Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.mft
File:                     AhaSppUBf7XEv4wjgHjzA9j78Ic.mft (raw, json)
Hash identifier:          1wSjE2idObXx9A12xDbSeYKG/sdgHC5WfLaweP0ku7A=
Subject key identifier:   00:FA:25:29:CD:99:ED:F3:33:0F:EF:D6:49:7C:3B:9B:EA:05:F8:9E
Authority key identifier: 02:16:92:A6:95:01:7F:B5:C4:BF:8C:23:80:78:F3:03:D8:FB:F0:87
Certificate issuer:       /CN=021692a695017fb5c4bf8c238078f303d8fbf087
Certificate serial:       019EBE7EFABE2161EE47E252687530185307
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AhaSppUBf7XEv4wjgHjzA9j78Ic.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.mft
Manifest number:          1955
Signing time:             Sat 13 Jun 2026 01:00:53 +0000
Manifest this update:     Sat 13 Jun 2026 01:00:53 +0000
Manifest next update:     Sun 14 Jun 2026 01:00:53 +0000
Files and hashes:         1: AhaSppUBf7XEv4wjgHjzA9j78Ic.crl (hash: iprd6mCm8L5jScrwHkpa5IBzqXjnnqhFP0NNMycHZhw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AhaSppUBf7XEv4wjgHjzA9j78Ic.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:7e:fa:be:21:61:ee:47:e2:52:68:75:30:18:53:07
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=021692a695017fb5c4bf8c238078f303d8fbf087
        Validity
            Not Before: Jun 13 01:00:53 2026 GMT
            Not After : Jun 14 01:00:53 2026 GMT
        Subject: CN=00fa2529cd99edf3330fefd6497c3b9bea05f89e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:37:89:e6:e7:7b:b9:98:16:09:e8:bc:3e:bd:
                    39:23:6c:c3:be:df:de:52:06:18:83:35:90:f2:59:
                    74:f7:c8:ee:0f:d9:ab:1b:25:c8:d2:ac:c6:90:40:
                    37:51:45:df:71:66:9c:c4:c6:29:a0:37:bf:26:b1:
                    c1:86:b9:f2:cd:7c:67:ab:ab:a6:a1:93:1f:d4:da:
                    e4:b8:8c:f4:47:ce:48:c2:80:3f:67:37:48:b2:e8:
                    9f:be:75:8c:7c:9d:a3:d5:de:f7:15:7d:4a:3a:d7:
                    74:f9:71:d6:6b:fd:cd:2b:b8:88:39:3c:c5:c7:fc:
                    d8:49:a7:54:25:a6:7d:86:0a:a2:5c:3b:5f:96:cb:
                    87:f0:24:a3:d9:79:2e:d3:ca:70:f3:1d:f4:d3:03:
                    4d:38:99:ab:85:88:96:dc:62:0d:dd:bd:9f:4c:fb:
                    b4:a2:09:64:eb:cc:62:32:5e:8d:af:49:67:eb:9a:
                    94:0b:0e:69:2c:64:f2:88:83:2b:7f:ed:a6:1d:74:
                    a0:66:15:4a:d5:c7:0c:87:5a:f1:40:cf:54:ba:3b:
                    54:a5:c0:27:49:3c:b3:b7:d1:92:a1:56:49:f3:11:
                    10:94:d6:74:e9:c9:14:b3:94:9b:7c:a4:4c:9f:4f:
                    16:93:d8:a0:d2:df:0c:9c:97:78:03:4d:22:94:a2:
                    fc:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:FA:25:29:CD:99:ED:F3:33:0F:EF:D6:49:7C:3B:9B:EA:05:F8:9E
            X509v3 Authority Key Identifier:
                keyid:02:16:92:A6:95:01:7F:B5:C4:BF:8C:23:80:78:F3:03:D8:FB:F0:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AhaSppUBf7XEv4wjgHjzA9j78Ic.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/13bed5-8d34-4d3d-8e05-48d25c0a495f/1/AhaSppUBf7XEv4wjgHjzA9j78Ic.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:08:d7:91:be:3a:f3:36:42:7b:c1:5b:2c:46:c1:a7:28:a0:
         db:5d:98:24:f9:13:19:0e:57:d0:91:a5:1e:32:c2:e3:32:bf:
         ed:4f:9d:27:1f:5d:03:e6:b3:01:47:29:0b:1b:69:a1:ec:44:
         2f:fa:1e:60:ae:87:3f:68:88:2a:dd:f5:d6:c4:1d:d9:c9:80:
         a0:38:16:c4:37:4c:c3:5c:f7:7e:7c:ad:65:46:bd:95:3c:69:
         3a:68:54:0f:9e:97:79:09:6e:27:77:00:76:5e:80:ab:a0:7a:
         d5:99:8d:9d:95:b1:05:37:2f:51:08:0e:e9:89:83:8c:e5:fb:
         42:8f:f0:de:23:0d:1e:fb:01:67:a6:82:6e:90:df:37:05:8a:
         4b:a2:ae:44:e9:66:4d:27:83:18:56:f2:bd:ae:ab:0c:4e:1d:
         03:d5:e5:73:32:93:ff:0f:d3:6a:82:32:cd:01:08:23:5a:b8:
         cd:0f:73:37:9d:c2:31:fc:fc:7f:56:1e:39:e5:e2:de:64:b4:
         3a:8d:9d:c5:1d:e0:4a:12:6c:ea:4a:66:75:40:59:ca:ef:b6:
         40:56:2b:2b:31:5e:4e:75:c6:7d:ef:95:c3:f6:cb:b6:c7:2b:
         49:60:a3:eb:02:eb:21:23:3e:52:f0:a6:f8:ba:c6:5e:8c:53:
         85:05:40:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----