Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft
File:                     BgPfkU3wTkf1a9li8vncPwQ0pdM.mft (raw, json)
Hash identifier:          pmdGriYBfGr7fyq2PCKAEVBykJHg+r9jA8XJ6XpVVXI=
Subject key identifier:   E5:C0:F0:47:BF:1A:C6:D6:F5:0A:46:AA:BF:48:68:F6:86:50:0F:69
Authority key identifier: 06:03:DF:91:4D:F0:4E:47:F5:6B:D9:62:F2:F9:DC:3F:04:34:A5:D3
Certificate issuer:       /CN=0603df914df04e47f56bd962f2f9dc3f0434a5d3
Certificate serial:       019EBEEC7231FF683412471ACAB51ED9E717
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft
Manifest number:          0BA4
Signing time:             Sat 13 Jun 2026 03:00:27 +0000
Manifest this update:     Sat 13 Jun 2026 03:00:27 +0000
Manifest next update:     Sun 14 Jun 2026 03:00:27 +0000
Files and hashes:         1: BgPfkU3wTkf1a9li8vncPwQ0pdM.crl (hash: vRq9C0lXoz9R3yM43FTMLxoJhHtut+5bJP/Xa+OXPWk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 03:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:ec:72:31:ff:68:34:12:47:1a:ca:b5:1e:d9:e7:17
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0603df914df04e47f56bd962f2f9dc3f0434a5d3
        Validity
            Not Before: Jun 13 03:00:27 2026 GMT
            Not After : Jun 14 03:00:27 2026 GMT
        Subject: CN=e5c0f047bf1ac6d6f50a46aabf4868f686500f69
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:bb:d9:38:88:88:44:1d:f6:fb:e5:ed:f5:ba:
                    bc:06:b7:20:02:3f:3e:a1:0a:da:c6:7d:98:1c:d6:
                    0a:83:2f:47:f4:02:e3:11:7c:0b:42:46:0e:af:77:
                    fb:f1:f1:f8:b0:de:b3:c6:45:33:d2:33:6e:b5:ff:
                    1c:76:34:48:ff:14:b1:ef:70:11:a3:c4:58:7b:2e:
                    18:87:a3:fd:21:5f:b2:7b:f8:a5:a2:24:bf:70:a8:
                    f5:e7:12:af:19:6a:71:e4:a6:75:c8:da:37:7c:eb:
                    e9:2f:31:61:f9:ed:de:a9:2e:4a:b4:e3:e9:bd:a4:
                    8e:89:ce:db:2a:48:f1:46:e3:66:a1:46:24:c7:73:
                    39:7f:19:ad:90:79:05:c8:f7:6f:60:94:4f:04:4b:
                    bb:7f:67:44:af:f8:18:06:73:c4:38:6d:85:7b:98:
                    1e:2b:40:5c:1a:84:54:52:98:bc:e1:82:e0:9d:7d:
                    65:3c:8a:65:ba:e6:bf:c9:f9:6e:0a:4c:a5:7b:4e:
                    1d:b4:84:0d:13:ca:4e:6d:ab:d7:c5:6e:6e:a6:7c:
                    34:d9:27:04:d2:43:cf:5a:8b:1e:3e:9f:cb:e3:40:
                    83:17:06:07:7d:08:81:99:8a:42:07:10:9f:81:9c:
                    1a:42:7a:d2:0a:32:d7:e6:cf:b8:8e:9d:0b:67:33:
                    17:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:C0:F0:47:BF:1A:C6:D6:F5:0A:46:AA:BF:48:68:F6:86:50:0F:69
            X509v3 Authority Key Identifier:
                keyid:06:03:DF:91:4D:F0:4E:47:F5:6B:D9:62:F2:F9:DC:3F:04:34:A5:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:77:41:11:a6:0d:71:c6:be:52:41:99:16:2c:32:f9:4c:85:
         9f:c1:8a:e6:57:f3:b6:bf:76:40:c4:93:f2:53:b3:75:29:a4:
         89:0e:fe:62:51:84:7a:56:8d:c7:6e:34:50:91:df:f8:81:97:
         28:90:c5:0e:02:94:21:c7:b2:64:12:90:32:44:85:c5:a6:5a:
         dc:73:65:5a:ae:27:2c:3a:43:d9:2c:e2:fa:6a:b8:2e:3d:a5:
         9b:0f:a9:2a:95:f7:d4:b3:55:32:43:8d:2b:49:fe:d2:fc:7e:
         2f:e1:6b:bf:ee:07:c6:aa:52:a2:cd:f9:d0:3d:90:b9:e2:a0:
         32:e5:5a:dc:05:e5:a0:13:53:5b:ea:ad:e2:ca:fd:10:4e:7e:
         cb:dd:98:a5:7f:c4:1b:07:ce:67:3d:dc:2b:05:85:f2:60:1e:
         d7:c6:04:89:6e:ed:e5:b7:26:53:43:9f:f6:40:18:98:23:9c:
         d0:d7:cd:69:ca:d1:2c:dd:2b:bf:cb:b2:5b:91:76:7d:21:eb:
         19:5e:c1:4e:51:d2:b3:b3:99:7f:2b:e2:dc:4a:19:b0:11:b3:
         bc:5f:05:72:5a:50:b1:14:ca:91:fc:44:4d:17:48:7e:39:4b:
         ec:36:97:2c:8a:17:38:ee:77:df:d9:35:b8:75:28:73:e9:46:
         8f:e4:1f:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----