Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft
File:                     7ix0WZPMS28UcK6rRhTwhdSuQKk.mft (raw, json)
Hash identifier:          8PVGj9X7DDm0Skv8Sb41haPJXVxCecgAz2XlNyyTcII=
Subject key identifier:   37:A1:6F:A2:82:7A:08:DA:78:DA:FA:E5:6D:57:8E:09:4F:A9:C2:D6
Authority key identifier: EE:2C:74:59:93:CC:4B:6F:14:70:AE:AB:46:14:F0:85:D4:AE:40:A9
Certificate issuer:       /CN=ee2c745993cc4b6f1470aeab4614f085d4ae40a9
Certificate serial:       019EBD6C67D39AE9C82BB65E8CA153054A8B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7ix0WZPMS28UcK6rRhTwhdSuQKk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft
Manifest number:          15EB
Signing time:             Fri 12 Jun 2026 20:00:58 +0000
Manifest this update:     Fri 12 Jun 2026 20:00:58 +0000
Manifest next update:     Sat 13 Jun 2026 20:00:58 +0000
Files and hashes:         1: 7ix0WZPMS28UcK6rRhTwhdSuQKk.crl (hash: +xJiHlKUXp1yxS+v77k4dfAhpLE1MVG7vhzPkwnWDfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7ix0WZPMS28UcK6rRhTwhdSuQKk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 13 Jun 2026 20:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:bd:6c:67:d3:9a:e9:c8:2b:b6:5e:8c:a1:53:05:4a:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ee2c745993cc4b6f1470aeab4614f085d4ae40a9
        Validity
            Not Before: Jun 12 20:00:58 2026 GMT
            Not After : Jun 13 20:00:58 2026 GMT
        Subject: CN=37a16fa2827a08da78dafae56d578e094fa9c2d6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:66:be:4a:38:97:b2:00:74:2c:e0:34:14:de:
                    64:42:2a:27:b0:43:a4:3f:19:b0:bf:ff:f3:76:c2:
                    2f:6d:d9:d4:b8:06:98:c3:34:a8:e8:cb:2a:c2:e0:
                    96:48:33:fc:10:d2:43:8c:e2:e5:ba:0b:e4:a0:e4:
                    b0:6e:4c:6c:3c:3f:98:a1:9a:8a:ba:75:46:e1:b1:
                    ac:7f:6a:5f:16:9d:bf:84:d0:1a:5c:7f:fc:27:a3:
                    68:b2:6f:3f:c0:ba:ad:3a:f0:99:04:9b:60:c8:9a:
                    2d:d8:a5:74:6e:f5:94:bc:f6:ae:63:6d:11:76:cf:
                    7a:84:63:c3:3c:a8:76:cf:48:92:af:f0:e7:ba:f3:
                    63:78:1a:fa:62:ac:38:af:da:1d:9b:50:71:48:c4:
                    34:ef:78:23:cd:1b:f0:b9:4c:9b:ef:2d:02:a8:63:
                    ab:6e:50:bb:01:f8:45:89:14:e7:d0:3a:d4:ac:88:
                    e5:33:31:38:41:bc:c3:d2:ad:03:a7:e5:6c:0c:c1:
                    e4:9a:74:8c:0f:73:38:bf:ac:32:21:ae:8f:3f:5a:
                    ae:3e:16:61:10:dc:73:ae:b0:a8:a8:12:54:fe:e9:
                    9e:95:59:9a:0f:01:2c:a8:9e:00:5b:53:be:50:14:
                    c8:37:61:ff:ea:d0:89:80:a0:98:e2:a0:4e:3f:d4:
                    a3:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:A1:6F:A2:82:7A:08:DA:78:DA:FA:E5:6D:57:8E:09:4F:A9:C2:D6
            X509v3 Authority Key Identifier:
                keyid:EE:2C:74:59:93:CC:4B:6F:14:70:AE:AB:46:14:F0:85:D4:AE:40:A9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ix0WZPMS28UcK6rRhTwhdSuQKk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:07:4f:29:ed:3c:e3:4d:64:98:7b:80:f5:a4:d0:15:92:03:
         af:ec:a9:04:64:28:83:6b:6e:c9:4f:3e:55:ea:d7:66:0e:69:
         70:83:f6:b7:cd:4f:ca:6c:e7:32:d3:7d:b1:58:c7:21:53:91:
         ae:ff:57:06:96:fe:d0:e4:d4:bf:23:e4:52:0f:02:68:c0:77:
         83:84:8b:12:45:52:59:8f:b3:00:8f:fd:3b:06:19:cd:ab:f4:
         ab:07:92:59:ef:ef:e5:62:33:85:80:14:0b:86:0c:f3:64:7e:
         8b:a3:f4:94:87:d5:1c:6e:ca:b2:0b:f0:e4:05:69:31:66:15:
         64:fa:8f:0e:4b:04:11:2b:37:2f:8b:fe:6d:aa:d5:95:11:89:
         c1:13:98:51:95:f3:cc:89:83:dd:fe:d3:7f:07:0b:55:d9:7b:
         f6:f9:fb:cc:23:01:dd:45:f0:ce:5c:a6:a5:81:1d:78:17:e3:
         5d:f5:8d:89:14:a3:10:61:b5:cb:51:75:1f:f7:04:84:fa:a0:
         64:3e:26:b8:9b:63:2b:f8:c5:57:ec:90:e1:3f:a2:ba:9d:0d:
         29:cb:01:de:17:46:a0:e8:02:fb:63:be:4b:1a:14:b8:a5:6f:
         db:5f:4d:30:05:b1:50:6c:26:d9:b3:06:f5:73:d8:54:03:6c:
         c4:94:5b:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ69bGfTmunIK7ZejKFTBUqLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMmM3NDU5OTNjYzRiNmYxNDcwYWVhYjQ2MTRmMDg1ZDRh
ZTQwYTkwHhcNMjYwNjEyMjAwMDU4WhcNMjYwNjEzMjAwMDU4WjAzMTEwLwYDVQQD
EygzN2ExNmZhMjgyN2EwOGRhNzhkYWZhZTU2ZDU3OGUwOTRmYTljMmQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Wa+SjiXsgB0LOA0FN5kQionsEOk
Pxmwv//zdsIvbdnUuAaYwzSo6MsqwuCWSDP8ENJDjOLlugvkoOSwbkxsPD+YoZqK
unVG4bGsf2pfFp2/hNAaXH/8J6Nosm8/wLqtOvCZBJtgyJot2KV0bvWUvPauY20R
ds96hGPDPKh2z0iSr/DnuvNjeBr6Yqw4r9odm1BxSMQ073gjzRvwuUyb7y0CqGOr
blC7AfhFiRTn0DrUrIjlMzE4QbzD0q0Dp+VsDMHkmnSMD3M4v6wyIa6PP1quPhZh
ENxzrrCoqBJU/umelVmaDwEsqJ4AW1O+UBTIN2H/6tCJgKCY4qBOP9SjnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDehb6KCegjaeNr65W1XjglPqcLWMB8GA1UdIwQY
MBaAFO4sdFmTzEtvFHCuq0YU8IXUrkCpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2l4MFdaUE1TMjhVY0s2clJoVHdoZFN1UUtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8yZGI0ZDAtOTg4Mi00NTYzLWE1Nzgt
NzcyYzkxNzdkNTI5LzEvN2l4MFdaUE1TMjhVY0s2clJoVHdoZFN1UUtrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8yZGI0ZDAtOTg4Mi00NTYzLWE1NzgtNzcyYzkxNzdkNTI5
LzEvN2l4MFdaUE1TMjhVY0s2clJoVHdoZFN1UUtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkAdPKe08
401kmHuA9aTQFZIDr+ypBGQog2tuyU8+VerXZg5pcIP2t81PymznMtN9sVjHIVOR
rv9XBpb+0OTUvyPkUg8CaMB3g4SLEkVSWY+zAI/9OwYZzav0qweSWe/v5WIzhYAU
C4YM82R+i6P0lIfVHG7Ksgvw5AVpMWYVZPqPDksEESs3L4v+barVlRGJwROYUZXz
zImD3f7TfwcLVdl79vn7zCMB3UXwzlympYEdeBfjXfWNiRSjEGG1y1F1H/cEhPqg
ZD4muJtjK/jFV+yQ4T+iup0NKcsB3hdGoOgC+2O+SxoUuKVv219NMAWxUGwm2bMG
9XPYVANsxJRbvQ==
-----END CERTIFICATE-----