Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft
File:                     1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft (raw, json)
Hash identifier:          VZ32rIFQJmWIqRakYgxcEBkPjy8786Gi3YL1TqDOeM8=
Subject key identifier:   97:6E:15:55:F2:62:7D:9F:80:D0:76:47:15:1C:D0:2D:E9:7D:E2:45
Authority key identifier: D6:6D:DE:95:0D:A5:6F:12:03:32:7E:50:E2:B3:95:C4:02:25:17:98
Certificate issuer:       /CN=d66dde950da56f1203327e50e2b395c402251798
Certificate serial:       019EBE7F8C6885E67D0EED694F5E9ED6DFD4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft
Manifest number:          1956
Signing time:             Sat 13 Jun 2026 01:01:30 +0000
Manifest this update:     Sat 13 Jun 2026 01:01:30 +0000
Manifest next update:     Sun 14 Jun 2026 01:01:30 +0000
Files and hashes:         1: 1m3elQ2lbxIDMn5Q4rOVxAIlF5g.crl (hash: zNwRUkz60w8HZyMkwVV0EY2jzayEPq8+rDBjGVrksHI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:7f:8c:68:85:e6:7d:0e:ed:69:4f:5e:9e:d6:df:d4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d66dde950da56f1203327e50e2b395c402251798
        Validity
            Not Before: Jun 13 01:01:30 2026 GMT
            Not After : Jun 14 01:01:30 2026 GMT
        Subject: CN=976e1555f2627d9f80d07647151cd02de97de245
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:72:dd:4c:8d:8d:44:2f:5b:ee:db:7f:cc:91:
                    a6:d0:8c:1d:d1:de:98:cd:92:5c:db:d3:0d:28:a5:
                    b3:7c:47:29:99:dd:47:5d:66:c8:f9:bb:84:dd:2f:
                    26:f6:f7:b5:97:6c:96:74:62:24:e2:95:c3:84:0b:
                    61:07:fb:14:bf:7c:47:0b:78:32:bc:26:97:65:22:
                    cc:3e:ef:6f:44:6b:37:93:dd:7f:6d:4d:27:c6:9b:
                    d9:67:e7:8f:8e:51:a5:bc:ed:73:84:d6:45:20:0e:
                    e2:4e:42:ea:71:4b:45:b8:92:0a:99:46:fd:ba:c0:
                    35:77:12:a1:45:6f:44:7e:a9:eb:76:71:6f:e9:b5:
                    35:ea:64:28:16:aa:f2:a5:48:0e:e4:53:ab:f9:d2:
                    df:a8:2a:72:cc:cd:27:45:2b:97:96:cf:98:55:53:
                    a4:47:d0:97:ed:91:93:fb:e7:b1:35:6f:36:dc:07:
                    ae:69:11:c3:e9:dc:94:ce:55:d2:1c:70:db:22:a7:
                    6e:e3:e1:82:d5:47:c1:c7:8e:5d:84:70:c5:04:31:
                    93:79:35:e5:ea:ee:31:fc:af:2a:ac:98:a9:9f:ad:
                    64:f8:f1:25:27:b8:8a:ed:95:81:72:83:aa:8c:bc:
                    fc:0a:c2:14:42:d6:07:68:37:9e:43:b6:40:c8:81:
                    67:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:6E:15:55:F2:62:7D:9F:80:D0:76:47:15:1C:D0:2D:E9:7D:E2:45
            X509v3 Authority Key Identifier:
                keyid:D6:6D:DE:95:0D:A5:6F:12:03:32:7E:50:E2:B3:95:C4:02:25:17:98

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/753aa9-a4b0-4f47-8b00-89752e4bf5d3/1/1m3elQ2lbxIDMn5Q4rOVxAIlF5g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:1c:df:8c:2f:63:5f:6d:0e:28:9a:b4:57:a3:12:bd:77:32:
         a8:7f:91:bd:de:66:06:6e:fc:f3:46:f8:d2:88:a9:5a:0b:d2:
         f6:8a:25:35:eb:90:cd:ea:5c:94:a5:b5:7c:11:42:55:a9:83:
         57:d5:ce:06:75:9f:20:0d:c6:e5:45:e7:bf:0c:de:b2:f5:8a:
         9d:d3:85:5b:76:16:20:cb:6f:ea:a8:c2:63:ca:63:d3:37:d5:
         95:06:0d:86:29:e4:91:41:db:7d:6e:d4:ae:fa:72:47:3f:22:
         bd:7b:95:8e:29:70:db:12:d7:0a:a4:aa:8d:5c:d7:99:8e:c2:
         00:8a:f7:76:ef:b4:ad:4d:f1:6e:9b:77:61:a4:c1:6f:46:0c:
         24:e8:08:a4:a6:9e:77:07:fa:71:8d:b9:2c:e0:1c:ac:76:23:
         47:4a:d1:fc:68:84:06:f3:74:f0:1e:28:0e:85:7c:0f:e8:d6:
         99:f7:f6:ae:c7:c7:87:1e:77:74:cf:3c:24:2d:e5:76:04:ad:
         c1:5f:d0:5c:b6:d1:cd:2c:92:99:18:d8:07:fc:6e:93:2d:59:
         94:e5:09:fc:99:ec:06:34:29:af:38:6d:f1:48:d2:c8:62:f6:
         a9:9e:a5:0e:46:dc:78:9c:f2:6f:0c:70:77:01:89:e0:c3:98:
         e1:3c:54:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----