Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/fdc9b0-7185-4b18-857d-1d9fe8aa12ab/1/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.mft
File:                     BgGOe1K9MmiqTV06pXf0fQ8YdQQ.mft (raw, json)
Hash identifier:          w7ftsh3+spx6dtOLtKKtuZKf7wsFtRFY1jfvs5NiJKU=
Subject key identifier:   37:82:F0:E0:DA:2D:07:CA:16:AA:02:B5:34:9F:8A:FE:4A:57:32:7F
Authority key identifier: 06:01:8E:7B:52:BD:32:68:AA:4D:5D:3A:A5:77:F4:7D:0F:18:75:04
Certificate issuer:       /CN=06018e7b52bd3268aa4d5d3aa577f47d0f187504
Certificate serial:       019F1754D0E82B2CCF8A75A2429ABF988B10
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/01/fdc9b0-7185-4b18-857d-1d9fe8aa12ab/1/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.mft
Manifest number:          0E4F
Signing time:             Tue 30 Jun 2026 07:01:02 +0000
Manifest this update:     Tue 30 Jun 2026 07:01:02 +0000
Manifest next update:     Wed 01 Jul 2026 07:01:02 +0000
Files and hashes:         1: BgGOe1K9MmiqTV06pXf0fQ8YdQQ.crl (hash: 4pDxtlHtg75aZCCWr+MxJc3EvJan5sMawDqy8zZyH4M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/01/fdc9b0-7185-4b18-857d-1d9fe8aa12ab/1/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/01/fdc9b0-7185-4b18-857d-1d9fe8aa12ab/1/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 07:01:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:54:d0:e8:2b:2c:cf:8a:75:a2:42:9a:bf:98:8b:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=06018e7b52bd3268aa4d5d3aa577f47d0f187504
        Validity
            Not Before: Jun 30 07:01:02 2026 GMT
            Not After : Jul  1 07:01:02 2026 GMT
        Subject: CN=3782f0e0da2d07ca16aa02b5349f8afe4a57327f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:66:fb:5c:08:4f:b4:6d:57:4c:4f:33:fb:e7:
                    5b:ed:4a:de:a9:3a:95:0e:01:9f:90:98:1b:ca:e7:
                    fc:34:da:69:88:c6:42:32:5b:98:46:f8:3b:d7:09:
                    3a:28:1e:1b:87:e3:97:ee:d0:20:63:e7:06:dd:0a:
                    1e:b2:a7:58:5b:69:a3:b4:de:45:a7:fe:80:d0:01:
                    0d:85:84:05:59:c7:88:a7:45:f2:d1:77:f7:a7:3a:
                    05:76:77:c0:d5:d4:70:2f:d4:c0:fc:d4:ca:6a:3b:
                    7d:ab:c8:50:01:fd:5d:7f:ad:c4:97:37:2d:b3:8d:
                    01:9d:53:6e:ee:2f:b3:6a:7b:e6:82:9e:ef:d4:89:
                    1b:24:8b:9b:0a:a2:fc:f4:71:5e:86:f1:d4:95:b6:
                    5f:dc:a2:db:dc:78:15:38:78:ef:ab:dd:67:d0:b4:
                    98:13:43:50:a5:da:d5:81:e7:ee:0a:4e:62:ce:43:
                    83:97:59:06:07:7c:36:bf:ba:6f:c5:48:af:b1:4e:
                    50:0d:a7:39:6f:5c:6e:9c:5f:fd:98:6f:4f:ba:b3:
                    f7:49:28:b8:a4:a2:5c:ee:e4:87:58:70:6a:cb:62:
                    14:bb:a0:32:1c:5e:78:c5:c0:51:7d:29:1b:c0:88:
                    19:67:4a:89:8f:62:0d:26:75:4b:f1:7c:8e:18:a4:
                    dd:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:82:F0:E0:DA:2D:07:CA:16:AA:02:B5:34:9F:8A:FE:4A:57:32:7F
            X509v3 Authority Key Identifier:
                keyid:06:01:8E:7B:52:BD:32:68:AA:4D:5D:3A:A5:77:F4:7D:0F:18:75:04

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fdc9b0-7185-4b18-857d-1d9fe8aa12ab/1/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fdc9b0-7185-4b18-857d-1d9fe8aa12ab/1/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:d3:75:6d:5a:d9:b9:2c:6d:7e:b1:ec:a7:63:8e:44:b2:a5:
         72:2c:7f:5b:c4:d4:e6:13:92:76:7e:80:e1:b4:45:29:cb:89:
         dc:ac:1c:fc:f9:b9:8e:c5:c4:87:0c:47:f8:dc:28:38:3c:d2:
         3b:a9:c5:a0:fa:d1:d8:58:d7:f5:ff:c2:3e:11:5d:49:75:d4:
         97:50:e4:da:58:c0:48:09:c1:3d:ea:66:f5:ae:8a:d2:2f:d0:
         0b:7e:84:a4:22:bc:f1:01:fe:37:5c:75:3c:03:fd:fc:d1:25:
         c2:0f:29:01:1b:b7:9b:f9:d0:1e:56:04:52:9d:a3:9b:62:30:
         f4:b7:0a:fe:cd:97:ce:ca:15:08:5e:c8:5c:61:ec:f1:58:ca:
         de:bf:0f:99:3a:04:a7:de:5d:ba:6f:39:9a:f5:30:2e:63:0d:
         71:f5:d1:77:a4:c6:4d:fd:6f:2e:ce:f3:a6:21:2d:32:dd:ee:
         2c:5a:bf:f7:b4:45:97:bd:24:1a:da:73:72:f2:ea:84:96:3d:
         5b:0f:76:31:ac:68:55:34:4d:94:ee:c6:1e:10:2e:9e:2f:d9:
         c4:ee:7a:0b:36:48:8e:59:59:65:15:51:3f:b9:84:b9:2a:70:
         62:fe:32:4c:87:89:ed:30:52:a2:62:16:0d:e6:4e:f0:80:84:
         4c:3e:34:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----