Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
File:                     7bKno-y66qV0GCMdsLYkq797pkU.mft (raw, json)
Hash identifier:          v2zZnO0pOCMqlx6++/Z8tpGoLZnNqQlVBWx+zTeUqC8=
Subject key identifier:   2F:D3:9C:92:22:D3:EC:22:39:E7:2A:47:C0:F2:91:DA:17:D7:7D:4F
Authority key identifier: ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45
Certificate issuer:       /CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
Certificate serial:       019EBEECAE15697DB1D1452408C6D759A393
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
Manifest number:          1955
Signing time:             Sat 13 Jun 2026 03:00:42 +0000
Manifest this update:     Sat 13 Jun 2026 03:00:42 +0000
Manifest next update:     Sun 14 Jun 2026 03:00:42 +0000
Files and hashes:         1: 7bKno-y66qV0GCMdsLYkq797pkU.crl (hash: uq9xRAOqgGzI0z2ErsNks/UE6pFvIpLGfRXJKAd/Hw0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:ec:ae:15:69:7d:b1:d1:45:24:08:c6:d7:59:a3:93
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
        Validity
            Not Before: Jun 13 03:00:42 2026 GMT
            Not After : Jun 14 03:00:42 2026 GMT
        Subject: CN=2fd39c9222d3ec2239e72a47c0f291da17d77d4f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:b2:fe:41:7d:fd:26:4e:7d:ad:0c:8c:9b:03:
                    f9:d9:40:40:fb:f2:da:55:c8:d7:ff:e9:b1:7f:be:
                    7e:4b:71:b0:ec:ee:2b:35:3c:e3:b0:ac:14:23:af:
                    3a:ae:b8:39:51:90:f9:1b:8a:da:fd:17:da:7f:b0:
                    52:9b:d4:31:9b:05:5a:b2:fc:81:d1:fc:5f:1f:f8:
                    61:e3:e8:49:8f:fe:04:b8:d6:89:d8:6b:d5:61:bc:
                    a1:d3:9b:29:1c:2c:66:6b:1c:29:2d:09:12:93:49:
                    88:bc:15:26:f0:78:75:e9:59:bf:29:2a:f7:c8:f1:
                    7d:64:a0:76:5e:fa:11:61:c4:58:20:14:62:12:51:
                    45:c9:09:b6:b1:3e:f5:c1:b4:04:14:1e:f0:74:f3:
                    d4:80:0f:52:e5:8e:1d:77:f7:83:fd:48:6e:9c:ce:
                    b1:c2:82:d3:e5:5f:26:fe:04:06:d9:cc:37:20:87:
                    9f:12:ed:b4:d1:87:ac:1b:a7:25:28:34:a1:fa:45:
                    36:aa:29:d4:2a:c0:d8:f3:1b:a3:50:f3:61:2a:4a:
                    d8:8d:eb:67:aa:8a:de:f9:07:e8:eb:b3:e8:be:98:
                    c1:ee:16:7f:19:2e:c5:a0:ba:84:50:67:25:fd:42:
                    a2:da:fd:e3:45:d3:a3:2e:0e:56:2f:19:33:9b:50:
                    dc:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2F:D3:9C:92:22:D3:EC:22:39:E7:2A:47:C0:F2:91:DA:17:D7:7D:4F
            X509v3 Authority Key Identifier:
                keyid:ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:a7:8b:f2:62:25:cf:32:4e:27:72:7f:a5:7c:ee:96:8e:54:
         79:bb:1f:2b:e1:5c:78:92:97:a8:7e:da:a0:93:05:93:d5:83:
         ef:91:60:58:cc:b0:f5:a0:f8:10:07:07:41:f0:76:3a:99:4b:
         b6:eb:c6:09:6d:c3:e2:f0:7f:4f:43:5e:cd:0a:99:02:2c:b8:
         ff:76:f2:8a:c8:24:c4:f2:8d:83:0d:cc:00:14:25:3c:43:fa:
         52:3b:96:78:3b:9d:96:87:4c:51:d9:b0:f5:95:33:c7:e7:bd:
         4e:0f:21:6f:e6:b5:78:90:2c:f2:9e:64:19:9f:a6:4d:f0:bc:
         54:ab:4c:53:cd:cf:aa:6c:c1:0b:f7:69:7a:22:99:1d:4e:14:
         ce:c6:ff:1e:be:5c:04:7d:f2:a2:e4:c7:0d:5e:86:d6:e2:c4:
         d0:6e:d3:3a:f7:ef:53:ed:69:44:0e:6d:39:1d:b1:5c:15:0b:
         39:b0:b1:dc:59:4c:66:f0:ae:ba:74:ba:c6:00:fe:1b:ba:4b:
         87:be:19:75:7a:a1:ed:d3:f6:ee:15:d7:ab:5f:20:7d:67:13:
         9f:21:63:0a:49:df:f1:2b:2b:50:9d:57:66:e8:42:02:01:f3:
         8b:85:d2:2b:d0:53:48:24:3e:a9:c2:39:b7:16:15:b9:9c:9f:
         c6:0a:aa:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----