Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft
File:                     Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft (raw, json)
Hash identifier:          wbGUyuLnEMHfa8elCFRl0nrpI7DwSRYHIBkO1AxSXCc=
Subject key identifier:   8E:36:3B:05:F4:E7:D5:01:0A:5C:3E:A3:A5:E2:8A:FC:3F:94:92:6A
Authority key identifier: 0E:87:E5:D3:3A:9B:28:BE:7F:1A:F8:BC:9C:13:8B:15:80:90:F1:89
Certificate issuer:       /CN=0e87e5d33a9b28be7f1af8bc9c138b158090f189
Certificate serial:       019EBFFF235EF8B4B97E7A4C6B879A2D7CFB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft
Manifest number:          07C6
Signing time:             Sat 13 Jun 2026 08:00:29 +0000
Manifest this update:     Sat 13 Jun 2026 08:00:29 +0000
Manifest next update:     Sun 14 Jun 2026 08:00:29 +0000
Files and hashes:         1: Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.crl (hash: A2QIcA6bZEUB9bedct66V74W2jclkk4dgDRstloe0CQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 08:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:bf:ff:23:5e:f8:b4:b9:7e:7a:4c:6b:87:9a:2d:7c:fb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0e87e5d33a9b28be7f1af8bc9c138b158090f189
        Validity
            Not Before: Jun 13 08:00:29 2026 GMT
            Not After : Jun 14 08:00:29 2026 GMT
        Subject: CN=8e363b05f4e7d5010a5c3ea3a5e28afc3f94926a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:5a:3f:f4:b5:60:0d:36:04:9f:04:46:b5:98:
                    99:4d:13:fe:57:2c:b1:c0:93:f9:9e:fd:59:dd:61:
                    49:e6:0d:2d:45:ba:fe:ef:47:15:61:d0:7a:c5:ba:
                    89:33:e8:0e:29:69:3c:a8:f1:f9:7d:39:78:4d:7d:
                    20:f3:ea:6b:44:77:7e:fe:24:b1:ef:08:6a:39:e5:
                    0e:50:cb:80:16:d8:0e:80:54:6e:47:d4:2d:c7:e4:
                    cf:d4:5e:00:2d:2c:66:5a:6c:dd:73:85:52:9b:09:
                    4c:18:42:65:31:41:39:c4:b3:4f:68:72:45:a7:36:
                    3b:59:9c:b4:d6:c8:c8:5f:7a:43:22:ac:25:84:0a:
                    b7:16:da:94:9b:05:49:c9:e5:7d:8a:42:f8:16:3e:
                    98:7c:a2:95:57:8f:a3:30:24:29:81:2a:72:14:15:
                    ae:87:d5:68:63:b7:aa:b9:c5:8f:bf:36:fc:60:8f:
                    a6:ae:eb:08:f9:95:76:ad:25:1d:3c:ac:e5:e6:b2:
                    49:02:c0:64:0c:32:80:a4:bc:74:d4:32:bb:6b:c9:
                    71:ca:39:18:55:e0:eb:a6:d5:7e:7b:a5:9c:8c:88:
                    19:e8:36:f7:aa:72:d8:6a:f8:68:09:a3:82:e9:5d:
                    cd:4b:ab:da:1f:29:a5:82:5b:c1:02:16:d2:d8:84:
                    7e:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:36:3B:05:F4:E7:D5:01:0A:5C:3E:A3:A5:E2:8A:FC:3F:94:92:6A
            X509v3 Authority Key Identifier:
                keyid:0E:87:E5:D3:3A:9B:28:BE:7F:1A:F8:BC:9C:13:8B:15:80:90:F1:89

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:d4:00:92:3b:a1:92:f5:c9:eb:37:45:b5:81:c8:7c:69:27:
         bd:11:03:6c:4f:bd:dc:5e:cd:b6:fe:44:51:b0:03:b8:45:28:
         13:76:d6:6e:a8:51:2d:66:67:49:0e:f2:66:23:99:6e:b3:5b:
         9a:cf:01:92:65:d7:93:2d:8e:93:e7:fc:00:46:f9:35:cf:7b:
         02:22:b9:f3:5e:1d:40:7e:35:a9:69:56:4d:d1:b6:b9:90:1b:
         12:c5:eb:bf:8d:14:22:a2:8a:51:c8:c9:c7:77:58:b3:1a:b5:
         54:94:f4:82:9d:28:02:78:74:d9:ab:f3:d4:bb:74:6b:1d:11:
         94:b2:64:e6:e7:45:64:d8:06:d6:30:d4:a5:01:da:2a:e4:55:
         09:39:93:40:a0:2a:85:2b:ee:f3:c9:33:99:1b:fa:9f:78:8d:
         05:7d:38:26:33:9f:d7:7e:5a:d7:73:ca:59:a4:36:77:25:95:
         97:3f:21:45:98:61:9e:3e:99:87:9b:56:f6:79:1a:74:fd:1c:
         fc:a8:9a:6c:1b:aa:07:b3:69:b6:2f:24:9e:0b:80:2f:1c:53:
         79:85:88:ed:61:83:ac:6c:d6:ca:32:33:af:73:db:fe:d1:89:
         f7:39:bc:48:9f:1a:12:4c:26:27:ab:10:b5:54:f5:92:78:75:
         05:42:fb:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6//yNe+LS5fnpMa4eaLXz7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlODdlNWQzM2E5YjI4YmU3ZjFhZjhiYzljMTM4YjE1ODA5
MGYxODkwHhcNMjYwNjEzMDgwMDI5WhcNMjYwNjE0MDgwMDI5WjAzMTEwLwYDVQQD
Eyg4ZTM2M2IwNWY0ZTdkNTAxMGE1YzNlYTNhNWUyOGFmYzNmOTQ5MjZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Fo/9LVgDTYEnwRGtZiZTRP+Vyyx
wJP5nv1Z3WFJ5g0tRbr+70cVYdB6xbqJM+gOKWk8qPH5fTl4TX0g8+prRHd+/iSx
7whqOeUOUMuAFtgOgFRuR9Qtx+TP1F4ALSxmWmzdc4VSmwlMGEJlMUE5xLNPaHJF
pzY7WZy01sjIX3pDIqwlhAq3FtqUmwVJyeV9ikL4Fj6YfKKVV4+jMCQpgSpyFBWu
h9VoY7equcWPvzb8YI+mrusI+ZV2rSUdPKzl5rJJAsBkDDKApLx01DK7a8lxyjkY
VeDrptV+e6WcjIgZ6Db3qnLYavhoCaOC6V3NS6vaHymlglvBAhbS2IR+ZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI42OwX059UBClw+o6Xiivw/lJJqMB8GA1UdIwQY
MBaAFA6H5dM6myi+fxr4vJwTixWAkPGJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRG9mbDB6cWJLTDVfR3ZpOG5CT0xGWUNROFlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9lMGEyNWMtZDUyNy00Yzc1LWExYmIt
M2VmNjQwZjkzN2M0LzEvRG9mbDB6cWJLTDVfR3ZpOG5CT0xGWUNROFlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9lMGEyNWMtZDUyNy00Yzc1LWExYmItM2VmNjQwZjkzN2M0
LzEvRG9mbDB6cWJLTDVfR3ZpOG5CT0xGWUNROFlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXdQAkjuh
kvXJ6zdFtYHIfGknvREDbE+93F7Ntv5EUbADuEUoE3bWbqhRLWZnSQ7yZiOZbrNb
ms8BkmXXky2Ok+f8AEb5Nc97AiK5814dQH41qWlWTdG2uZAbEsXrv40UIqKKUcjJ
x3dYsxq1VJT0gp0oAnh02avz1Lt0ax0RlLJk5udFZNgG1jDUpQHaKuRVCTmTQKAq
hSvu88kzmRv6n3iNBX04JjOf135a13PKWaQ2dyWVlz8hRZhhnj6Zh5tW9nkadP0c
/KiabBuqB7Npti8knguALxxTeYWI7WGDrGzWyjIzr3Pb/tGJ9zm8SJ8aEkwmJ6sQ
tVT1knh1BUL7Bg==
-----END CERTIFICATE-----