fe:57:0d:46:c1:6b:42:b7:a7:
                    78:f3:7e:bb:19:60:ef:be:63:c7:6a:4c:84:b5:fe:
                    a7:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:2B:52:E2:5F:6B:12:50:16:25:C3:A5:91:15:72:8D:92:1B:9C:2F
            X509v3 Authority Key Identifier:
                keyid:F0:3A:5B:57:7D:5D:9E:6D:1C:5F:D3:BE:D4:00:E9:69:C0:BE:7C:34

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DpbV31dnm0cX9O-1ADpacC-fDQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/688943-713d-491e-a721-eca59f82018a/1/8DpbV31dnm0cX9O-1ADpacC-fDQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:59:3c:88:ad:fd:bb:67:8d:56:8b:95:f8:7f:bf:93:82:fa:
         9c:19:43:8a:93:56:4d:79:20:78:21:ec:be:ae:4f:42:ec:96:
         ab:ed:8c:cb:a9:c7:d4:91:27:32:e2:87:e6:b7:c8:7b:a5:df:
         5c:4b:40:e6:bf:7b:1c:e6:4c:ec:2f:36:9c:46:08:fa:2c:90:
         ee:38:0f:14:bb:81:81:cc:d3:49:e6:07:45:1c:78:84:7a:fb:
         09:e8:61:c9:ec:c0:93:41:7c:1e:6e:56:9f:d5:ff:24:5e:93:
         85:06:6a:50:8f:5f:ec:ad:48:7a:24:c8:bb:ac:d1:fd:6c:59:
         18:b4:45:f2:bf:d9:4f:92:6c:d4:18:43:bb:9d:6d:59:27:d5:
         29:19:1e:00:0d:b9:8e:6b:57:04:d2:ef:59:55:e3:69:1b:8c:
         0e:98:ba:ad:7e:70:50:3d:93:c2:f0:3e:2c:4a:52:c0:6c:11:
         f3:a4:1b:a0:d7:7e:3d:82:70:de:bf:75:6e:7e:f4:ca:8f:06:
         ad:b2:28:72:63:db:89:e5:f3:66:29:0f:00:51:39:ea:c7:ed:
         35:38:8b:75:fd:c3:49:53:dd:78:7a:af:b5:ba:61:ff:c6:1a:
         df:a4:4c:bd:e4:92:e0:2d:fe:9c:e0:fb:d5:6d:80:45:fe:73:
         fe:c8:b0:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----