Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.mft
File:                     4VW0MN7doRMQ9shzieMgj8ZSnps.mft (raw, json)
Hash identifier:          3oOM48/BLlprNl+XUIQvWYll5m1mnWswsA8EV8VCF+o=
Subject key identifier:   60:75:09:8C:8D:BD:AA:E8:98:B1:A7:D3:13:CE:B2:84:E4:C2:CD:08
Authority key identifier: E1:55:B4:30:DE:DD:A1:13:10:F6:C8:73:89:E3:20:8F:C6:52:9E:9B
Certificate issuer:       /CN=e155b430dedda11310f6c87389e3208fc6529e9b
Certificate serial:       019EBEECCE6AAC19024384BC0211CE2628F1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4VW0MN7doRMQ9shzieMgj8ZSnps.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.mft
Manifest number:          1282
Signing time:             Sat 13 Jun 2026 03:00:50 +0000
Manifest this update:     Sat 13 Jun 2026 03:00:50 +0000
Manifest next update:     Sun 14 Jun 2026 03:00:50 +0000
Files and hashes:         1: 4VW0MN7doRMQ9shzieMgj8ZSnps.crl (hash: l5Ni6Fv0+z59LlqE6caKCn+L/vO/K7vYDmQxAl1ZqYs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4VW0MN7doRMQ9shzieMgj8ZSnps.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:ec:ce:6a:ac:19:02:43:84:bc:02:11:ce:26:28:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e155b430dedda11310f6c87389e3208fc6529e9b
        Validity
            Not Before: Jun 13 03:00:50 2026 GMT
            Not After : Jun 14 03:00:50 2026 GMT
        Subject: CN=6075098c8dbdaae898b1a7d313ceb284e4c2cd08
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:ff:cc:33:36:73:c2:17:2e:85:d1:60:52:ea:
                    cd:10:c4:b5:c2:ab:d0:4c:3a:73:02:2d:00:fa:22:
                    f3:6c:45:7b:02:0f:2d:34:cc:04:64:e7:b7:5e:47:
                    17:be:b4:6f:42:f0:27:ee:61:29:8c:21:0b:2d:b1:
                    20:0d:cb:d8:26:72:2d:8f:4c:51:79:07:ad:2d:5a:
                    08:96:66:fb:d5:95:ca:1d:07:d7:55:80:a0:a0:ae:
                    ee:90:25:71:af:a1:96:28:dd:1e:ee:e5:a0:9e:36:
                    84:44:3d:41:2d:b7:c2:41:93:a8:92:e1:4c:b7:a9:
                    dd:f2:1a:f3:cd:ed:50:32:5c:7a:be:b1:2f:7f:5f:
                    9e:f7:ca:64:a6:38:15:fc:53:b0:02:54:df:7d:9c:
                    34:aa:62:7e:cb:07:26:08:25:b3:db:b6:a1:51:ee:
                    de:3a:6b:38:f1:17:18:ba:51:42:92:5f:4f:a7:fb:
                    dc:cc:f8:14:17:82:0f:8d:8d:70:b3:5b:55:ad:c8:
                    03:fa:cb:85:98:1c:ec:dd:20:76:12:0a:6a:d7:cb:
                    ec:00:e6:eb:5e:12:46:46:6c:9a:00:3d:37:43:85:
                    56:d2:ae:c3:ff:9d:2d:e7:c6:48:5e:10:a9:36:6c:
                    02:aa:39:16:76:de:34:b5:9a:e5:72:7c:d8:7c:80:
                    44:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:75:09:8C:8D:BD:AA:E8:98:B1:A7:D3:13:CE:B2:84:E4:C2:CD:08
            X509v3 Authority Key Identifier:
                keyid:E1:55:B4:30:DE:DD:A1:13:10:F6:C8:73:89:E3:20:8F:C6:52:9E:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VW0MN7doRMQ9shzieMgj8ZSnps.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/60/bf9d55-b0d5-4b07-92b0-0d74060a16dd/1/4VW0MN7doRMQ9shzieMgj8ZSnps.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:48:4a:0c:9e:fa:a8:e3:c4:e4:c2:b1:c6:15:69:f9:dc:52:
         9f:62:26:2e:bd:d2:35:9a:20:cf:48:0f:24:2d:e6:92:31:3f:
         a9:ac:52:8c:c8:c1:ee:8c:d1:1e:32:4e:49:aa:17:5c:3a:1d:
         ce:42:a4:27:87:fd:3c:78:66:0b:96:2d:06:51:3f:d2:0a:82:
         3f:d9:46:3b:89:4b:fd:e0:d4:3a:14:94:f5:96:3a:84:32:cd:
         fa:3f:fc:43:cf:69:99:fb:e1:7b:3c:be:c7:62:bd:8c:6a:e0:
         7c:a3:b6:c7:30:22:5a:04:bd:7d:11:36:ba:f1:4b:26:85:ac:
         e5:1d:e6:ee:9c:6b:bc:ba:75:8e:26:e3:2f:7c:1b:5a:14:5b:
         09:02:d1:9b:27:c4:1a:5d:e8:94:d2:0a:22:e8:39:9a:d0:29:
         67:36:01:3e:d2:f6:a6:da:3b:de:75:11:10:10:7d:3c:9b:3c:
         da:1c:a0:81:38:ad:1c:78:d1:83:04:94:90:5d:1c:4e:17:d8:
         cd:68:78:87:46:f9:2b:0e:ac:5c:af:79:01:be:56:5b:57:70:
         02:82:78:8d:7e:33:69:6a:9a:b6:ef:93:9a:49:20:29:3c:15:
         27:8b:9f:64:a4:11:44:7d:86:be:6c:9f:80:f2:cb:a1:77:c9:
         98:53:41:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----