Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
File:                     7GV-idqz-xXjuuDrGsf6yT32OF0.mft (raw, json)
Hash identifier:          d9q27StjNq3twOqarfhAahmkPGMuxfnwEjonFDejBrM=
Subject key identifier:   42:6D:34:83:3D:DF:98:A7:99:FC:69:EA:8F:D0:9D:5B:28:89:AE:B9
Authority key identifier: EC:65:7E:89:DA:B3:FB:15:E3:BA:E0:EB:1A:C7:FA:C9:3D:F6:38:5D
Certificate issuer:       /CN=ec657e89dab3fb15e3bae0eb1ac7fac93df6385d
Certificate serial:       019EBDA3417147D7ED94617EE5ACDADD85CC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
Manifest number:          094A
Signing time:             Fri 12 Jun 2026 21:00:53 +0000
Manifest this update:     Fri 12 Jun 2026 21:00:53 +0000
Manifest next update:     Sat 13 Jun 2026 21:00:53 +0000
Files and hashes:         1: 7GV-idqz-xXjuuDrGsf6yT32OF0.crl (hash: teHflCEEIyEcvbyWkaCMq715HEp0VeaK5cnzeXML7So=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 13 Jun 2026 21:00:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:bd:a3:41:71:47:d7:ed:94:61:7e:e5:ac:da:dd:85:cc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ec657e89dab3fb15e3bae0eb1ac7fac93df6385d
        Validity
            Not Before: Jun 12 21:00:53 2026 GMT
            Not After : Jun 13 21:00:53 2026 GMT
        Subject: CN=426d34833ddf98a799fc69ea8fd09d5b2889aeb9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:5a:11:69:72:6b:d9:21:55:9a:4b:ab:7b:f8:
                    42:c2:30:de:55:99:75:93:c2:ec:df:ee:e4:94:df:
                    a9:84:1e:cd:9d:c2:fd:4e:bc:66:72:e9:44:9e:81:
                    b9:cd:3f:e1:e2:40:46:e9:f4:f0:ee:37:42:aa:c1:
                    2e:2e:e9:3c:d6:d6:7b:ab:80:92:e0:d1:13:2e:16:
                    c3:13:e8:36:4b:59:39:c3:56:f9:d9:30:68:12:d9:
                    8a:e4:aa:2d:03:b4:ad:74:93:f7:fb:01:14:d3:de:
                    8e:b4:3e:c0:01:93:8e:0e:43:1b:0d:6f:7d:00:c9:
                    7a:6f:f4:88:fc:f5:1b:77:ed:33:e3:54:53:72:57:
                    fb:69:d6:b7:d9:f3:1b:af:3e:76:fc:64:87:cb:97:
                    25:40:08:f0:0a:a4:d1:16:fc:40:fc:19:7a:d2:37:
                    ea:f1:57:6c:41:f6:23:26:af:e6:1e:24:91:7e:61:
                    e8:c7:67:93:71:bb:cf:e1:78:1e:6b:0e:f6:7b:7a:
                    c3:b9:fb:50:94:73:c4:1e:25:ef:a4:f7:ec:2d:c0:
                    6f:f2:d6:a4:e4:4f:8e:fd:67:58:83:4d:42:de:2d:
                    6c:f7:af:dc:cf:11:14:ca:86:68:64:7e:50:b1:ff:
                    84:b5:dc:1f:36:a3:56:37:47:95:e9:43:6e:20:8b:
                    1d:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:6D:34:83:3D:DF:98:A7:99:FC:69:EA:8F:D0:9D:5B:28:89:AE:B9
            X509v3 Authority Key Identifier:
                keyid:EC:65:7E:89:DA:B3:FB:15:E3:BA:E0:EB:1A:C7:FA:C9:3D:F6:38:5D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GV-idqz-xXjuuDrGsf6yT32OF0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/391c70-c3bc-407f-935b-fd70867bc334/1/7GV-idqz-xXjuuDrGsf6yT32OF0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:e7:fa:71:26:27:84:8f:41:b2:5f:91:4b:c6:ea:79:91:32:
         51:79:95:5d:fd:9e:e4:2c:b8:d8:83:64:4f:2f:2f:40:f9:db:
         94:49:0d:fc:8f:15:42:f8:40:77:6b:15:f1:18:91:54:97:98:
         f5:f0:7b:79:7f:ab:7f:1d:db:84:ee:48:d2:48:2f:0c:24:0c:
         41:3a:f5:67:63:53:83:d9:6b:02:d6:47:16:5d:e7:db:0d:01:
         41:fd:bd:87:8d:d9:1f:df:0e:9a:34:a3:a4:1d:d1:18:68:d3:
         59:89:06:f3:c9:03:50:15:16:5e:d6:27:07:9c:37:2c:6e:e8:
         f4:50:bd:5b:65:52:f7:6c:72:f6:3e:da:01:58:2a:70:de:9b:
         12:92:42:a8:42:e8:19:7d:f2:79:de:19:c9:76:65:1b:d9:03:
         f3:42:0f:95:54:ac:81:f7:bd:65:e9:c8:5e:aa:d1:bf:ff:92:
         10:9b:3b:55:41:2a:e5:5a:e5:a9:61:48:ad:a6:22:a5:ee:6b:
         ce:dc:8c:ec:68:95:8c:7c:22:7a:c3:13:bd:80:55:e1:02:9d:
         79:c5:fd:d7:eb:26:54:17:dc:04:5c:54:a9:3b:4f:6b:e1:39:
         24:bc:39:64:03:a3:ed:bb:3e:51:e1:d8:de:56:48:7c:49:ac:
         3b:1c:8e:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----