Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
File:                     7GV-idqz-xXjuuDrGsf6yT32OF0.mft (raw, json)
Hash identifier:          1L7PnyAUuzdZK5v2MWlMwxfuSdfH2yB/t+WLQBMU1CU=
Subject key identifier:   FE:3C:E8:11:8A:E7:6B:F8:E6:C1:FD:F3:15:1A:68:07:60:C2:B8:A8
Authority key identifier: EC:65:7E:89:DA:B3:FB:15:E3:BA:E0:EB:1A:C7:FA:C9:3D:F6:38:5D
Certificate issuer:       /CN=ec657e89dab3fb15e3bae0eb1ac7fac93df6385d
Certificate serial:       019EC180375AD79F3887999CEB88804A7A3D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
Manifest number:          094C
Signing time:             Sat 13 Jun 2026 15:01:05 +0000
Manifest this update:     Sat 13 Jun 2026 15:01:05 +0000
Manifest next update:     Sun 14 Jun 2026 15:01:05 +0000
Files and hashes:         1: 7GV-idqz-xXjuuDrGsf6yT32OF0.crl (hash: Mh8+L+kKNRtsj53REO3nqw2SHsaxFCVqBEFVgKMIhKs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 10:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c1:80:37:5a:d7:9f:38:87:99:9c:eb:88:80:4a:7a:3d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ec657e89dab3fb15e3bae0eb1ac7fac93df6385d
        Validity
            Not Before: Jun 13 15:01:05 2026 GMT
            Not After : Jun 14 15:01:05 2026 GMT
        Subject: CN=fe3ce8118ae76bf8e6c1fdf3151a680760c2b8a8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:f5:da:2c:d4:8e:72:c6:70:a6:6e:b4:36:eb:
                    a4:58:73:28:8a:22:d0:bb:3c:3e:d7:b4:bd:2a:03:
                    88:b1:4b:66:c1:b7:b2:99:fd:04:f9:f6:3b:23:02:
                    a6:ec:ef:61:75:a5:3e:b0:d5:5c:b6:9c:74:01:41:
                    97:f6:88:24:3a:cd:2f:24:4f:e0:27:59:b4:40:07:
                    93:4b:f8:7b:36:da:a7:72:e4:85:46:6c:c0:e2:d6:
                    3e:c1:dc:12:fc:c3:c5:b3:93:9a:6a:ad:3d:64:ba:
                    02:5d:27:a9:12:05:37:21:b4:f7:56:74:34:ae:1a:
                    26:22:a6:a0:e1:2c:18:21:bc:d3:b5:47:77:d6:d1:
                    a3:eb:74:38:a6:ae:8a:35:6d:ac:db:f5:66:78:33:
                    1f:c7:e5:71:ed:ab:27:2b:60:d3:e8:60:6e:71:3d:
                    8f:c4:8b:bd:57:98:f1:ea:0a:6a:c4:35:ce:f3:33:
                    68:13:4d:bd:95:63:a5:11:c7:f3:7c:c6:96:b2:27:
                    18:44:1f:b8:70:1b:94:2b:aa:f4:ca:00:6b:cc:f7:
                    67:c7:7c:ee:92:ca:ca:c1:52:8b:a7:d1:3b:85:6a:
                    87:c1:6e:c2:2a:03:03:fd:bf:b4:9a:7f:d4:91:7e:
                    e1:1a:31:c4:a2:55:d3:22:61:32:41:42:a3:cb:b9:
                    c2:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:3C:E8:11:8A:E7:6B:F8:E6:C1:FD:F3:15:1A:68:07:60:C2:B8:A8
            X509v3 Authority Key Identifier:
                keyid:EC:65:7E:89:DA:B3:FB:15:E3:BA:E0:EB:1A:C7:FA:C9:3D:F6:38:5D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:22:9f:e9:28:ce:89:57:42:43:c9:76:92:05:81:96:38:14:
         b7:c4:ea:83:38:0f:2c:94:0d:7c:7c:f5:10:9a:08:ac:26:d5:
         bd:1b:b2:b3:69:90:30:f4:a1:d2:8b:46:65:f2:be:2c:74:f5:
         7f:68:51:66:49:18:aa:56:3c:5c:69:c6:16:ef:99:7b:f8:8f:
         da:8e:d6:13:96:7d:ab:17:47:22:ef:2d:34:98:63:1b:ca:90:
         bf:17:4a:63:2e:f7:d1:4d:c7:74:58:16:83:58:53:7a:df:d6:
         cb:56:39:d9:15:f7:1d:87:17:21:f8:1d:b4:ae:2f:a6:f3:a6:
         27:5d:87:fb:0c:f5:05:77:94:11:3e:2a:3f:e8:60:c4:eb:cb:
         57:b2:4c:56:33:8e:20:ca:7c:9a:d3:f5:b9:64:85:f9:25:ef:
         6b:ca:ab:36:a6:cb:44:94:51:55:4e:02:ac:87:09:b5:b4:01:
         4b:8a:e6:b5:fc:c2:a4:03:65:62:c5:e9:a8:3c:80:d5:c6:4c:
         32:c7:11:e9:95:10:3b:11:52:70:4d:c4:70:1f:ea:8e:2a:4f:
         66:b1:1a:bd:52:8c:4f:c6:17:c4:4f:01:cb:89:f9:50:e9:da:
         5a:57:a9:61:6d:36:98:b2:e7:ab:6f:1e:eb:d3:89:ba:73:5b:
         99:05:f1:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----