Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
File:                     Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft (raw, json)
Hash identifier:          KwE51ZmQA4mzfqzr2SByUm2bgpL9L5dKue/XpN3OztM=
Subject key identifier:   17:5F:16:6F:D5:21:CF:25:72:FA:6A:1D:36:8A:6A:87:35:4E:9F:8D
Authority key identifier: 0E:8C:E0:A6:AB:B8:EE:50:D4:4B:3B:AE:42:D4:A2:54:9F:FB:82:40
Certificate issuer:       /CN=0e8ce0a6abb8ee50d44b3bae42d4a2549ffb8240
Certificate serial:       019EC06D9CA6D9FF4C41374405B72B8B63D5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Dozgpqu47lDUSzuuQtSiVJ_7gkA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
Manifest number:          1797
Signing time:             Sat 13 Jun 2026 10:01:09 +0000
Manifest this update:     Sat 13 Jun 2026 10:01:09 +0000
Manifest next update:     Sun 14 Jun 2026 10:01:09 +0000
Files and hashes:         1: Dozgpqu47lDUSzuuQtSiVJ_7gkA.crl (hash: h43x3QIiLCCSJF4U8Y8EzQuM2d/6NPWelVOmfWH8Tsg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Dozgpqu47lDUSzuuQtSiVJ_7gkA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 10:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c0:6d:9c:a6:d9:ff:4c:41:37:44:05:b7:2b:8b:63:d5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0e8ce0a6abb8ee50d44b3bae42d4a2549ffb8240
        Validity
            Not Before: Jun 13 10:01:09 2026 GMT
            Not After : Jun 14 10:01:09 2026 GMT
        Subject: CN=175f166fd521cf2572fa6a1d368a6a87354e9f8d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:8c:48:bd:d5:80:e0:28:98:98:da:84:d3:21:
                    90:7c:1f:3c:26:97:69:ad:8e:43:07:44:87:6d:01:
                    48:69:13:97:c1:03:42:12:63:e5:59:9e:db:d3:54:
                    23:ab:e8:75:26:fe:ec:d3:da:d1:9c:4b:73:65:4d:
                    dc:dc:68:25:0b:e7:d0:d5:c4:6c:a1:69:12:0a:de:
                    62:a1:7c:66:c4:ae:d8:2c:9a:5b:55:61:27:71:7c:
                    4b:e3:74:83:2d:1c:f3:81:a6:8d:96:80:16:11:d2:
                    1f:2e:d2:e0:60:4e:44:c2:38:09:d8:3e:38:47:40:
                    3f:16:05:b0:77:37:75:80:3f:88:2b:79:61:fa:2b:
                    79:60:88:cf:73:d5:d6:ee:ce:9f:74:b1:2a:47:4e:
                    ce:48:b2:ee:89:ff:12:ca:9b:9d:f9:6c:b6:cc:f2:
                    19:03:cb:16:7e:7a:dc:e3:71:53:1f:c0:0c:1d:09:
                    c3:ee:87:b5:49:9d:5f:43:e5:38:02:12:a0:82:9a:
                    72:63:2a:80:b4:d4:d3:73:9e:47:64:74:5a:4d:80:
                    53:e2:57:ee:f8:7e:d9:70:81:af:c5:27:ba:36:16:
                    3a:c7:0c:9f:b0:e9:a0:0d:14:e3:af:dc:86:ed:f7:
                    df:ea:92:e8:40:a2:47:f0:f4:95:66:b7:1a:13:3f:
                    98:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:5F:16:6F:D5:21:CF:25:72:FA:6A:1D:36:8A:6A:87:35:4E:9F:8D
            X509v3 Authority Key Identifier:
                keyid:0E:8C:E0:A6:AB:B8:EE:50:D4:4B:3B:AE:42:D4:A2:54:9F:FB:82:40

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dozgpqu47lDUSzuuQtSiVJ_7gkA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/9f2077-df4f-497e-8e90-c499755a2689/1/Dozgpqu47lDUSzuuQtSiVJ_7gkA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:bc:dd:7a:47:dd:55:c5:a0:dd:0b:59:f7:85:fc:c7:ae:cd:
         c0:2d:14:97:c4:5e:26:50:59:ed:c3:38:b7:c8:7d:b2:f0:91:
         11:4e:9d:b2:85:90:f2:d3:75:9a:be:c9:9a:13:dc:91:8c:08:
         66:e8:63:ff:83:3b:02:a1:cd:ae:48:dc:e2:d6:19:50:18:54:
         64:8e:8f:ab:d3:44:67:e6:e8:2d:93:e7:3a:6a:b4:3a:9d:c4:
         28:a4:fe:cf:5a:b3:c2:47:94:59:de:76:a3:25:16:47:44:ba:
         35:0b:f8:ae:8a:85:c7:39:b5:8a:21:2a:36:f9:2f:67:d1:d6:
         f3:d0:05:65:34:9d:90:6c:8c:3c:51:97:55:9b:9e:42:78:3c:
         82:38:0c:bf:dc:87:2b:c8:f5:67:fb:dc:a7:de:09:51:de:9b:
         1f:7e:bc:75:48:e3:68:82:9b:33:6b:38:37:55:f2:8e:65:de:
         cd:b1:46:c9:b8:2f:f4:8f:f3:f1:95:18:ef:62:81:ed:40:a1:
         dd:d4:92:c9:29:4b:1a:10:2c:a5:4f:95:9d:73:d2:ef:7b:6f:
         c4:b0:61:b3:63:23:55:50:56:97:30:7a:aa:ce:cd:28:95:db:
         29:7c:96:4d:d3:6a:6a:a8:59:0e:6a:2f:68:8c:e4:10:2b:17:
         c2:3a:ec:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----