Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft
File:                     5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft (raw, json)
Hash identifier:          E6dCEEY2TTjkopfUueVq8NYFJfZSKSjOcrdLer+Yxto=
Subject key identifier:   94:D6:84:6D:79:83:79:AB:93:1B:F2:D7:A2:23:45:E0:E0:5D:8F:F8
Authority key identifier: E5:2C:B8:5C:A7:93:FA:D5:65:B4:60:8E:26:D8:2A:6A:E2:7D:C2:32
Certificate issuer:       /CN=e52cb85ca793fad565b4608e26d82a6ae27dc232
Certificate serial:       019E31BC2FF324B697C420F885E7E591DC58
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5Sy4XKeT-tVltGCOJtgqauJ9wjI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft
Manifest number:          0F95
Signing time:             Sat 16 May 2026 17:01:17 +0000
Manifest this update:     Sat 16 May 2026 17:01:17 +0000
Manifest next update:     Sun 17 May 2026 17:01:17 +0000
Files and hashes:         1: 5Sy4XKeT-tVltGCOJtgqauJ9wjI.crl (hash: C91Wi4aMEoK2n4L40rNcNp1tVtz8oYwmw8kW8/OTa/o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5Sy4XKeT-tVltGCOJtgqauJ9wjI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:31:bc:2f:f3:24:b6:97:c4:20:f8:85:e7:e5:91:dc:58
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e52cb85ca793fad565b4608e26d82a6ae27dc232
        Validity
            Not Before: May 16 17:01:17 2026 GMT
            Not After : May 17 17:01:17 2026 GMT
        Subject: CN=94d6846d798379ab931bf2d7a22345e0e05d8ff8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:32:0f:ff:d1:2b:ad:f9:06:98:d6:84:c7:22:
                    58:61:09:94:e0:f4:21:31:c9:3c:bf:6e:c0:30:c5:
                    74:dc:47:ad:f7:17:4d:9d:01:ad:dc:b2:c5:cc:3c:
                    de:6f:0b:74:5a:0a:a5:4e:ab:85:eb:41:32:51:1b:
                    fb:6a:e1:45:d4:8c:20:a0:1b:94:40:30:02:89:2f:
                    2e:a7:56:34:e1:49:b5:89:0e:7c:c9:4b:12:e5:4b:
                    bc:37:89:84:c6:a6:a5:44:a5:64:35:3f:ff:72:52:
                    91:4e:a2:b3:9d:11:e9:8d:1b:0c:ec:52:1c:d5:7a:
                    8d:4a:50:50:86:94:7e:86:8a:71:5e:c2:9a:14:bb:
                    03:f7:49:c4:b3:0a:13:ea:81:34:8b:37:9d:b9:a3:
                    b0:fd:e5:58:e5:c3:b2:08:91:19:e7:49:26:26:a2:
                    27:db:7a:62:38:69:32:27:49:cd:a9:2c:22:ad:fb:
                    1c:65:e8:64:69:94:59:2d:1c:9f:7c:44:19:9b:af:
                    05:5e:37:e6:b8:7c:5b:ce:01:7f:0e:57:58:6f:51:
                    3d:77:92:a5:64:c7:38:92:00:88:f1:f2:c8:f0:aa:
                    55:7b:de:71:8f:6f:2b:49:66:b9:48:fb:ed:66:40:
                    af:15:9f:e1:6c:b3:fd:a5:a7:48:de:b2:99:a4:27:
                    60:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:D6:84:6D:79:83:79:AB:93:1B:F2:D7:A2:23:45:E0:E0:5D:8F:F8
            X509v3 Authority Key Identifier:
                keyid:E5:2C:B8:5C:A7:93:FA:D5:65:B4:60:8E:26:D8:2A:6A:E2:7D:C2:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Sy4XKeT-tVltGCOJtgqauJ9wjI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         24:57:22:8e:87:42:ea:72:f8:ec:ba:6d:61:a5:9d:e9:0a:91:
         e0:1c:de:4d:63:bb:5a:08:d0:f9:f3:ce:7f:3d:1d:fa:29:9d:
         9c:c8:b9:30:98:ea:07:3a:ec:2d:5e:75:c0:79:47:2c:ca:33:
         fe:45:70:73:f8:d7:60:dc:a0:4b:34:73:23:0b:e6:77:83:1e:
         84:1f:af:61:4b:57:10:5c:f5:82:07:12:c8:1f:1a:c7:18:23:
         88:14:4e:d6:9a:4d:40:9f:b0:5a:f5:fe:0e:37:65:9a:9f:d1:
         0a:43:15:84:dc:76:f1:1e:13:40:b9:02:5f:76:72:41:a9:0c:
         ed:e3:3b:7e:9b:11:7d:fb:fe:b6:f0:f7:f6:37:17:d8:64:e0:
         ae:86:06:ca:6a:df:36:76:b1:4b:67:1c:3a:70:8f:bd:1b:1d:
         c1:fe:0c:80:c3:0b:f9:6e:2a:9f:3d:af:b3:22:b3:f4:29:51:
         7b:16:53:30:c3:b7:5a:8b:0d:f6:b3:2f:d0:d6:87:a6:4d:04:
         59:6c:2e:40:d9:e1:90:ea:cc:ee:dc:de:15:17:22:28:2f:c3:
         5d:ea:e5:6a:68:9b:27:3f:2d:ea:f5:94:bf:98:1a:c3:f6:15:
         5d:08:f8:44:a2:bb:11:80:52:f2:ff:e6:15:4d:ea:ad:10:12:
         9e:df:c0:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----