Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
File:                     2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft (raw, json)
Hash identifier:          fStuWtVe1+ymtTvNLXCuOxxdnPPUnWrAxFt2XXPH2zo=
Subject key identifier:   C2:FB:1C:19:2A:34:43:2F:61:20:AE:6B:FB:6A:05:2A:F1:4C:4D:8F
Authority key identifier: D8:7D:81:50:D1:18:23:85:C4:61:B5:80:D5:63:8A:57:0C:2B:C0:BF
Certificate issuer:       /CN=d87d8150d1182385c461b580d5638a570c2bc0bf
Certificate serial:       019EBEED60F36D09202AC6EBCD4608EC8B0F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
Manifest number:          1955
Signing time:             Sat 13 Jun 2026 03:01:28 +0000
Manifest this update:     Sat 13 Jun 2026 03:01:28 +0000
Manifest next update:     Sun 14 Jun 2026 03:01:28 +0000
Files and hashes:         1: 2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl (hash: dW12THErEB4ZAo+A7gmLW6J5jI9kQEuy+E/I4aM3CVA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:ed:60:f3:6d:09:20:2a:c6:eb:cd:46:08:ec:8b:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d87d8150d1182385c461b580d5638a570c2bc0bf
        Validity
            Not Before: Jun 13 03:01:28 2026 GMT
            Not After : Jun 14 03:01:28 2026 GMT
        Subject: CN=c2fb1c192a34432f6120ae6bfb6a052af14c4d8f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:99:22:c1:8e:aa:b6:92:36:c4:37:0d:4a:2e:
                    5f:93:29:60:d7:3d:71:47:05:54:15:65:bd:23:28:
                    a0:62:9d:35:8d:24:74:49:a8:4b:46:50:1b:8c:b4:
                    df:5d:ac:71:15:72:72:85:6d:55:11:49:bc:ed:ee:
                    9c:ea:46:ac:eb:54:4a:ca:6d:95:78:39:9b:73:ae:
                    a5:35:39:83:76:18:d0:57:d8:56:2c:1e:57:11:be:
                    d7:c3:4a:d1:46:af:42:3f:06:39:ce:27:a2:d9:d1:
                    12:23:ee:d6:1a:9b:8a:5e:4e:d1:90:26:6a:97:3b:
                    79:2c:9e:50:7b:c9:72:be:8b:7e:bc:c4:1e:a7:d0:
                    60:b6:70:9e:35:8f:bf:ba:53:ae:81:69:0c:de:af:
                    16:a8:f3:c5:12:70:bb:02:58:1e:72:73:1d:1f:df:
                    48:66:f4:e0:90:a0:9a:5b:b4:0f:b6:cd:67:4f:d7:
                    16:f6:b7:03:b3:af:5b:29:ef:50:17:14:f3:42:9d:
                    5a:fe:69:71:05:c1:74:7a:8c:6d:d1:f6:44:f7:75:
                    2a:a3:52:5f:e0:fb:7e:3c:74:72:47:65:6c:f9:e4:
                    4f:3b:6e:13:2c:99:de:a1:30:d9:a4:48:c3:00:5e:
                    4a:b8:8c:06:07:f8:2a:e4:16:23:1c:d7:5d:26:38:
                    15:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:FB:1C:19:2A:34:43:2F:61:20:AE:6B:FB:6A:05:2A:F1:4C:4D:8F
            X509v3 Authority Key Identifier:
                keyid:D8:7D:81:50:D1:18:23:85:C4:61:B5:80:D5:63:8A:57:0C:2B:C0:BF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:c0:a4:35:e1:06:c6:d6:ac:0a:28:36:18:42:a3:98:9d:c2:
         01:08:d7:79:69:eb:c0:3a:77:a7:e1:cf:65:1b:4f:89:8f:71:
         ae:99:b6:41:22:96:d7:c2:e5:ec:9f:b4:e5:7a:e5:82:94:2e:
         c9:9b:0e:eb:2f:c4:57:e5:dd:3d:7a:3e:46:8a:a9:b3:70:5f:
         18:77:4f:70:2d:a6:ae:e2:50:bb:d3:dd:ea:78:8c:5c:89:98:
         30:4a:9c:ae:6e:42:bf:c5:e1:c8:a3:d9:50:e0:b8:bf:65:81:
         7c:8b:7d:9e:8f:04:77:21:91:a1:a4:b3:89:63:24:8e:26:ae:
         21:7c:46:02:19:be:95:3b:e1:19:72:c5:f4:99:f3:28:28:02:
         14:77:e9:a3:00:5d:37:da:85:ef:47:e3:53:53:2b:fd:72:8a:
         7f:b2:c5:23:86:50:8c:3b:83:e0:d9:c6:8d:4f:b4:63:af:24:
         ac:74:40:32:31:76:09:3c:2e:8a:f5:77:91:ca:44:fa:42:9d:
         00:f5:e0:a9:1a:79:4c:ae:ef:56:bb:78:92:dd:55:b5:49:39:
         11:f9:00:0a:83:48:9f:78:56:51:1e:58:77:5f:15:85:65:51:
         68:88:7e:61:a7:62:f9:40:d2:f6:a8:e3:3c:60:47:96:dc:ba:
         73:c3:d1:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----