Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/8ae730-ae5e-4be9-978b-00b520875376/1/5UmH5s-8zliuDJbnZmqyGrPi4JA.mft
File:                     5UmH5s-8zliuDJbnZmqyGrPi4JA.mft (raw, json)
Hash identifier:          ri1EY0ZG7oyssFzuNcH491VlW0facuhXQnc8YI4KXvY=
Subject key identifier:   03:70:62:E9:F6:43:CC:BD:AC:39:BB:B8:D0:14:AE:32:AC:03:89:C3
Authority key identifier: E5:49:87:E6:CF:BC:CE:58:AE:0C:96:E7:66:6A:B2:1A:B3:E2:E0:90
Certificate issuer:       /CN=e54987e6cfbcce58ae0c96e7666ab21ab3e2e090
Certificate serial:       019F18307CC19416360B6D0A4D6D7E049C03
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5UmH5s-8zliuDJbnZmqyGrPi4JA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/09/8ae730-ae5e-4be9-978b-00b520875376/1/5UmH5s-8zliuDJbnZmqyGrPi4JA.mft
Manifest number:          062B
Signing time:             Tue 30 Jun 2026 11:00:58 +0000
Manifest this update:     Tue 30 Jun 2026 11:00:58 +0000
Manifest next update:     Wed 01 Jul 2026 11:00:58 +0000
Files and hashes:         1: 5UmH5s-8zliuDJbnZmqyGrPi4JA.crl (hash: KXqjKCPp4kj70HWbcr79zsgdSaXXpks9o5w228aHTuo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/09/8ae730-ae5e-4be9-978b-00b520875376/1/5UmH5s-8zliuDJbnZmqyGrPi4JA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/09/8ae730-ae5e-4be9-978b-00b520875376/1/5UmH5s-8zliuDJbnZmqyGrPi4JA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5UmH5s-8zliuDJbnZmqyGrPi4JA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 11:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:18:30:7c:c1:94:16:36:0b:6d:0a:4d:6d:7e:04:9c:03
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e54987e6cfbcce58ae0c96e7666ab21ab3e2e090
        Validity
            Not Before: Jun 30 11:00:58 2026 GMT
            Not After : Jul  1 11:00:58 2026 GMT
        Subject: CN=037062e9f643ccbdac39bbb8d014ae32ac0389c3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:9a:84:c4:50:5e:4b:7a:7d:a4:35:f5:18:bf:
                    6e:64:5b:14:0e:b7:1e:a1:1c:0f:39:ef:ad:95:c3:
                    05:c5:2c:36:2d:fe:5e:ce:77:3b:fa:0d:f6:c8:ca:
                    d2:76:f4:55:12:4d:21:cc:e9:00:58:ce:3f:e1:97:
                    0b:69:53:3a:10:b3:b8:78:dd:71:a1:4f:be:54:ba:
                    1a:64:5d:61:29:40:a0:66:e9:d2:de:e4:5e:68:91:
                    11:d7:1e:b9:b8:6d:40:98:58:8f:f9:fa:e8:66:d2:
                    97:91:8d:55:f4:0a:f2:ae:c7:00:7a:96:ed:ba:52:
                    74:35:cc:fc:d6:c5:b1:25:4a:80:89:e0:23:2c:5c:
                    30:7c:6d:25:cb:04:06:69:ed:5a:7f:11:19:86:94:
                    4c:e1:7e:4a:57:06:9f:82:51:7d:5a:7e:66:86:ee:
                    a8:ac:03:c4:0b:d9:82:d3:da:cc:ef:3f:19:5c:69:
                    e7:f9:b6:f5:43:f3:25:2d:d6:28:4a:7f:46:e7:07:
                    da:5b:a0:de:f0:6d:4f:5f:be:f6:6b:4b:6f:47:51:
                    4d:b5:af:45:1c:8c:b7:33:f2:02:c7:e4:05:f3:d1:
                    92:52:ab:2e:ad:46:47:3c:7e:7a:9e:a8:90:75:70:
                    0c:c3:3e:b4:52:c2:d7:7d:9f:7c:5e:99:a8:64:e4:
                    2f:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:70:62:E9:F6:43:CC:BD:AC:39:BB:B8:D0:14:AE:32:AC:03:89:C3
            X509v3 Authority Key Identifier:
                keyid:E5:49:87:E6:CF:BC:CE:58:AE:0C:96:E7:66:6A:B2:1A:B3:E2:E0:90

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5UmH5s-8zliuDJbnZmqyGrPi4JA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/8ae730-ae5e-4be9-978b-00b520875376/1/5UmH5s-8zliuDJbnZmqyGrPi4JA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/09/8ae730-ae5e-4be9-978b-00b520875376/1/5UmH5s-8zliuDJbnZmqyGrPi4JA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9a:f7:92:68:66:5e:af:18:e6:af:ea:64:6d:70:0b:71:61:8c:
         9e:6f:e8:0e:a7:fb:14:98:b9:e5:67:3d:68:fa:92:eb:e3:88:
         b5:db:9d:cc:ee:80:25:81:39:59:c0:34:22:9d:84:20:23:31:
         b0:0a:e7:51:45:42:0c:04:c0:21:dc:d0:80:fe:32:da:7a:12:
         4c:04:02:cb:81:9e:9f:87:fd:25:fd:26:b7:9a:dd:8a:8b:82:
         68:0d:7b:f3:5a:8a:cc:b8:48:c3:cc:f8:00:4c:fd:d0:68:08:
         69:bb:6c:91:5e:3c:25:ec:43:d7:fe:30:70:9f:b2:f2:b0:72:
         09:38:f1:0a:5c:33:61:fc:64:e6:04:69:76:4c:7c:3c:9a:81:
         40:9b:55:63:3e:7f:4a:b5:26:4d:9f:e0:9a:9e:46:5a:58:95:
         57:5a:8f:44:b4:f7:fd:9e:3a:39:86:e2:c0:77:16:82:4b:a5:
         75:1c:c6:7d:1c:b1:09:17:73:d8:ca:f2:64:9a:06:18:71:e8:
         85:1e:d3:a5:8c:63:ab:e9:0d:49:cb:15:a8:53:c4:e0:a1:4c:
         52:5f:21:b1:f7:b1:fb:01:e1:fd:b7:b6:46:7e:80:a6:e2:c4:
         64:b2:1b:96:45:b9:f9:6a:b2:6c:9c:dd:9b:41:7d:cd:5d:c4:
         cb:4f:44:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----