Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.mft
File:                     5i7oJCK3hJkSKWNhQEZJp__smOU.mft (raw, json)
Hash identifier:          b3vUdtmP3y9BimgVq0YteLhjndmkFScCcJq3Mj8uVik=
Subject key identifier:   3B:3D:6B:CE:A8:65:01:5B:CB:CC:C6:62:76:C5:FA:AC:8A:05:25:BE
Authority key identifier: E6:2E:E8:24:22:B7:84:99:12:29:63:61:40:46:49:A7:FF:EC:98:E5
Certificate issuer:       /CN=e62ee82422b7849912296361404649a7ffec98e5
Certificate serial:       019EBE7FAF09109BE18D4CC488B398697B63
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5i7oJCK3hJkSKWNhQEZJp__smOU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.mft
Manifest number:          1019
Signing time:             Sat 13 Jun 2026 01:01:39 +0000
Manifest this update:     Sat 13 Jun 2026 01:01:39 +0000
Manifest next update:     Sun 14 Jun 2026 01:01:39 +0000
Files and hashes:         1: 5i7oJCK3hJkSKWNhQEZJp__smOU.crl (hash: aXQLDUZIuSyYbHJL44amlRiSjc4omsD/kmU4oEAI6C4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5i7oJCK3hJkSKWNhQEZJp__smOU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:7f:af:09:10:9b:e1:8d:4c:c4:88:b3:98:69:7b:63
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e62ee82422b7849912296361404649a7ffec98e5
        Validity
            Not Before: Jun 13 01:01:39 2026 GMT
            Not After : Jun 14 01:01:39 2026 GMT
        Subject: CN=3b3d6bcea865015bcbccc66276c5faac8a0525be
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:4b:e9:80:67:d7:35:42:a5:8a:6b:2b:1f:92:
                    2a:8c:87:99:b9:99:7e:3d:cd:c1:10:71:6c:ae:8c:
                    7c:5d:fe:d1:1d:8d:a0:f2:cd:b5:34:80:f6:07:59:
                    b8:44:f0:e1:c7:8c:ad:e1:df:58:67:63:20:80:6b:
                    2c:0e:bb:f5:9f:21:cd:a6:a5:6f:fd:ca:b0:5a:52:
                    88:27:4b:e2:d6:18:ff:4c:9f:c4:8a:61:bd:cf:de:
                    bd:7d:b9:97:a0:c7:12:26:db:bb:ee:6d:58:cb:2e:
                    a5:ba:71:dd:dd:99:50:b8:d0:26:c2:bb:8c:54:14:
                    fa:73:88:9d:7d:75:38:a6:3f:81:4f:a2:61:5e:cc:
                    56:94:54:52:2a:65:77:46:96:09:54:90:a1:f6:8a:
                    9d:42:9f:c1:b8:bd:e4:91:d0:04:a3:c9:cb:1a:35:
                    ed:85:21:b3:ae:c6:7d:86:6d:bd:a2:00:5f:42:30:
                    d9:eb:16:d3:0e:9e:c4:08:f7:33:a8:16:8a:35:bf:
                    b8:61:22:18:a0:aa:6b:32:ae:c4:0b:b9:cf:82:8d:
                    d1:91:82:c9:60:88:3b:3e:ae:75:1b:a8:c4:7a:6c:
                    ed:46:8f:89:37:4f:49:6e:1b:60:c2:6f:0d:6f:16:
                    6a:68:ed:30:bb:b4:5c:ec:bf:12:08:bd:12:c1:ac:
                    8a:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3B:3D:6B:CE:A8:65:01:5B:CB:CC:C6:62:76:C5:FA:AC:8A:05:25:BE
            X509v3 Authority Key Identifier:
                keyid:E6:2E:E8:24:22:B7:84:99:12:29:63:61:40:46:49:A7:FF:EC:98:E5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5i7oJCK3hJkSKWNhQEZJp__smOU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/bd311e-c901-4aef-b185-ffb1bec32721/1/5i7oJCK3hJkSKWNhQEZJp__smOU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:f8:58:4a:a6:51:8f:a0:77:49:1f:71:20:17:12:81:87:ed:
         a1:af:25:cd:50:db:9b:47:b0:45:10:0f:4c:56:0a:63:ef:1f:
         5f:e7:dd:e3:25:11:9f:b3:c8:9f:37:8f:62:23:31:eb:6b:db:
         63:57:92:01:f0:6a:ee:de:e0:3f:c2:ed:b3:bf:88:7f:a1:b6:
         78:4b:3a:bf:ab:04:84:21:cf:af:74:f5:b2:cc:7c:a5:de:4f:
         12:bc:49:0e:bb:44:97:87:be:ad:6f:8d:d8:6e:f0:fb:d1:72:
         97:46:35:a4:76:ff:30:69:18:b9:32:f0:bd:c4:30:67:c8:3a:
         c4:24:f9:95:de:4a:b1:f2:8e:3c:f2:08:23:5e:74:a2:da:a0:
         0f:bf:d4:2c:4d:13:8f:ea:e8:3e:17:5f:20:a2:16:1d:2a:9f:
         b7:61:2f:6d:54:9a:9a:98:5b:d4:2e:47:e2:6d:d1:36:d5:1a:
         5b:07:57:83:7d:44:5d:7f:19:9f:ed:5e:41:35:4e:5b:2a:a0:
         57:5d:15:de:e8:6e:96:40:fb:15:39:88:24:1f:56:00:f4:8c:
         f7:49:40:3c:5d:32:9b:35:2a:ba:79:2e:c4:05:a4:b2:ec:0e:
         62:d4:75:ca:d3:ce:e8:ea:6c:e6:a4:e9:78:43:53:2f:06:c1:
         b8:af:4b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----