Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/5141aa-18d9-4d34-8278-f3096a024e29/1/35qWOAlxTREDtkYNnQ4UoS6FAyU.mft
File:                     35qWOAlxTREDtkYNnQ4UoS6FAyU.mft (raw, json)
Hash identifier:          p9FPOGkF30IuXfZ+0gE3mAbxvy+dYFZwWtgeTXpaxgk=
Subject key identifier:   F3:C8:45:E8:02:7B:CB:33:B1:E1:59:7D:98:3B:37:38:D8:FC:21:78
Authority key identifier: DF:9A:96:38:09:71:4D:11:03:B6:46:0D:9D:0E:14:A1:2E:85:03:25
Certificate issuer:       /CN=df9a963809714d1103b6460d9d0e14a12e850325
Certificate serial:       019EC035EBAE40D8CB5029DB68F8AB325B12
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/35qWOAlxTREDtkYNnQ4UoS6FAyU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/38/5141aa-18d9-4d34-8278-f3096a024e29/1/35qWOAlxTREDtkYNnQ4UoS6FAyU.mft
Manifest number:          103F
Signing time:             Sat 13 Jun 2026 09:00:19 +0000
Manifest this update:     Sat 13 Jun 2026 09:00:19 +0000
Manifest next update:     Sun 14 Jun 2026 09:00:19 +0000
Files and hashes:         1: 35qWOAlxTREDtkYNnQ4UoS6FAyU.crl (hash: r4rfX7bItbt/l+r/K+8rvuybjcUE9OIKq3hy8P2jnHM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/38/5141aa-18d9-4d34-8278-f3096a024e29/1/35qWOAlxTREDtkYNnQ4UoS6FAyU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/38/5141aa-18d9-4d34-8278-f3096a024e29/1/35qWOAlxTREDtkYNnQ4UoS6FAyU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/35qWOAlxTREDtkYNnQ4UoS6FAyU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 08:43:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c0:35:eb:ae:40:d8:cb:50:29:db:68:f8:ab:32:5b:12
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=df9a963809714d1103b6460d9d0e14a12e850325
        Validity
            Not Before: Jun 13 09:00:19 2026 GMT
            Not After : Jun 14 09:00:19 2026 GMT
        Subject: CN=f3c845e8027bcb33b1e1597d983b3738d8fc2178
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:dd:fa:66:df:df:55:80:94:dd:4f:ec:a6:0c:
                    1a:ab:e4:da:4c:da:ab:52:b7:ac:66:40:9b:5c:b6:
                    40:22:de:bb:0f:e6:58:46:63:16:d4:a8:7e:ac:2c:
                    ef:91:3b:13:01:28:7e:6f:90:c9:f2:99:26:85:72:
                    ee:10:d9:ea:77:f4:73:ad:dd:f8:da:98:16:28:a2:
                    65:fa:7f:c8:a6:ec:e4:73:67:c0:a6:ec:b5:d3:f4:
                    a3:fd:02:12:55:b2:96:f6:17:82:ad:20:ab:14:ba:
                    52:ea:96:90:20:34:43:11:e4:73:c8:69:bb:68:09:
                    6e:89:50:90:f1:cd:9d:64:36:4c:c2:cd:a7:ab:41:
                    f8:2e:07:a0:f2:6a:43:be:9b:aa:27:24:25:f6:c1:
                    cc:8d:85:12:f3:39:e7:48:1d:c5:c9:05:ef:54:d7:
                    09:28:8a:d3:4d:70:14:bc:26:02:e1:51:aa:8b:c2:
                    f0:67:8a:b3:7e:1a:67:96:bd:37:0d:67:a7:fa:2d:
                    06:79:9f:9b:79:e6:3a:02:70:7b:c5:d6:c6:d6:3c:
                    ef:d9:ef:79:a1:56:7b:fa:88:4d:35:62:d2:36:29:
                    f2:c4:83:d4:23:61:37:ab:80:7c:9b:50:be:66:e1:
                    e2:7e:3e:a6:3f:39:34:e1:ed:49:d9:bf:c3:d2:ce:
                    70:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:C8:45:E8:02:7B:CB:33:B1:E1:59:7D:98:3B:37:38:D8:FC:21:78
            X509v3 Authority Key Identifier:
                keyid:DF:9A:96:38:09:71:4D:11:03:B6:46:0D:9D:0E:14:A1:2E:85:03:25

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/35qWOAlxTREDtkYNnQ4UoS6FAyU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/5141aa-18d9-4d34-8278-f3096a024e29/1/35qWOAlxTREDtkYNnQ4UoS6FAyU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/38/5141aa-18d9-4d34-8278-f3096a024e29/1/35qWOAlxTREDtkYNnQ4UoS6FAyU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:4f:60:bd:1a:f4:89:9d:da:63:c5:d0:b6:ca:6d:8f:88:b1:
         e3:a1:f1:92:ed:56:d5:61:92:e8:d5:e9:6f:8c:83:e5:59:d3:
         2f:c5:0c:4c:a0:56:7e:f7:00:66:14:23:55:6b:35:47:50:15:
         b1:ef:78:1f:7a:8c:a8:7e:17:d9:2d:e9:6e:cb:fb:90:86:0d:
         9c:bd:80:42:80:04:89:47:e0:fe:53:bc:78:d7:22:73:24:1e:
         8a:ae:0e:b6:0a:10:be:f0:03:fb:d4:dc:bf:94:e8:da:a5:a5:
         98:39:63:2a:6c:28:7b:fc:f9:5d:f7:02:8c:7d:0c:6f:3b:16:
         f3:be:f0:be:d2:34:08:3d:a6:96:a5:98:2b:50:fe:ed:98:36:
         b9:49:21:b7:47:b8:da:8d:df:9a:53:f1:8a:e4:81:7c:ee:66:
         bd:c6:84:e0:05:91:0a:23:29:ac:d1:78:40:cd:ab:fb:bc:d6:
         52:76:36:28:61:39:89:cf:13:22:90:3f:32:4d:02:e7:2d:38:
         fb:5b:84:49:28:fa:ce:a0:da:06:d3:5f:28:f8:98:c0:49:7a:
         99:32:ee:b6:aa:cc:a3:ee:fa:59:d7:69:35:f4:34:f8:cc:5e:
         f0:3a:28:ec:26:f3:c9:87:6f:28:da:92:28:54:a6:36:0a:27:
         4e:d1:70:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----