Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft
File:                     7ix0WZPMS28UcK6rRhTwhdSuQKk.mft (raw, json)
Hash identifier:          mSl6eGHansQ5iV79T4CrG113bKdzzb+FdgF/vX/Larg=
Subject key identifier:   51:99:FC:C0:D3:71:E9:7A:63:F8:A6:58:63:C9:52:6D:44:95:99:5A
Authority key identifier: EE:2C:74:59:93:CC:4B:6F:14:70:AE:AB:46:14:F0:85:D4:AE:40:A9
Certificate issuer:       /CN=ee2c745993cc4b6f1470aeab4614f085d4ae40a9
Certificate serial:       019D97E1DFF6A2AF1E0811564BD787412D8F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7ix0WZPMS28UcK6rRhTwhdSuQKk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft
Manifest number:          1553
Signing time:             Thu 16 Apr 2026 20:00:55 +0000
Manifest this update:     Thu 16 Apr 2026 20:00:55 +0000
Manifest next update:     Fri 17 Apr 2026 20:00:55 +0000
Files and hashes:         1: 7ix0WZPMS28UcK6rRhTwhdSuQKk.crl (hash: sIcZLIP4Wzlb4vz9ku7bB7T+GJ0mT9LqjzIhaqiDU1Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7ix0WZPMS28UcK6rRhTwhdSuQKk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 17 Apr 2026 20:00:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:97:e1:df:f6:a2:af:1e:08:11:56:4b:d7:87:41:2d:8f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ee2c745993cc4b6f1470aeab4614f085d4ae40a9
        Validity
            Not Before: Apr 16 20:00:55 2026 GMT
            Not After : Apr 17 20:00:55 2026 GMT
        Subject: CN=5199fcc0d371e97a63f8a65863c9526d4495995a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:95:c1:71:0b:d0:a6:b3:95:c9:52:12:ce:db:
                    1f:02:c7:c2:4a:0e:48:5a:50:80:a0:34:a2:d8:34:
                    d3:9e:33:75:78:12:54:9d:54:6e:ef:e5:7f:4c:7c:
                    40:e2:ce:ed:40:51:03:d5:f9:2f:aa:ba:9e:3d:f4:
                    04:2b:b2:48:02:bc:77:ee:5b:c4:c6:43:eb:ad:a6:
                    f5:8f:8d:73:c6:e4:0c:2e:67:ff:8c:33:e8:5c:6d:
                    8b:66:ba:9f:25:8e:98:5f:4b:f1:aa:61:cf:01:92:
                    46:08:84:21:7e:ce:aa:de:2c:54:cd:30:52:c8:8e:
                    34:c9:fb:d6:0d:e4:49:75:5f:38:1c:cd:ff:17:04:
                    50:26:02:eb:51:54:3a:04:a1:7f:fb:44:09:2e:5e:
                    54:1a:70:c5:19:e4:c5:4f:2f:27:7e:30:84:b4:b1:
                    45:60:54:b6:e0:de:5c:d0:da:b9:2f:8f:27:bb:68:
                    53:f3:7e:a9:09:d9:05:ca:b1:71:1f:85:b8:8c:b4:
                    b4:0c:a6:40:6e:6e:4b:4a:5d:2b:29:70:63:ca:a4:
                    f8:e7:1e:00:7f:a2:d0:7f:d0:65:ab:f5:5d:06:2e:
                    84:a5:d1:7b:6c:bf:b0:43:f8:10:a8:3e:d9:b5:c7:
                    9c:ee:05:fe:1b:09:e6:d6:9e:81:77:b7:1a:72:4a:
                    cd:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:99:FC:C0:D3:71:E9:7A:63:F8:A6:58:63:C9:52:6D:44:95:99:5A
            X509v3 Authority Key Identifier:
                keyid:EE:2C:74:59:93:CC:4B:6F:14:70:AE:AB:46:14:F0:85:D4:AE:40:A9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7ix0WZPMS28UcK6rRhTwhdSuQKk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/2db4d0-9882-4563-a578-772c9177d529/1/7ix0WZPMS28UcK6rRhTwhdSuQKk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b9:81:54:c4:78:68:c4:3c:27:d8:05:da:15:ff:c8:0d:15:cb:
         2d:83:77:c5:9a:be:34:0d:42:d4:ba:9d:bf:e4:35:0d:46:3d:
         80:d3:59:0a:a3:70:74:6d:22:ad:a6:55:37:98:a6:67:5e:a2:
         2d:17:a7:c4:7a:13:02:62:c7:01:48:e6:2b:ea:c7:da:6f:23:
         44:db:d0:98:b1:db:58:f1:ce:ef:ad:27:43:5a:d1:e6:d1:c0:
         d2:02:19:3f:16:f6:36:b1:60:29:ee:7e:91:b9:c9:b3:cb:7d:
         38:07:2b:44:8a:ca:27:57:39:0d:b3:3e:2f:79:40:12:a7:d8:
         25:5c:47:a5:8e:d0:12:52:1a:48:e1:b0:54:bc:27:c8:13:62:
         a2:cd:82:d8:3a:4e:9f:d7:c8:60:02:3e:45:f5:5a:23:4d:07:
         75:b1:e9:84:77:cc:c1:da:08:b4:4d:af:51:83:fb:60:cb:b1:
         21:cb:86:74:5a:ec:69:c9:3c:57:1b:14:b4:10:5c:4e:73:9b:
         cb:eb:fa:77:fb:5d:98:f3:1b:06:81:d3:36:cb:60:83:5a:33:
         e9:c0:9f:ec:f5:e3:0e:7d:a8:b5:d5:5a:04:31:07:ac:5a:cf:
         c7:6e:11:86:e3:5b:28:55:95:d0:03:b2:95:69:a5:a0:25:e6:
         cf:b9:a8:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----