Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft
File:                     8j79S9kntM6jMSCiG09zFNy-oXk.mft (raw, json)
Hash identifier:          JpBCtsyZUeJOWmldmGAhiL38EVyGSwNHgxK//LnlP3k=
Subject key identifier:   BB:5A:BF:0D:70:4E:3F:6E:5D:DF:0B:54:25:05:A5:67:09:9B:E7:37
Authority key identifier: F2:3E:FD:4B:D9:27:B4:CE:A3:31:20:A2:1B:4F:73:14:DC:BE:A1:79
Certificate issuer:       /CN=f23efd4bd927b4cea33120a21b4f7314dcbea179
Certificate serial:       019EBF5A21D422FD02AA26B30DAA2F64198F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8j79S9kntM6jMSCiG09zFNy-oXk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft
Manifest number:          10FE
Signing time:             Sat 13 Jun 2026 05:00:15 +0000
Manifest this update:     Sat 13 Jun 2026 05:00:15 +0000
Manifest next update:     Sun 14 Jun 2026 05:00:15 +0000
Files and hashes:         1: 8j79S9kntM6jMSCiG09zFNy-oXk.crl (hash: JBsWMw+lZEdRk4WIPdXDhp2wcKsP1afrNvoNSq6MsEM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8j79S9kntM6jMSCiG09zFNy-oXk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:bf:5a:21:d4:22:fd:02:aa:26:b3:0d:aa:2f:64:19:8f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f23efd4bd927b4cea33120a21b4f7314dcbea179
        Validity
            Not Before: Jun 13 05:00:15 2026 GMT
            Not After : Jun 14 05:00:15 2026 GMT
        Subject: CN=bb5abf0d704e3f6e5ddf0b542505a567099be737
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:e5:a4:1c:56:64:77:ff:70:97:35:df:60:46:
                    c5:27:48:fc:97:d1:72:8e:88:7f:a5:0c:bd:d8:28:
                    d0:61:3c:36:8f:40:3a:0d:01:d1:89:cd:95:c8:43:
                    3e:9b:6e:03:f0:6d:5f:dc:dd:e4:54:0c:3a:a8:b8:
                    9e:22:55:27:ea:d0:4e:4c:dc:53:b4:8a:a8:6f:35:
                    2c:70:e7:f1:0f:90:5f:71:e4:3c:70:b9:65:0a:5c:
                    d9:3c:e2:29:a2:32:44:55:4d:b8:2b:91:92:d4:6b:
                    db:b6:2b:83:15:ce:12:c7:3b:de:cc:5c:c6:49:2e:
                    58:be:21:4a:e0:59:55:8d:98:43:e9:23:ed:99:dd:
                    20:c0:99:7c:b4:bd:08:a4:14:fc:a8:de:33:4c:c6:
                    cf:7b:5f:b9:61:bf:7d:d5:6a:26:e0:01:1f:26:a4:
                    6f:a1:04:4f:92:a8:ae:08:ff:c0:14:07:5c:26:35:
                    81:48:9b:09:5b:43:a0:34:9c:a9:05:74:f8:20:e9:
                    40:ef:6c:b3:4b:e6:5a:94:b9:d0:e0:55:3d:0e:a8:
                    a9:0e:1d:65:50:d4:b0:ab:38:83:5b:36:74:cd:ce:
                    5d:ce:cb:2b:62:1d:6b:05:c5:59:47:b7:b2:3c:3d:
                    88:f7:e2:8c:69:fd:58:b8:1e:f3:03:df:19:54:2d:
                    4b:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:5A:BF:0D:70:4E:3F:6E:5D:DF:0B:54:25:05:A5:67:09:9B:E7:37
            X509v3 Authority Key Identifier:
                keyid:F2:3E:FD:4B:D9:27:B4:CE:A3:31:20:A2:1B:4F:73:14:DC:BE:A1:79

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8j79S9kntM6jMSCiG09zFNy-oXk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:74:b6:0e:53:57:7d:77:b6:df:a8:8d:62:53:8a:9b:1a:63:
         3d:97:89:b0:14:84:27:25:61:24:8d:6c:33:58:ff:48:a9:a0:
         2a:c7:b2:f8:2f:af:53:1b:b8:5a:9b:95:9b:04:26:9e:78:75:
         46:ed:0c:a5:d2:c6:b5:7a:56:bd:b0:8c:9a:ba:69:52:48:5e:
         e2:36:2b:96:d6:db:3a:ab:77:81:41:a9:76:3a:a4:25:77:5c:
         47:ab:c7:94:fa:ae:31:96:15:dd:b7:4e:6d:b9:8e:48:7e:0f:
         8e:f4:af:ab:75:72:f6:b6:ad:4b:ee:69:23:ea:8c:b4:7b:aa:
         99:0e:99:3d:ad:34:18:93:34:a9:9a:1c:76:cc:8e:53:4c:4d:
         98:3e:42:11:f2:b4:a4:71:17:29:2a:cf:c1:6d:9c:fc:95:82:
         32:e8:69:f0:88:9d:da:a2:9e:7a:dd:4c:2a:2a:ae:38:dd:fa:
         2d:a6:5f:67:76:f0:a1:c4:83:04:be:ec:26:59:9e:4a:b0:10:
         a7:61:d8:7c:bf:24:46:f6:ed:fd:98:eb:8e:ae:62:b3:7b:a8:
         52:7d:c5:27:76:a7:68:da:9b:03:b9:07:6e:07:e9:1a:58:54:
         b7:0d:a0:8c:30:31:76:4d:0e:f5:40:0a:7d:e9:f1:e1:de:6d:
         95:c4:87:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----