Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.mft
File:                     4PcIYcfPbv530i_HBJvpbGdopQA.mft (raw, json)
Hash identifier:          kXMQ27lYb4pWcifLdvripilyx71TipptXBmwdmfBLWQ=
Subject key identifier:   36:EC:46:6A:2E:DD:54:D0:F7:2F:78:79:4C:69:15:9C:2E:DA:7C:07
Authority key identifier: E0:F7:08:61:C7:CF:6E:FE:77:D2:2F:C7:04:9B:E9:6C:67:68:A5:00
Certificate issuer:       /CN=e0f70861c7cf6efe77d22fc7049be96c6768a500
Certificate serial:       019F189E34C639B07C8E94CABB965DFEA329
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4PcIYcfPbv530i_HBJvpbGdopQA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.mft
Manifest number:          094B
Signing time:             Tue 30 Jun 2026 13:00:49 +0000
Manifest this update:     Tue 30 Jun 2026 13:00:49 +0000
Manifest next update:     Wed 01 Jul 2026 13:00:49 +0000
Files and hashes:         1: 4PcIYcfPbv530i_HBJvpbGdopQA.crl (hash: AlVXBRfA5bq5EcZRR0WkkpCCg6OFG93P8RoLs83G2CQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4PcIYcfPbv530i_HBJvpbGdopQA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 13:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:18:9e:34:c6:39:b0:7c:8e:94:ca:bb:96:5d:fe:a3:29
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e0f70861c7cf6efe77d22fc7049be96c6768a500
        Validity
            Not Before: Jun 30 13:00:49 2026 GMT
            Not After : Jul  1 13:00:49 2026 GMT
        Subject: CN=36ec466a2edd54d0f72f78794c69159c2eda7c07
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:62:57:a2:8a:58:62:c7:6d:f6:3c:3d:40:ce:
                    ea:7c:09:e2:c3:57:95:8f:83:31:f4:e4:20:89:4d:
                    9a:a6:22:a5:a5:97:9e:9c:45:a8:99:a9:a7:d6:1e:
                    ef:15:4f:b4:bb:62:86:e5:6d:9d:0d:bf:a2:d3:b0:
                    79:b5:8c:ab:f1:c3:f9:35:a4:77:a9:d0:b4:d4:1c:
                    82:74:f6:8e:3f:93:d7:91:16:15:4f:0a:bd:a1:b3:
                    aa:ca:6d:21:5a:cb:bc:05:af:28:4c:1d:2b:69:dc:
                    e8:88:f5:0e:11:3c:5f:73:0d:0e:90:e1:57:f3:54:
                    14:8d:79:76:82:e3:d1:f2:f2:1b:df:f3:ec:4c:4f:
                    f8:12:7d:e9:46:3d:8f:8a:54:29:bf:ce:cd:37:e8:
                    fc:5a:2d:3f:e0:7e:fe:a9:7f:e5:ce:7b:4b:09:c9:
                    06:4c:52:8b:3c:4f:93:aa:18:78:11:29:2c:d1:cc:
                    a0:90:22:cb:5c:70:23:d3:9c:af:6c:26:d7:4e:b3:
                    9a:c5:a0:38:22:d4:c9:4e:83:e9:bd:85:b3:2d:60:
                    86:78:df:39:35:29:e5:a8:6e:ee:4d:40:fa:ea:c8:
                    d5:16:2c:1d:8c:13:72:2d:6d:05:e5:24:1e:f7:08:
                    51:b8:1d:11:17:c5:69:a4:5f:31:5f:03:2f:72:a3:
                    2d:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                36:EC:46:6A:2E:DD:54:D0:F7:2F:78:79:4C:69:15:9C:2E:DA:7C:07
            X509v3 Authority Key Identifier:
                keyid:E0:F7:08:61:C7:CF:6E:FE:77:D2:2F:C7:04:9B:E9:6C:67:68:A5:00

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4PcIYcfPbv530i_HBJvpbGdopQA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/542830-cc49-415a-97b6-4473c0b1e046/1/4PcIYcfPbv530i_HBJvpbGdopQA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:e1:bd:52:e5:d1:80:e9:7b:cc:ba:93:f0:73:fa:38:b5:ed:
         c2:8c:f9:bf:81:d1:a9:31:32:ef:92:b5:90:a9:5e:b3:35:b9:
         cc:0d:55:05:d0:ec:f5:c9:45:b5:87:b4:1a:6f:f6:8c:eb:86:
         71:7c:97:a4:cb:75:bb:3b:11:3e:68:a3:01:83:29:67:0e:21:
         ec:8f:c7:76:e8:2b:cc:9b:44:cf:ae:b0:8f:0c:19:34:ea:af:
         70:0f:f1:5b:38:52:5e:03:ae:31:48:b9:26:e7:fd:f6:b8:3d:
         99:16:c1:99:23:ae:53:e2:47:56:72:72:20:e3:d2:ea:77:4e:
         a7:2f:96:b2:43:0a:97:e8:e8:66:54:15:62:0a:55:ce:9e:5e:
         b5:0f:23:97:95:39:e1:33:3e:c9:24:a6:9d:90:94:a4:bf:50:
         fc:bc:d5:68:c7:cc:25:5a:0a:54:2d:12:33:07:22:bb:3f:99:
         77:55:75:28:5d:fc:d5:75:88:e7:33:e2:bf:f7:20:70:43:0b:
         78:1e:23:d0:c8:c5:01:91:89:cf:21:69:7b:13:eb:55:86:5b:
         42:af:b6:96:ab:37:5d:db:78:65:dc:5e:c3:a9:3c:68:4c:dc:
         48:1c:73:ae:e8:29:1c:68:52:c3:a2:d2:8b:b3:7e:7e:87:af:
         b2:b8:45:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8YnjTGObB8jpTKu5Zd/qMpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwZjcwODYxYzdjZjZlZmU3N2QyMmZjNzA0OWJlOTZjNjc2
OGE1MDAwHhcNMjYwNjMwMTMwMDQ5WhcNMjYwNzAxMTMwMDQ5WjAzMTEwLwYDVQQD
EygzNmVjNDY2YTJlZGQ1NGQwZjcyZjc4Nzk0YzY5MTU5YzJlZGE3YzA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0WJXoopYYsdt9jw9QM7qfAniw1eV
j4Mx9OQgiU2apiKlpZeenEWomamn1h7vFU+0u2KG5W2dDb+i07B5tYyr8cP5NaR3
qdC01ByCdPaOP5PXkRYVTwq9obOqym0hWsu8Ba8oTB0radzoiPUOETxfcw0OkOFX
81QUjXl2guPR8vIb3/PsTE/4En3pRj2PilQpv87NN+j8Wi0/4H7+qX/lzntLCckG
TFKLPE+Tqhh4ESks0cygkCLLXHAj05yvbCbXTrOaxaA4ItTJToPpvYWzLWCGeN85
NSnlqG7uTUD66sjVFiwdjBNyLW0F5SQe9whRuB0RF8VppF8xXwMvcqMtZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDbsRmou3VTQ9y94eUxpFZwu2nwHMB8GA1UdIwQY
MBaAFOD3CGHHz27+d9IvxwSb6WxnaKUAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFBjSVljZlBidjUzMGlfSEJKdnBiR2RvcFFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS81NDI4MzAtY2M0OS00MTVhLTk3YjYt
NDQ3M2MwYjFlMDQ2LzEvNFBjSVljZlBidjUzMGlfSEJKdnBiR2RvcFFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS81NDI4MzAtY2M0OS00MTVhLTk3YjYtNDQ3M2MwYjFlMDQ2
LzEvNFBjSVljZlBidjUzMGlfSEJKdnBiR2RvcFFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB+G9UuXR
gOl7zLqT8HP6OLXtwoz5v4HRqTEy75K1kKleszW5zA1VBdDs9clFtYe0Gm/2jOuG
cXyXpMt1uzsRPmijAYMpZw4h7I/HdugrzJtEz66wjwwZNOqvcA/xWzhSXgOuMUi5
Juf99rg9mRbBmSOuU+JHVnJyIOPS6ndOpy+WskMKl+joZlQVYgpVzp5etQ8jl5U5
4TM+ySSmnZCUpL9Q/LzVaMfMJVoKVC0SMwciuz+Zd1V1KF381XWI5zPiv/cgcEML
eB4j0MjFAZGJzyFpexPrVYZbQq+2lqs3Xdt4Zdxew6k8aEzcSBxzrugpHGhSw6LS
i7N+foevsrhFWQ==
-----END CERTIFICATE-----