Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/456a85-b7a1-4183-a64f-223f508c055a/1/3sQzl3xytL5diI9WhT7TGh_x78Y.mft
File:                     3sQzl3xytL5diI9WhT7TGh_x78Y.mft (raw, json)
Hash identifier:          OWyyBBcMG+V3mCgF0ljEWWFSBzBvY1HmekIuyeTKhBU=
Subject key identifier:   7E:3C:80:B1:C3:14:8A:A0:55:CC:75:61:20:8E:5C:C2:00:DC:CA:A7
Authority key identifier: DE:C4:33:97:7C:72:B4:BE:5D:88:8F:56:85:3E:D3:1A:1F:F1:EF:C6
Certificate issuer:       /CN=dec433977c72b4be5d888f56853ed31a1ff1efc6
Certificate serial:       019EC336F6A1AE59CF75364AA1EA841C9BFF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3sQzl3xytL5diI9WhT7TGh_x78Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/456a85-b7a1-4183-a64f-223f508c055a/1/3sQzl3xytL5diI9WhT7TGh_x78Y.mft
Manifest number:          103B
Signing time:             Sat 13 Jun 2026 23:00:19 +0000
Manifest this update:     Sat 13 Jun 2026 23:00:19 +0000
Manifest next update:     Sun 14 Jun 2026 23:00:19 +0000
Files and hashes:         1: 3sQzl3xytL5diI9WhT7TGh_x78Y.crl (hash: YFq872t9rSr8TcH7OhZKDgS2EervoNT3Xk+rxdl5A4M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/456a85-b7a1-4183-a64f-223f508c055a/1/3sQzl3xytL5diI9WhT7TGh_x78Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/456a85-b7a1-4183-a64f-223f508c055a/1/3sQzl3xytL5diI9WhT7TGh_x78Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3sQzl3xytL5diI9WhT7TGh_x78Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 17:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c3:36:f6:a1:ae:59:cf:75:36:4a:a1:ea:84:1c:9b:ff
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dec433977c72b4be5d888f56853ed31a1ff1efc6
        Validity
            Not Before: Jun 13 23:00:19 2026 GMT
            Not After : Jun 14 23:00:19 2026 GMT
        Subject: CN=7e3c80b1c3148aa055cc7561208e5cc200dccaa7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:58:12:79:c5:fd:44:a2:87:42:a3:cc:71:7a:
                    91:d6:7e:77:28:84:69:02:b2:91:31:62:df:17:e7:
                    e6:be:8b:4f:ff:d6:37:a8:06:e4:c6:d6:61:ff:52:
                    1c:e4:f0:0c:70:87:93:b7:c0:3a:dc:dc:fa:83:32:
                    15:2e:c0:d2:7d:09:76:cf:a9:e7:3b:74:ff:89:b7:
                    b7:5c:b4:a0:be:71:d6:5b:d4:22:6a:c1:ea:37:ac:
                    1c:cc:d3:23:d2:be:ed:02:33:4e:86:8f:b8:26:42:
                    e8:8a:7c:5f:23:65:be:55:e6:07:79:a7:78:ed:f0:
                    59:38:a2:d5:0c:67:89:6c:c6:e6:34:91:56:00:f0:
                    83:27:bc:17:ed:de:16:21:f4:b8:a6:1d:b1:6a:b9:
                    5a:f0:f3:41:a2:27:3d:93:e9:d9:fe:71:4f:db:5b:
                    d2:fe:be:93:b3:26:3e:96:49:cf:76:23:44:28:1e:
                    2c:15:fc:e2:b4:ab:0d:0e:39:c1:fe:7e:55:1a:0a:
                    f1:3a:8a:60:9c:9a:33:e9:84:74:07:e1:c5:8e:9a:
                    ac:3a:74:49:81:29:36:a0:d1:20:5b:56:78:79:d0:
                    1c:75:df:2a:04:1b:36:e4:0f:44:ef:54:02:20:11:
                    d1:a5:e2:66:54:fe:e0:1e:22:dc:f7:36:02:6f:5f:
                    84:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:3C:80:B1:C3:14:8A:A0:55:CC:75:61:20:8E:5C:C2:00:DC:CA:A7
            X509v3 Authority Key Identifier:
                keyid:DE:C4:33:97:7C:72:B4:BE:5D:88:8F:56:85:3E:D3:1A:1F:F1:EF:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3sQzl3xytL5diI9WhT7TGh_x78Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/456a85-b7a1-4183-a64f-223f508c055a/1/3sQzl3xytL5diI9WhT7TGh_x78Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/456a85-b7a1-4183-a64f-223f508c055a/1/3sQzl3xytL5diI9WhT7TGh_x78Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:b4:b9:55:3f:7c:01:aa:07:dc:ac:27:af:be:e9:0a:e0:fd:
         c2:c6:b4:8b:5c:bb:75:21:c0:aa:ad:90:8c:69:b4:c2:f0:60:
         ad:c4:ce:ee:1f:d4:7b:d2:f0:35:2b:2b:80:24:de:3a:3c:02:
         7c:ad:9b:0a:7b:5d:06:20:18:1d:68:5f:aa:86:18:e2:99:7f:
         d6:fa:77:43:3a:eb:3f:97:37:8a:3e:c6:eb:e2:bf:09:82:1c:
         25:e0:c2:20:70:e5:06:2c:07:d3:3f:24:cc:d6:84:a7:b9:eb:
         0e:9b:49:19:bd:ae:0e:b6:26:08:96:11:b8:f8:ef:80:0c:b6:
         22:64:49:61:db:f1:9c:aa:ef:ff:e7:87:19:9d:25:0a:c4:2d:
         2f:a3:30:d5:63:1d:1e:b7:8c:98:5f:b0:6c:0f:f2:93:73:ed:
         cf:6b:f9:e6:94:a2:64:e0:97:b6:40:d2:a6:a5:48:0e:cd:39:
         61:ca:e9:fe:53:17:c1:19:3d:92:1b:bf:c0:96:83:5c:18:9f:
         30:16:ea:35:1c:d7:05:8b:d8:c2:86:8c:62:15:d7:73:3c:5f:
         a3:74:a1:3b:a3:f2:67:20:ba:1e:3c:67:03:76:44:8d:bc:32:
         ac:f0:f6:9f:74:4f:ab:1c:49:6b:be:39:86:6d:42:5e:ef:2c:
         2e:79:27:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----