Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/8ae730-ae5e-4be9-978b-00b520875376/1/5UmH5s-8zliuDJbnZmqyGrPi4JA.mft
File:                     5UmH5s-8zliuDJbnZmqyGrPi4JA.mft (raw, json)
Hash identifier:          pBgYrvjU1UreHc74RLJnLhh9OVr1AidN+FNsUYCt1lU=
Subject key identifier:   AB:2D:D5:AC:E7:B3:B2:43:2A:0B:B5:98:E6:10:C0:3A:ED:5E:2F:31
Authority key identifier: E5:49:87:E6:CF:BC:CE:58:AE:0C:96:E7:66:6A:B2:1A:B3:E2:E0:90
Certificate issuer:       /CN=e54987e6cfbcce58ae0c96e7666ab21ab3e2e090
Certificate serial:       019E3072F422FE5152307382DF596DE7A81D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5UmH5s-8zliuDJbnZmqyGrPi4JA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/09/8ae730-ae5e-4be9-978b-00b520875376/1/5UmH5s-8zliuDJbnZmqyGrPi4JA.mft
Manifest number:          05B3
Signing time:             Sat 16 May 2026 11:01:40 +0000
Manifest this update:     Sat 16 May 2026 11:01:40 +0000
Manifest next update:     Sun 17 May 2026 11:01:40 +0000
Files and hashes:         1: 5UmH5s-8zliuDJbnZmqyGrPi4JA.crl (hash: CPsr1F4LnqpYpiaQaUSrEEt9BNW1Q60i3mStudopMa4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/09/8ae730-ae5e-4be9-978b-00b520875376/1/5UmH5s-8zliuDJbnZmqyGrPi4JA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/09/8ae730-ae5e-4be9-978b-00b520875376/1/5UmH5s-8zliuDJbnZmqyGrPi4JA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5UmH5s-8zliuDJbnZmqyGrPi4JA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 05:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:72:f4:22:fe:51:52:30:73:82:df:59:6d:e7:a8:1d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e54987e6cfbcce58ae0c96e7666ab21ab3e2e090
        Validity
            Not Before: May 16 11:01:40 2026 GMT
            Not After : May 17 11:01:40 2026 GMT
        Subject: CN=ab2dd5ace7b3b2432a0bb598e610c03aed5e2f31
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:d6:04:ad:75:63:0a:40:da:9b:cc:0e:40:a1:
                    06:99:3a:08:13:bf:0f:c0:d4:15:62:83:50:38:22:
                    c0:d7:44:57:d3:f2:cb:c3:fa:66:82:5c:88:13:b7:
                    e4:18:af:f8:1a:d5:09:2c:7f:25:a6:c6:f9:5e:12:
                    92:ba:11:a9:9c:cf:22:73:c5:9e:f4:98:fe:37:c9:
                    f3:fc:d9:dc:84:d1:a1:e9:cb:7e:0a:a8:ff:e4:24:
                    06:43:c5:5a:85:3f:ee:51:54:35:c2:a3:97:35:fa:
                    97:c3:57:2d:6f:dc:e3:58:64:0b:51:39:fb:bb:7d:
                    c0:59:ff:f9:c7:fa:50:31:e6:54:ad:ef:72:21:bf:
                    55:44:8e:45:76:52:bb:11:b6:06:1c:6f:6c:76:9f:
                    5f:52:ea:ce:26:7e:dc:0d:81:e8:78:3d:75:5c:81:
                    04:f0:35:67:ad:15:3c:c7:2b:1c:2d:a0:e8:ad:c3:
                    86:0d:3b:ea:63:79:2f:6c:5d:8e:4a:ab:46:e2:92:
                    12:87:dc:17:f9:64:69:ab:32:50:82:a7:67:24:84:
                    e1:02:8b:c2:84:a3:73:0c:b2:75:3f:79:bc:ee:0e:
                    a0:03:63:49:ff:68:e3:7c:66:1c:29:a1:9b:42:92:
                    6c:f7:ac:90:cb:f8:19:4e:df:ad:f8:9b:6c:f6:53:
                    5a:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:2D:D5:AC:E7:B3:B2:43:2A:0B:B5:98:E6:10:C0:3A:ED:5E:2F:31
            X509v3 Authority Key Identifier:
                keyid:E5:49:87:E6:CF:BC:CE:58:AE:0C:96:E7:66:6A:B2:1A:B3:E2:E0:90

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5UmH5s-8zliuDJbnZmqyGrPi4JA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/8ae730-ae5e-4be9-978b-00b520875376/1/5UmH5s-8zliuDJbnZmqyGrPi4JA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/09/8ae730-ae5e-4be9-978b-00b520875376/1/5UmH5s-8zliuDJbnZmqyGrPi4JA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:98:1f:5f:fe:74:fe:f7:e5:6c:ce:0b:9c:f4:c0:9b:08:3f:
         a1:59:40:13:1a:be:76:d9:21:5b:3e:d4:f1:18:1a:17:25:5b:
         6c:cb:cc:00:0c:ad:fa:72:d0:c2:7f:31:45:c9:17:f1:c5:fc:
         44:68:d0:98:ea:af:b4:5d:7f:17:5d:59:55:fc:e2:dc:9f:9c:
         09:8b:d8:15:ab:c4:69:b2:24:f0:81:7a:d6:cb:8f:8b:af:31:
         82:fe:75:17:ef:eb:23:6b:f7:e3:b0:71:a7:de:e0:7b:9c:e6:
         b2:9c:3e:be:5a:9c:cf:02:64:7c:30:8a:31:fb:1a:06:ce:7d:
         f7:01:d4:e6:4d:d3:8c:55:64:77:47:0a:99:b7:47:b4:23:25:
         73:1c:6c:ba:ea:ce:8d:11:75:f8:29:2f:e2:3b:21:03:2a:b0:
         6f:ca:d0:4c:2d:d7:b7:6c:f4:ba:f6:2e:9a:5b:de:4b:ab:12:
         e2:8f:f4:5e:31:f6:f1:9b:a3:a3:b9:46:6c:41:38:c4:55:d4:
         da:bf:ba:42:f9:c4:8c:91:e0:28:0a:15:be:33:12:f2:39:43:
         68:85:b2:2f:d6:ef:4a:6c:5e:2c:21:83:21:23:ea:d0:6f:4e:
         a1:9a:71:77:a4:48:68:a5:fa:b9:b0:84:c5:a8:78:48:03:b9:
         c1:f8:7c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----