Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.mft
File:                     9fqTbNBbJl9g8zNAqMY952gvw18.mft (raw, json)
Hash identifier:          gaRH9ehAMySsaJ19LQaDx9Gy882k1P5dTrOmib3GyCg=
Subject key identifier:   91:07:DC:E2:0B:3D:20:92:F5:58:7B:9F:92:04:2F:D9:6E:7B:88:1A
Authority key identifier: F5:FA:93:6C:D0:5B:26:5F:60:F3:33:40:A8:C6:3D:E7:68:2F:C3:5F
Certificate issuer:       /CN=f5fa936cd05b265f60f33340a8c63de7682fc35f
Certificate serial:       019EC1B6DBECC651D9866AD0E3B9DA09E9A8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9fqTbNBbJl9g8zNAqMY952gvw18.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.mft
Manifest number:          0948
Signing time:             Sat 13 Jun 2026 16:00:46 +0000
Manifest this update:     Sat 13 Jun 2026 16:00:46 +0000
Manifest next update:     Sun 14 Jun 2026 16:00:46 +0000
Files and hashes:         1: 9fqTbNBbJl9g8zNAqMY952gvw18.crl (hash: 7OnXyrC6Z7rEPP2j/uj0t9d+JaGWCjdk3EXITlU/Sq8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9fqTbNBbJl9g8zNAqMY952gvw18.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 14 Jun 2026 16:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:c1:b6:db:ec:c6:51:d9:86:6a:d0:e3:b9:da:09:e9:a8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f5fa936cd05b265f60f33340a8c63de7682fc35f
        Validity
            Not Before: Jun 13 16:00:46 2026 GMT
            Not After : Jun 14 16:00:46 2026 GMT
        Subject: CN=9107dce20b3d2092f5587b9f92042fd96e7b881a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:e4:c5:35:de:d4:55:e9:a8:87:87:c7:4b:c3:
                    0d:62:ad:f4:58:1a:54:f8:35:d3:21:3c:05:80:38:
                    e0:b0:ab:ab:46:ae:21:1e:4a:6a:39:41:a8:b4:09:
                    03:76:ce:43:89:56:10:43:a3:77:6c:63:4d:40:17:
                    58:e3:9c:3b:6c:c3:88:e1:cb:2a:f0:05:ac:70:f1:
                    aa:e1:7a:ce:ea:01:32:47:01:a0:e8:d8:d0:0f:44:
                    31:c6:91:c4:8b:5c:8a:88:06:f7:0b:82:47:0e:04:
                    28:90:a1:72:8d:46:77:7b:6f:f2:4e:ef:43:5e:42:
                    e5:5c:07:ca:c7:6d:38:8f:90:af:dc:31:dd:5f:21:
                    b4:66:8a:03:9c:7d:2d:4f:6a:8a:2c:fd:99:b9:90:
                    2d:06:13:ef:4b:6a:a3:d3:cc:9d:08:d7:cd:79:cf:
                    86:96:09:6d:d2:2a:c7:a8:e8:98:91:b3:b1:cf:87:
                    7c:f5:7f:cc:46:19:b8:e0:c2:ea:12:a0:ba:25:7c:
                    ff:55:f9:fa:3d:4d:81:4f:f3:77:cc:ad:d2:37:22:
                    3c:29:6d:e2:e3:ae:7a:eb:4a:56:01:db:d8:a5:a4:
                    39:43:ea:b4:53:a3:1b:da:62:23:af:58:b5:fa:0c:
                    eb:05:d7:22:52:49:e0:98:24:22:f5:b9:58:bd:86:
                    1e:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:07:DC:E2:0B:3D:20:92:F5:58:7B:9F:92:04:2F:D9:6E:7B:88:1A
            X509v3 Authority Key Identifier:
                keyid:F5:FA:93:6C:D0:5B:26:5F:60:F3:33:40:A8:C6:3D:E7:68:2F:C3:5F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9fqTbNBbJl9g8zNAqMY952gvw18.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/6e7670-631d-4787-aeda-f1586fbde81a/1/9fqTbNBbJl9g8zNAqMY952gvw18.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:14:25:97:f3:f4:72:d9:ad:69:04:1f:82:6d:e2:66:fb:bc:
         6d:f3:e9:24:41:6e:76:52:17:d8:4a:70:87:68:55:ad:ef:61:
         90:7d:2a:45:57:70:0a:c3:b0:74:0b:ed:52:59:54:6e:5a:8b:
         cc:f6:cc:bf:50:a7:91:5a:9b:89:1c:4c:fd:df:39:ca:6f:00:
         5d:31:07:27:f7:8b:d9:fe:d1:90:94:bf:8d:a2:e9:33:7d:0d:
         b8:18:9f:2c:57:6e:d5:ae:29:73:86:97:a0:5d:8c:03:73:dd:
         5c:b7:c7:ac:6c:27:a7:a4:36:a2:ec:4e:37:65:4c:23:77:64:
         b4:d0:d8:e4:9c:f9:b4:57:5a:cd:73:36:a0:c1:b4:a5:e6:e0:
         5e:89:c1:d6:26:7b:fd:9f:8a:77:2b:9a:a2:98:44:66:3e:df:
         20:62:6e:e6:3a:0b:1e:b9:4d:08:14:d0:29:5f:66:67:99:f6:
         24:e4:24:04:3c:66:4c:18:bd:07:fa:8b:ac:12:98:3c:1d:be:
         1a:6f:e7:d0:a9:c0:3b:54:bb:f7:a7:d6:6d:5b:c1:48:c7:9b:
         e0:e4:46:07:5f:1c:b7:2d:7a:98:f6:ff:47:37:8b:26:c7:b6:
         4b:18:8c:2a:62:b4:b1:87:2c:87:32:9a:e4:53:5d:6e:00:55:
         b7:82:d4:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----