Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
File:                     3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft (raw, json)
Hash identifier:          PBIGMf5VYTRetpPkodHEl6nXwCU2er/8VCGtiK0/T9M=
Subject key identifier:   2B:DF:F6:A8:D7:9B:4D:65:02:96:BC:F5:95:7D:37:1E:52:E4:D4:AB
Authority key identifier: DC:75:85:2E:B3:D5:F4:BF:A7:E4:4E:80:EE:A9:88:19:86:40:3C:D4
Certificate issuer:       /CN=dc75852eb3d5f4bfa7e44e80eea9881986403cd4
Certificate serial:       019EBE7F3DCD82592A34AFB7A56F4B8A0058
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
Manifest number:          104B
Signing time:             Sat 13 Jun 2026 01:01:10 +0000
Manifest this update:     Sat 13 Jun 2026 01:01:10 +0000
Manifest next update:     Sun 14 Jun 2026 01:01:10 +0000
Files and hashes:         1: 3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl (hash: PWPWnZVmnnrMTY9hoB+h9cl1Zk14q1sEydiAlF9j0lU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:7f:3d:cd:82:59:2a:34:af:b7:a5:6f:4b:8a:00:58
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc75852eb3d5f4bfa7e44e80eea9881986403cd4
        Validity
            Not Before: Jun 13 01:01:10 2026 GMT
            Not After : Jun 14 01:01:10 2026 GMT
        Subject: CN=2bdff6a8d79b4d650296bcf5957d371e52e4d4ab
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:4a:cf:19:37:22:b4:5c:a8:e9:9e:59:d1:54:
                    02:2b:32:b4:fe:0a:aa:fa:0b:70:41:b1:e0:f3:bb:
                    71:ea:1f:1f:49:73:36:c3:0e:07:5a:6c:99:bb:29:
                    44:1f:df:2b:56:02:11:22:28:45:25:16:8b:13:35:
                    d8:91:f8:fb:34:27:69:08:c8:bf:22:c9:03:81:c4:
                    e7:b4:c5:fc:2d:40:e9:10:7c:ed:af:e8:40:ff:1f:
                    2d:79:d2:ef:42:8d:db:2e:4f:6c:4e:ba:d7:61:3c:
                    cb:27:14:c5:f1:48:db:70:9c:63:58:5e:cb:47:bf:
                    32:f6:dd:ef:ff:d7:b9:2e:a5:c7:51:5d:f3:43:f3:
                    7a:f0:fe:76:78:f2:6b:f2:0c:8f:ce:ce:63:bb:44:
                    66:59:83:1c:8b:42:22:3c:7a:37:62:69:44:27:54:
                    ce:73:ed:17:8d:95:46:86:d5:0d:f6:80:c9:f4:7c:
                    24:26:63:5a:73:52:fc:57:e2:9f:58:9f:90:21:be:
                    15:7e:24:16:c9:d2:a2:a8:42:8b:7d:de:4c:5e:9a:
                    42:33:bc:5b:a6:53:83:06:c4:74:83:ee:51:d8:c9:
                    76:7d:12:b8:40:f3:84:cd:5f:a7:1d:e0:f8:f3:a7:
                    12:11:9d:90:70:f2:9b:b2:e7:f3:ef:32:7a:b4:56:
                    7a:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:DF:F6:A8:D7:9B:4D:65:02:96:BC:F5:95:7D:37:1E:52:E4:D4:AB
            X509v3 Authority Key Identifier:
                keyid:DC:75:85:2E:B3:D5:F4:BF:A7:E4:4E:80:EE:A9:88:19:86:40:3C:D4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5b5975-14af-4f26-861d-9cfae8a7597e/1/3HWFLrPV9L-n5E6A7qmIGYZAPNQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         36:57:9a:2b:39:6f:27:e1:3d:9b:1c:cf:ab:5d:2d:c3:58:d0:
         0f:74:e2:e1:be:2c:ca:60:d3:86:80:d0:2d:d9:83:ff:8e:a7:
         28:9a:89:44:75:74:a0:58:6d:17:39:df:99:dd:c4:00:da:bd:
         ab:49:68:8c:b4:54:d1:b3:f5:45:ca:ba:d4:5f:da:b4:3b:83:
         6f:b5:45:46:a6:61:64:08:0d:0a:54:85:f5:80:68:f7:da:c3:
         35:33:bf:89:ea:93:2a:6b:55:1f:3c:c9:b5:d1:40:dc:5c:5d:
         ec:5b:26:4d:80:c1:ae:a0:3e:9a:bc:90:35:b3:00:4c:68:f1:
         97:9a:1b:d5:f7:e5:76:6d:63:61:1d:89:ad:be:eb:b5:7e:46:
         6c:19:64:76:78:d6:d6:8c:05:e5:b3:ec:0d:2f:4d:6b:3a:e7:
         2d:e0:0f:88:7d:32:48:be:26:a7:3d:19:f6:7a:18:64:6f:c8:
         4e:2f:c4:46:64:79:9d:ad:b1:75:49:cf:8d:e1:34:7d:97:bb:
         33:c3:c7:d7:43:fd:bd:8e:1f:35:60:44:fe:42:50:3f:45:ed:
         00:32:68:61:77:00:b1:b8:db:3b:bc:74:b9:b5:02:89:b3:9d:
         dd:5c:46:8b:23:fb:b7:9c:61:e8:82:43:34:d4:3f:92:9f:92:
         58:dd:10:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----