Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/e0201f-8d18-48fd-a677-0d270462b7d7/1/9efoeENmtHGmpODICA-PENrmalA.mft
File:                     9efoeENmtHGmpODICA-PENrmalA.mft (raw, json)
Hash identifier:          9gXCK+E51bDajtFt6c1tgjVapD1Y/du30jdW3tus9G8=
Subject key identifier:   C7:9F:1D:8B:88:8A:6F:52:FA:26:84:B7:B0:6D:2E:0B:66:CB:01:74
Authority key identifier: F5:E7:E8:78:43:66:B4:71:A6:A4:E0:C8:08:0F:8F:10:DA:E6:6A:50
Certificate issuer:       /CN=f5e7e8784366b471a6a4e0c8080f8f10dae66a50
Certificate serial:       019EBD6C643F2024F9590EB76D3CC46626BC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9efoeENmtHGmpODICA-PENrmalA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ee/e0201f-8d18-48fd-a677-0d270462b7d7/1/9efoeENmtHGmpODICA-PENrmalA.mft
Manifest number:          115D
Signing time:             Fri 12 Jun 2026 20:00:57 +0000
Manifest this update:     Fri 12 Jun 2026 20:00:57 +0000
Manifest next update:     Sat 13 Jun 2026 20:00:57 +0000
Files and hashes:         1: 9efoeENmtHGmpODICA-PENrmalA.crl (hash: Wxn/yEf7J/K9Ejxal+yR7KHKobLwlvIjMJ+Un6DXEDk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ee/e0201f-8d18-48fd-a677-0d270462b7d7/1/9efoeENmtHGmpODICA-PENrmalA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ee/e0201f-8d18-48fd-a677-0d270462b7d7/1/9efoeENmtHGmpODICA-PENrmalA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9efoeENmtHGmpODICA-PENrmalA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 13 Jun 2026 20:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:bd:6c:64:3f:20:24:f9:59:0e:b7:6d:3c:c4:66:26:bc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f5e7e8784366b471a6a4e0c8080f8f10dae66a50
        Validity
            Not Before: Jun 12 20:00:57 2026 GMT
            Not After : Jun 13 20:00:57 2026 GMT
        Subject: CN=c79f1d8b888a6f52fa2684b7b06d2e0b66cb0174
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:b2:66:1a:ec:20:f8:4c:94:53:7b:10:b0:d2:
                    a7:f9:e0:34:9b:b9:74:66:03:da:b7:58:3f:b9:80:
                    24:8d:f4:4e:76:fa:f1:97:54:a9:bf:10:91:8f:a7:
                    9b:31:2d:66:26:bb:1b:cd:1c:47:63:41:41:be:bb:
                    c0:c2:b2:27:ca:10:49:49:11:5b:06:b1:1f:1b:7a:
                    ee:0c:99:7e:23:22:23:3d:53:cc:49:97:aa:0b:dd:
                    8f:c1:a2:aa:18:2a:38:0c:c7:2a:00:b4:fb:75:42:
                    4f:9f:1d:27:0a:bc:9e:df:97:ec:44:56:70:82:90:
                    e2:c5:62:4c:ae:47:6d:5f:68:c8:3c:a1:70:24:39:
                    e7:1c:59:30:80:27:65:55:71:91:91:40:e1:4e:1f:
                    2d:9f:92:b7:e0:fd:08:5c:db:cd:8c:6e:08:e0:a7:
                    ff:c2:d3:fa:43:cd:86:1a:93:d7:ea:06:e3:33:52:
                    a3:85:30:09:24:d4:a5:52:76:a8:15:6b:fa:d4:06:
                    ad:53:61:5b:40:f9:fe:50:b6:3b:b4:2f:cb:74:3a:
                    0d:c1:33:05:ba:7e:0a:32:6a:81:e1:14:4a:cf:9f:
                    dc:1e:6d:2d:8a:b0:ba:18:47:85:01:2d:ef:ae:38:
                    3d:da:ef:54:4e:19:e1:86:cb:dd:dd:be:3b:3d:6b:
                    e2:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C7:9F:1D:8B:88:8A:6F:52:FA:26:84:B7:B0:6D:2E:0B:66:CB:01:74
            X509v3 Authority Key Identifier:
                keyid:F5:E7:E8:78:43:66:B4:71:A6:A4:E0:C8:08:0F:8F:10:DA:E6:6A:50

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9efoeENmtHGmpODICA-PENrmalA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/e0201f-8d18-48fd-a677-0d270462b7d7/1/9efoeENmtHGmpODICA-PENrmalA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/e0201f-8d18-48fd-a677-0d270462b7d7/1/9efoeENmtHGmpODICA-PENrmalA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6a:63:76:86:c2:25:4a:1f:b1:e2:f1:58:f2:94:5d:53:21:9d:
         7f:b6:4e:30:f0:5b:3d:cd:aa:73:b8:03:66:12:a6:35:85:c1:
         60:b3:0a:35:55:83:22:e3:7b:43:11:52:67:03:05:f9:d9:f6:
         db:91:1a:c3:8f:a2:61:ed:e1:ac:d1:30:4f:5e:d7:40:48:94:
         ce:99:bf:12:d8:78:b8:f4:63:94:f3:45:63:49:00:72:26:84:
         da:4e:5d:61:6b:5e:e8:df:27:5d:91:f2:aa:2b:68:0b:a9:34:
         53:2a:90:e8:50:86:53:8a:7b:53:91:46:16:1d:29:70:6c:86:
         6a:cb:e0:16:00:ff:81:a1:3b:8c:ae:9d:d9:63:49:a0:42:e5:
         5a:e7:8c:27:28:a7:e2:ed:03:dd:39:5f:81:16:9f:af:94:66:
         7e:5f:f0:de:ed:29:04:af:10:fd:2b:b2:d5:c7:f3:9d:fa:d1:
         24:f2:d1:f7:60:5d:6c:18:86:4c:90:35:22:98:03:56:35:05:
         f7:eb:bb:47:86:b0:dd:37:05:75:59:09:a7:31:7b:bb:42:03:
         9d:f2:26:37:be:67:a2:09:c9:b4:01:44:6c:34:c0:b4:1d:00:
         7f:92:f4:85:e0:85:3c:bc:fc:48:b0:9e:92:83:9e:68:cb:cb:
         09:06:2b:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ69bGQ/ICT5WQ63bTzEZia8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1ZTdlODc4NDM2NmI0NzFhNmE0ZTBjODA4MGY4ZjEwZGFl
NjZhNTAwHhcNMjYwNjEyMjAwMDU3WhcNMjYwNjEzMjAwMDU3WjAzMTEwLwYDVQQD
EyhjNzlmMWQ4Yjg4OGE2ZjUyZmEyNjg0YjdiMDZkMmUwYjY2Y2IwMTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3rJmGuwg+EyUU3sQsNKn+eA0m7l0
ZgPat1g/uYAkjfROdvrxl1SpvxCRj6ebMS1mJrsbzRxHY0FBvrvAwrInyhBJSRFb
BrEfG3ruDJl+IyIjPVPMSZeqC92PwaKqGCo4DMcqALT7dUJPnx0nCrye35fsRFZw
gpDixWJMrkdtX2jIPKFwJDnnHFkwgCdlVXGRkUDhTh8tn5K34P0IXNvNjG4I4Kf/
wtP6Q82GGpPX6gbjM1KjhTAJJNSlUnaoFWv61AatU2FbQPn+ULY7tC/LdDoNwTMF
un4KMmqB4RRKz5/cHm0tirC6GEeFAS3vrjg92u9UThnhhsvd3b47PWviTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMefHYuIim9S+iaEt7BtLgtmywF0MB8GA1UdIwQY
MBaAFPXn6HhDZrRxpqTgyAgPjxDa5mpQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWVmb2VFTm10SEdtcE9ESUNBLVBFTnJtYWxBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9lMDIwMWYtOGQxOC00OGZkLWE2Nzct
MGQyNzA0NjJiN2Q3LzEvOWVmb2VFTm10SEdtcE9ESUNBLVBFTnJtYWxBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS9lMDIwMWYtOGQxOC00OGZkLWE2NzctMGQyNzA0NjJiN2Q3
LzEvOWVmb2VFTm10SEdtcE9ESUNBLVBFTnJtYWxBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAamN2hsIl
Sh+x4vFY8pRdUyGdf7ZOMPBbPc2qc7gDZhKmNYXBYLMKNVWDIuN7QxFSZwMF+dn2
25Eaw4+iYe3hrNEwT17XQEiUzpm/Eth4uPRjlPNFY0kAciaE2k5dYWte6N8nXZHy
qitoC6k0UyqQ6FCGU4p7U5FGFh0pcGyGasvgFgD/gaE7jK6d2WNJoELlWueMJyin
4u0D3TlfgRafr5Rmfl/w3u0pBK8Q/Suy1cfznfrRJPLR92BdbBiGTJA1IpgDVjUF
9+u7R4aw3TcFdVkJpzF7u0IDnfImN75nognJtAFEbDTAtB0Af5L0heCFPLz8SLCe
koOeaMvLCQYr3g==
-----END CERTIFICATE-----