Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
File:                     EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft (raw, json)
Hash identifier:          IE/fXloD08kq6huHrdxfLNIA2w5bL8MiYzkIOxtXzK4=
Subject key identifier:   82:02:DE:D1:1A:13:71:EA:CC:EF:2E:DF:4D:03:3B:02:4D:F0:50:FA
Authority key identifier: 10:38:D7:A2:95:4A:32:D2:AF:D1:6B:88:B3:63:B3:90:68:1C:D5:93
Certificate issuer:       /CN=1038d7a2954a32d2afd16b88b363b390681cd593
Certificate serial:       019EBE7EB9D5C03F9CA8DDA8BDDE9CEDACC3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
Manifest number:          122C
Signing time:             Sat 13 Jun 2026 01:00:36 +0000
Manifest this update:     Sat 13 Jun 2026 01:00:36 +0000
Manifest next update:     Sun 14 Jun 2026 01:00:36 +0000
Files and hashes:         1: EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl (hash: F52akclMznQjsSBLyVRwE6SupsQuXIVEsO1u6KdMNFE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 01:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:be:7e:b9:d5:c0:3f:9c:a8:dd:a8:bd:de:9c:ed:ac:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1038d7a2954a32d2afd16b88b363b390681cd593
        Validity
            Not Before: Jun 13 01:00:36 2026 GMT
            Not After : Jun 14 01:00:36 2026 GMT
        Subject: CN=8202ded11a1371eaccef2edf4d033b024df050fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:aa:18:d1:50:dd:24:6e:15:9d:2c:5f:8a:83:
                    3a:3a:d7:95:15:82:9a:f5:b1:2d:25:e4:4d:e6:67:
                    d6:c1:0e:c7:5e:9a:7e:a4:b1:09:f2:54:db:68:24:
                    6b:8e:28:41:f5:df:74:a6:52:01:7c:70:12:01:9b:
                    bd:20:8b:0a:37:e0:3c:21:e9:ca:c2:b6:42:74:c3:
                    06:4a:30:5d:02:79:01:bb:3c:f2:48:88:81:10:cf:
                    68:d8:2e:cb:9a:85:2c:41:45:91:6d:4b:c7:1d:ae:
                    74:db:00:0b:b4:ce:25:29:78:2b:38:77:bb:53:1e:
                    b0:5b:8f:8e:40:b4:a8:8b:6f:63:95:54:2c:e8:40:
                    d9:cb:b5:bd:05:7a:04:6a:4e:2b:b2:ed:a7:99:4c:
                    6c:e2:c6:6a:96:98:2b:61:03:bb:66:9c:b2:69:09:
                    e9:d2:0c:3b:e8:be:0f:0f:cf:a2:ce:7c:4a:90:9d:
                    87:2e:54:f1:70:f9:86:cf:18:b8:58:11:4f:2e:96:
                    62:37:fd:df:77:d3:6e:66:9e:60:29:18:91:b2:12:
                    4e:cd:8f:eb:f7:2e:4e:26:99:e2:49:b1:05:75:47:
                    fe:23:ff:c9:28:73:5f:43:b1:d8:68:3e:5f:fe:7a:
                    98:b2:7c:58:84:36:c1:24:ba:6e:21:bb:8c:31:5f:
                    6e:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                82:02:DE:D1:1A:13:71:EA:CC:EF:2E:DF:4D:03:3B:02:4D:F0:50:FA
            X509v3 Authority Key Identifier:
                keyid:10:38:D7:A2:95:4A:32:D2:AF:D1:6B:88:B3:63:B3:90:68:1C:D5:93

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d6:54:f4:65:22:64:5a:bb:56:e0:c3:03:73:fa:5f:ac:81:a7:
         45:5b:5b:a7:6b:3c:06:4e:45:84:3a:5c:9c:50:f3:c1:da:30:
         2d:97:e7:3e:ad:08:dc:40:16:7e:eb:a5:b9:57:c3:22:20:68:
         48:dd:d9:8a:bd:8e:27:87:cb:20:57:a3:63:d5:53:38:6e:76:
         3f:d1:c5:ac:d3:f1:fd:e1:75:99:e1:1b:6c:e6:38:82:3d:2f:
         89:23:83:93:fb:12:05:06:7c:e1:d1:55:a3:d9:0b:1d:b6:e4:
         fb:ff:c1:f5:c3:55:88:10:e1:4b:5c:37:68:79:b6:4f:04:14:
         0c:e8:20:f6:3a:d5:23:88:5f:53:91:9c:d6:b7:b9:b1:15:21:
         8b:53:87:99:4f:6f:62:80:c3:85:74:67:f9:c4:9f:66:a1:5b:
         75:bf:a1:4d:c5:d6:2b:ae:14:da:4a:54:b9:1e:2a:d1:b0:93:
         94:24:c8:43:ee:69:c5:1a:a2:91:35:39:47:ec:79:63:a9:7b:
         1c:0d:fd:31:d9:c2:b5:6e:aa:87:0c:56:f0:65:f3:da:98:6f:
         78:f0:b2:78:f4:2a:f0:be:cb:87:d9:6d:fc:62:64:0a:85:4d:
         8d:c5:9c:05:9c:98:48:c7:6a:25:56:14:be:35:04:b4:d2:16:
         11:b2:1b:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6+frnVwD+cqN2ovd6c7azDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwMzhkN2EyOTU0YTMyZDJhZmQxNmI4OGIzNjNiMzkwNjgx
Y2Q1OTMwHhcNMjYwNjEzMDEwMDM2WhcNMjYwNjE0MDEwMDM2WjAzMTEwLwYDVQQD
Eyg4MjAyZGVkMTFhMTM3MWVhY2NlZjJlZGY0ZDAzM2IwMjRkZjA1MGZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxqoY0VDdJG4VnSxfioM6OteVFYKa
9bEtJeRN5mfWwQ7HXpp+pLEJ8lTbaCRrjihB9d90plIBfHASAZu9IIsKN+A8IenK
wrZCdMMGSjBdAnkBuzzySIiBEM9o2C7LmoUsQUWRbUvHHa502wALtM4lKXgrOHe7
Ux6wW4+OQLSoi29jlVQs6EDZy7W9BXoEak4rsu2nmUxs4sZqlpgrYQO7ZpyyaQnp
0gw76L4PD8+iznxKkJ2HLlTxcPmGzxi4WBFPLpZiN/3fd9NuZp5gKRiRshJOzY/r
9y5OJpniSbEFdUf+I//JKHNfQ7HYaD5f/nqYsnxYhDbBJLpuIbuMMV9uwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIIC3tEaE3HqzO8u300DOwJN8FD6MB8GA1UdIwQY
MBaAFBA416KVSjLSr9FriLNjs5BoHNWTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRURqWG9wVktNdEt2MFd1SXMyT3prR2djMVpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC82Mjc1NTctNzhhOC00YjRlLWEzYjgt
OWE4MThkZGQxNTU4LzEvRURqWG9wVktNdEt2MFd1SXMyT3prR2djMVpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC82Mjc1NTctNzhhOC00YjRlLWEzYjgtOWE4MThkZGQxNTU4
LzEvRURqWG9wVktNdEt2MFd1SXMyT3prR2djMVpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1lT0ZSJk
WrtW4MMDc/pfrIGnRVtbp2s8Bk5FhDpcnFDzwdowLZfnPq0I3EAWfuuluVfDIiBo
SN3Zir2OJ4fLIFejY9VTOG52P9HFrNPx/eF1meEbbOY4gj0viSODk/sSBQZ84dFV
o9kLHbbk+//B9cNViBDhS1w3aHm2TwQUDOgg9jrVI4hfU5Gc1re5sRUhi1OHmU9v
YoDDhXRn+cSfZqFbdb+hTcXWK64U2kpUuR4q0bCTlCTIQ+5pxRqikTU5R+x5Y6l7
HA39MdnCtW6qhwxW8GXz2phvePCyePQq8L7Lh9lt/GJkCoVNjcWcBZyYSMdqJVYU
vjUEtNIWEbIbtg==
-----END CERTIFICATE-----