Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
File:                     5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft (raw, json)
Hash identifier:          btyIkRlpvaoIUqN72yyA14eJ85IonT5ZnL+3BrnCk+Q=
Subject key identifier:   32:6F:AB:EC:51:A4:E5:38:79:70:7A:02:2F:2E:E1:3A:32:B2:96:3A
Authority key identifier: E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9
Certificate issuer:       /CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
Certificate serial:       019EBE7F9027B478246C939C072CDC32FD9A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
Manifest number:          073D
Signing time:             Sat 13 Jun 2026 01:01:31 +0000
Manifest this update:     Sat 13 Jun 2026 01:01:31 +0000
Manifest next update:     Sun 14 Jun 2026 01:01:31 +0000
Files and hashes:         1: 5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl (hash: mEMVjxZFBjUxGvPw4cr6m9nVga0X2wcwJb++mjQETTw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:7f:90:27:b4:78:24:6c:93:9c:07:2c:dc:32:fd:9a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
        Validity
            Not Before: Jun 13 01:01:31 2026 GMT
            Not After : Jun 14 01:01:31 2026 GMT
        Subject: CN=326fabec51a4e53879707a022f2ee13a32b2963a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:ec:bf:d5:90:8e:7c:b9:1e:ec:6d:a1:c7:5f:
                    df:49:24:ab:dc:cc:96:9f:a7:a3:78:04:6b:49:9b:
                    01:50:7f:7a:7e:b7:37:7d:57:18:dc:41:76:88:f6:
                    11:7c:31:1c:5c:48:eb:dc:78:b9:1d:4e:f9:6f:e5:
                    56:19:35:58:98:85:e6:2d:49:76:86:e3:d9:47:72:
                    bf:67:4c:cd:4e:b6:d3:ae:5d:51:00:61:8b:09:80:
                    9a:e3:5e:56:58:9b:64:56:95:7c:eb:84:32:7e:03:
                    05:3d:70:48:27:94:24:63:a1:45:6e:57:9b:d0:bf:
                    5c:b2:86:81:6f:57:62:bf:bb:16:aa:78:6f:7e:ec:
                    8d:d1:32:b0:15:ff:f0:b2:75:91:70:a0:07:68:b9:
                    0e:f9:77:14:c2:8a:d4:4d:e2:a5:4e:0e:87:74:58:
                    2b:1f:51:bd:5a:ac:92:fd:9f:d8:73:ee:74:b3:33:
                    5e:6d:f5:54:16:67:7a:53:89:71:e4:b6:9b:9f:6c:
                    48:64:8e:e2:74:e1:62:80:d0:2a:2c:96:04:29:83:
                    ab:6d:f4:49:6a:ca:28:be:0c:a1:9c:8f:69:dc:9e:
                    0a:4f:38:a8:91:52:1a:8c:01:f5:3a:dc:0b:33:6a:
                    e4:0c:75:38:f2:6e:a0:81:53:d5:a1:e8:53:2d:1d:
                    ef:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                32:6F:AB:EC:51:A4:E5:38:79:70:7A:02:2F:2E:E1:3A:32:B2:96:3A
            X509v3 Authority Key Identifier:
                keyid:E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:45:aa:89:ca:50:7a:52:58:08:3a:0d:31:3e:38:e7:da:9e:
         05:3f:64:35:dc:39:45:3e:d3:88:0c:31:21:e4:f2:ec:8d:5d:
         e5:8b:04:f3:d0:68:cb:ec:25:26:cd:71:77:7c:b2:92:1c:6d:
         8e:2c:be:4e:ee:8f:ae:78:68:07:66:fd:f4:34:ec:d6:e6:c7:
         8a:75:e8:75:c2:1b:f5:9b:d5:5e:8f:35:98:fe:86:8f:68:a8:
         a0:6d:ec:d2:9d:93:8c:9d:0d:52:55:2b:f1:e1:ca:d5:53:2c:
         4f:00:58:9b:cc:8f:31:d1:4b:2d:97:38:db:ee:10:1a:29:10:
         fe:39:cd:5f:0e:84:d4:ae:44:5b:ed:62:fd:19:8b:22:43:84:
         82:b2:4f:fc:24:0b:f7:d9:92:86:9f:c6:93:e6:7d:aa:27:96:
         b5:08:8c:04:b2:26:db:9c:8b:45:91:47:78:fb:a6:5b:bd:e6:
         8e:d1:c2:4c:a5:4a:4f:ed:fe:b0:83:b7:be:f1:b0:3f:a0:99:
         7f:3e:a8:f4:55:1a:4d:98:3c:5c:62:4e:50:9f:15:98:2e:ed:
         f8:78:6b:ef:96:4a:21:38:df:c5:d1:dd:4d:d4:6d:e8:d1:f1:
         2c:65:24:af:aa:70:44:07:67:b3:0d:d4:98:cb:0e:68:34:17:
         42:66:be:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----