Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/3ec64b-d3a1-4331-9252-d4f83380a9c5/1/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.mft
File:                     v-5TEVVgcUYwTcZd1Xb77p8Nbk4.mft (raw, json)
Hash identifier:          L9U5bsUnWXWOIK7v4yYntYlVj7MMM0B2/ksVR059hfg=
Subject key identifier:   69:01:7A:CA:20:06:51:23:42:2F:8E:D2:67:D8:83:ED:9B:87:F8:8D
Authority key identifier: BF:EE:53:11:55:60:71:46:30:4D:C6:5D:D5:76:FB:EE:9F:0D:6E:4E
Certificate issuer:       /CN=bfee531155607146304dc65dd576fbee9f0d6e4e
Certificate serial:       019D992BAE03699DAD7461DC947464CD944F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/35/3ec64b-d3a1-4331-9252-d4f83380a9c5/1/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.mft
Manifest number:          06E3
Signing time:             Fri 17 Apr 2026 02:01:09 +0000
Manifest this update:     Fri 17 Apr 2026 02:01:09 +0000
Manifest next update:     Sat 18 Apr 2026 02:01:09 +0000
Files and hashes:         1: v-5TEVVgcUYwTcZd1Xb77p8Nbk4.crl (hash: UQpr72BJs1N+MJyDvOZSfXo/7ofj4L0w+u4KFkkFMN8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/35/3ec64b-d3a1-4331-9252-d4f83380a9c5/1/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/35/3ec64b-d3a1-4331-9252-d4f83380a9c5/1/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 02:01:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:99:2b:ae:03:69:9d:ad:74:61:dc:94:74:64:cd:94:4f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bfee531155607146304dc65dd576fbee9f0d6e4e
        Validity
            Not Before: Apr 17 02:01:09 2026 GMT
            Not After : Apr 18 02:01:09 2026 GMT
        Subject: CN=69017aca20065123422f8ed267d883ed9b87f88d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:f4:66:0c:f6:6b:11:71:d7:bc:e3:ed:26:f6:
                    e5:67:cf:3b:b3:e8:cb:a9:a3:74:fb:43:79:b2:00:
                    2a:60:f7:45:49:78:a6:6e:c8:97:e0:da:40:52:04:
                    63:c0:6d:5c:d9:e5:87:31:f4:58:cf:fc:54:16:43:
                    d1:9b:a0:84:3a:50:eb:75:c9:17:cd:7e:e8:09:5e:
                    e0:fb:c3:00:4d:1f:cf:77:8b:70:4e:bd:e0:27:9a:
                    99:fc:2e:9c:62:cd:07:cc:c6:6b:26:6e:33:3f:1e:
                    5a:d6:48:a1:ab:f3:0c:6b:81:9a:3e:20:26:7e:b6:
                    60:5b:1c:ca:d2:d5:7c:e1:96:60:ea:4e:2f:ae:3b:
                    19:c6:7c:31:0f:48:04:65:de:d5:3f:72:f0:aa:39:
                    60:0d:01:a9:8b:e4:a2:78:35:f5:7b:84:d0:98:e3:
                    8d:3e:06:9b:6a:31:51:bd:6d:b3:0a:b8:38:09:12:
                    ce:c0:95:01:09:e1:70:34:61:28:fd:16:3e:ae:c2:
                    9d:35:35:ca:a3:39:84:df:49:30:a2:28:3c:bb:be:
                    0c:fc:53:de:b3:b5:c5:c5:10:0d:b7:bb:59:49:13:
                    32:76:e5:9f:a1:8e:70:0d:f7:73:f8:23:c3:b0:14:
                    85:9e:81:ed:4c:0b:20:8d:69:73:88:e3:ad:d5:f5:
                    c3:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:01:7A:CA:20:06:51:23:42:2F:8E:D2:67:D8:83:ED:9B:87:F8:8D
            X509v3 Authority Key Identifier:
                keyid:BF:EE:53:11:55:60:71:46:30:4D:C6:5D:D5:76:FB:EE:9F:0D:6E:4E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3ec64b-d3a1-4331-9252-d4f83380a9c5/1/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3ec64b-d3a1-4331-9252-d4f83380a9c5/1/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:15:64:1d:fb:74:66:60:b5:39:06:13:0f:c8:54:c7:4e:3f:
         64:24:8e:06:e4:cc:1a:95:28:2a:db:0f:e8:58:74:4b:a9:f6:
         a3:72:68:c6:b2:5c:d3:04:05:39:e5:4f:31:53:0b:ff:35:9f:
         84:94:fa:5b:88:1f:6d:0d:b7:5a:64:17:b6:73:2e:7e:92:23:
         51:e1:92:02:e1:10:69:82:16:fa:0e:e1:e1:0b:9e:f9:13:09:
         8b:f9:eb:de:f0:32:68:81:f6:bd:39:a7:2d:af:c0:8d:b9:2e:
         33:db:b9:b2:05:2d:68:ec:41:fd:a3:d2:8c:c0:7c:42:5e:51:
         8d:7b:ad:f2:08:09:8f:73:8f:0d:08:ef:23:5b:01:1b:2f:f8:
         79:40:69:8d:8b:6a:a7:2e:b1:56:ff:2f:b6:17:ef:fa:27:e3:
         6c:94:7d:1f:8d:62:4e:18:e4:93:de:24:c2:a3:66:a6:6e:b6:
         1f:06:a5:f6:6c:57:d9:8f:6f:f2:ff:8f:5d:6b:b8:8c:90:ce:
         66:ad:c9:cb:85:72:e3:9a:a2:0b:31:2e:91:35:f4:33:af:be:
         7b:2f:c8:92:5d:74:f4:f2:ce:18:a4:40:ca:56:36:43:54:32:
         5d:ca:9b:c7:cf:79:5f:4c:50:64:7e:47:c7:69:60:6e:96:65:
         9f:67:e6:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----