Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft
File:                     DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft (raw, json)
Hash identifier:          LBdXdsSs2X+om2EtPCl2nt2dzXA3X8phXxF9/iGmwkQ=
Subject key identifier:   E0:F7:13:BF:03:A9:74:56:3E:3C:33:EC:3F:8C:E9:30:A0:47:11:CB
Authority key identifier: 0D:DC:50:9B:4D:B3:52:03:AB:61:6F:47:81:F8:5D:D5:86:04:43:D8
Certificate issuer:       /CN=0ddc509b4db35203ab616f4781f85dd5860443d8
Certificate serial:       019EC25B9D9B4DE8AB9D9FEDE36E1B4AF144
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft
Manifest number:          1693
Signing time:             Sat 13 Jun 2026 19:00:44 +0000
Manifest this update:     Sat 13 Jun 2026 19:00:44 +0000
Manifest next update:     Sun 14 Jun 2026 19:00:44 +0000
Files and hashes:         1: DdxQm02zUgOrYW9Hgfhd1YYEQ9g.crl (hash: x9uGjgHb0g4t+/pROhHqvZMOEj5aHVc6U/Kkt4g7ey4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 17:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c2:5b:9d:9b:4d:e8:ab:9d:9f:ed:e3:6e:1b:4a:f1:44
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0ddc509b4db35203ab616f4781f85dd5860443d8
        Validity
            Not Before: Jun 13 19:00:44 2026 GMT
            Not After : Jun 14 19:00:44 2026 GMT
        Subject: CN=e0f713bf03a974563e3c33ec3f8ce930a04711cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:31:25:33:20:76:90:11:6e:ff:96:df:58:94:
                    c8:96:1d:33:76:c5:79:95:c0:ee:47:4e:7e:30:55:
                    8b:c6:96:fc:1d:95:7b:e6:1e:d3:0d:15:6a:a6:06:
                    12:c7:b6:4e:36:fe:7c:37:3c:50:b2:b6:da:81:01:
                    d9:88:ef:83:fb:2d:04:c9:a9:48:bf:03:c9:eb:69:
                    1d:74:94:c2:6a:11:59:54:e5:3c:1b:b9:e6:34:71:
                    3c:5e:19:d1:21:67:61:c5:78:ef:97:d9:aa:4a:22:
                    82:b6:e9:84:2c:e6:1c:6e:40:6b:be:6f:7b:44:4b:
                    42:ce:98:b7:bc:c7:07:f1:e3:25:21:63:71:8a:c9:
                    4c:37:50:e5:23:dd:00:ef:e9:c7:8a:fe:5e:1c:5d:
                    a3:25:8d:da:ba:10:f8:88:90:2a:ec:24:77:72:6e:
                    11:4e:a2:b6:e0:30:76:78:ff:d8:9c:c0:78:cf:14:
                    73:44:6e:38:80:b2:1b:1c:18:25:40:27:a1:19:34:
                    8a:98:f7:9d:fd:2d:eb:48:d4:7e:30:fd:03:a2:f9:
                    68:dd:0c:b0:b6:34:c7:a9:fb:b5:0f:2d:79:f9:20:
                    5e:a1:a6:aa:5d:16:53:b6:f8:9e:ac:90:9c:74:e2:
                    36:26:20:40:56:11:7c:19:25:32:bc:fb:6e:8d:f1:
                    23:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:F7:13:BF:03:A9:74:56:3E:3C:33:EC:3F:8C:E9:30:A0:47:11:CB
            X509v3 Authority Key Identifier:
                keyid:0D:DC:50:9B:4D:B3:52:03:AB:61:6F:47:81:F8:5D:D5:86:04:43:D8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:38:1a:50:60:b7:b1:b2:b4:34:ef:96:03:00:f7:71:2a:90:
         52:eb:0b:0c:0f:df:aa:f4:7d:3c:d4:b1:1e:ee:28:dc:95:6e:
         18:a7:89:64:87:66:6a:07:4f:ff:7d:79:7a:93:9c:a7:03:7c:
         a0:9c:d9:16:74:28:c5:64:4f:29:7f:db:0a:c7:57:2e:20:60:
         d3:ee:4f:d8:1e:9c:82:4a:a4:0b:d9:8a:76:09:5d:bc:1a:db:
         44:da:56:e4:d2:66:19:a0:30:03:cb:fd:c9:cf:6a:cb:8e:15:
         71:c7:b0:18:6f:5d:fd:bb:2a:53:50:fc:f5:0d:7f:e5:86:2f:
         24:1e:45:d0:dd:f4:bf:88:cd:61:3b:2a:6d:83:21:4d:74:dc:
         9a:4c:52:f6:d2:61:39:d9:e5:0e:81:52:1d:5b:89:77:11:a2:
         91:08:8b:04:34:d6:a5:d8:01:d8:99:67:0e:22:25:ab:14:e6:
         19:e0:03:9c:a4:26:42:57:14:42:1f:26:ee:e4:84:a4:22:9f:
         ad:b4:9f:76:4b:a9:b7:24:d7:70:f7:e2:74:3f:e5:65:a8:0f:
         48:fc:1f:dc:bf:82:e0:63:85:d3:1d:ca:9a:c7:8a:2d:8b:4c:
         ac:49:37:09:bd:e1:d8:a4:54:c0:a3:81:42:ca:cb:08:02:41:
         45:de:b4:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7CW52bTeirnZ/t424bSvFEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkZGM1MDliNGRiMzUyMDNhYjYxNmY0NzgxZjg1ZGQ1ODYw
NDQzZDgwHhcNMjYwNjEzMTkwMDQ0WhcNMjYwNjE0MTkwMDQ0WjAzMTEwLwYDVQQD
EyhlMGY3MTNiZjAzYTk3NDU2M2UzYzMzZWMzZjhjZTkzMGEwNDcxMWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAszElMyB2kBFu/5bfWJTIlh0zdsV5
lcDuR05+MFWLxpb8HZV75h7TDRVqpgYSx7ZONv58NzxQsrbagQHZiO+D+y0EyalI
vwPJ62kddJTCahFZVOU8G7nmNHE8XhnRIWdhxXjvl9mqSiKCtumELOYcbkBrvm97
REtCzpi3vMcH8eMlIWNxislMN1DlI90A7+nHiv5eHF2jJY3auhD4iJAq7CR3cm4R
TqK24DB2eP/YnMB4zxRzRG44gLIbHBglQCehGTSKmPed/S3rSNR+MP0Dovlo3Qyw
tjTHqfu1Dy15+SBeoaaqXRZTtvierJCcdOI2JiBAVhF8GSUyvPtujfEjSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOD3E78DqXRWPjwz7D+M6TCgRxHLMB8GA1UdIwQY
MBaAFA3cUJtNs1IDq2FvR4H4XdWGBEPYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGR4UW0wMnpVZ09yWVc5SGdmaGQxWVlFUTlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi8xOTE0ODEtZGJiNy00MDMyLTljNGYt
ODdlNTc1N2I5N2UzLzEvRGR4UW0wMnpVZ09yWVc5SGdmaGQxWVlFUTlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi8xOTE0ODEtZGJiNy00MDMyLTljNGYtODdlNTc1N2I5N2Uz
LzEvRGR4UW0wMnpVZ09yWVc5SGdmaGQxWVlFUTlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdjgaUGC3
sbK0NO+WAwD3cSqQUusLDA/fqvR9PNSxHu4o3JVuGKeJZIdmagdP/315epOcpwN8
oJzZFnQoxWRPKX/bCsdXLiBg0+5P2B6cgkqkC9mKdgldvBrbRNpW5NJmGaAwA8v9
yc9qy44VccewGG9d/bsqU1D89Q1/5YYvJB5F0N30v4jNYTsqbYMhTXTcmkxS9tJh
OdnlDoFSHVuJdxGikQiLBDTWpdgB2JlnDiIlqxTmGeADnKQmQlcUQh8m7uSEpCKf
rbSfdkuptyTXcPfidD/lZagPSPwf3L+C4GOF0x3KmseKLYtMrEk3Cb3h2KRUwKOB
QsrLCAJBRd609Q==
-----END CERTIFICATE-----