Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
File:                     Afp6rPiShM693j1MEkYvxE3rw4Q.mft (raw, json)
Hash identifier:          qPGhT24LfBl0dJ/TaAHoYUbbgmZwwot26fdZYlFeVh4=
Subject key identifier:   F4:B1:25:9B:2D:62:EC:8B:99:6A:1C:27:C4:14:63:B2:E0:35:CB:39
Authority key identifier: 01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84
Certificate issuer:       /CN=01fa7aacf89284cebdde3d4c12462fc44debc384
Certificate serial:       019EBF5A829FE8BD63D8E3E36DE65D19233C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
Manifest number:          0EF5
Signing time:             Sat 13 Jun 2026 05:00:40 +0000
Manifest this update:     Sat 13 Jun 2026 05:00:40 +0000
Manifest next update:     Sun 14 Jun 2026 05:00:40 +0000
Files and hashes:         1: Afp6rPiShM693j1MEkYvxE3rw4Q.crl (hash: mY9saJExRM0xRLTC3GDcUEihxqgVN5ck0fXkfUO6ee0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:bf:5a:82:9f:e8:bd:63:d8:e3:e3:6d:e6:5d:19:23:3c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=01fa7aacf89284cebdde3d4c12462fc44debc384
        Validity
            Not Before: Jun 13 05:00:40 2026 GMT
            Not After : Jun 14 05:00:40 2026 GMT
        Subject: CN=f4b1259b2d62ec8b996a1c27c41463b2e035cb39
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:a5:19:82:b0:bd:ad:fa:b1:3d:fe:ca:0e:70:
                    df:d9:86:ca:ae:e7:ec:e6:b3:82:8b:12:17:52:b7:
                    ff:c0:d5:09:61:cb:00:4e:fd:c7:23:84:cd:01:ed:
                    a7:dc:ca:36:a3:64:fa:c6:fe:fb:8a:92:90:42:21:
                    25:42:2a:72:c0:fe:27:7d:3c:07:53:ac:02:54:71:
                    da:08:fe:c2:e3:11:38:53:e6:aa:17:4d:02:df:51:
                    d2:7e:8e:b8:7f:88:eb:f2:27:19:b8:c3:28:ee:4c:
                    40:71:b8:f9:31:73:f8:65:d8:04:e5:30:b9:81:1d:
                    89:77:03:7e:79:a1:90:9e:4a:11:c9:1d:65:be:c8:
                    fb:0b:01:6a:ee:24:8d:71:c9:67:7f:c5:08:51:28:
                    bc:16:d2:45:0b:cf:12:97:74:bb:3e:68:6b:62:4a:
                    40:24:b7:7f:64:71:b8:0b:36:e3:55:c5:fc:7a:04:
                    ea:ec:20:03:ea:65:a3:e6:ce:34:ac:e1:39:02:e8:
                    eb:9b:d4:1a:7c:6b:22:3f:50:a4:d1:30:ec:ba:52:
                    0f:89:63:16:a7:81:d2:f4:59:d8:0b:c0:27:93:73:
                    ca:7f:27:3a:d1:d2:93:8d:36:1c:e3:80:a8:a2:a8:
                    4d:99:44:69:8d:03:8b:5d:69:7d:6f:5d:96:d0:2f:
                    0a:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:B1:25:9B:2D:62:EC:8B:99:6A:1C:27:C4:14:63:B2:E0:35:CB:39
            X509v3 Authority Key Identifier:
                keyid:01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         13:1f:e2:cd:09:df:87:0f:26:fb:ff:c4:53:dc:85:5c:26:95:
         cf:27:ad:4e:b9:bb:e8:c4:f7:58:4d:3e:7a:f3:ef:a3:68:93:
         73:3d:8e:9f:38:a3:97:9c:03:3b:63:d6:31:c5:cb:4f:66:ca:
         4f:1a:2b:1e:b3:5c:15:8b:af:94:67:05:67:65:ac:57:8c:2c:
         dd:48:f2:87:b2:57:75:7c:38:7c:67:41:c5:64:77:29:1e:34:
         93:e7:c8:47:bb:4e:75:8c:24:3b:70:62:b6:f8:9a:37:aa:f0:
         4a:af:aa:05:2a:82:09:28:fb:43:33:48:f8:9f:9d:c0:ec:ac:
         49:f0:2e:88:10:86:9c:d9:12:70:01:41:36:d2:87:e1:64:bf:
         5d:dd:26:5c:b8:97:58:47:cc:d7:b9:7a:be:d8:35:06:57:f1:
         24:f9:93:4a:76:dc:08:1c:e3:c6:7f:36:1d:0c:56:b0:6b:49:
         f7:df:54:b1:dc:a6:d8:47:2a:6a:ed:c6:c8:ea:7b:9b:e9:50:
         c6:44:6f:47:ae:56:9e:ab:4c:6e:58:15:c1:16:86:9a:6c:95:
         4c:88:ef:0b:0a:a8:7d:4b:8b:ef:d3:ec:fc:48:48:e7:10:f4:
         31:7a:c4:ab:4d:74:65:69:b0:d1:e9:9e:be:52:67:be:db:17:
         5a:72:ec:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----