Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
File:                     2axioKJWftFz3CqtN25FXIW8trs.mft (raw, json)
Hash identifier:          warpwqw+HeOcKZFrcQZzelt7Cou4mTN2YysfFDsEapM=
Subject key identifier:   0F:9F:C3:7D:D7:27:35:2F:F8:03:D6:91:A9:B7:33:68:63:A8:46:59
Authority key identifier: D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB
Certificate issuer:       /CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb
Certificate serial:       019F1943F02FB98B192EB7AB709295B927FD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
Manifest number:          1984
Signing time:             Tue 30 Jun 2026 16:01:50 +0000
Manifest this update:     Tue 30 Jun 2026 16:01:50 +0000
Manifest next update:     Wed 01 Jul 2026 16:01:50 +0000
Files and hashes:         1: 2axioKJWftFz3CqtN25FXIW8trs.crl (hash: RecTGFHbcJHZVs3emdQn2e4apTWkP4kGydppGjunJwA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:43:f0:2f:b9:8b:19:2e:b7:ab:70:92:95:b9:27:fd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb
        Validity
            Not Before: Jun 30 16:01:50 2026 GMT
            Not After : Jul  1 16:01:50 2026 GMT
        Subject: CN=0f9fc37dd727352ff803d691a9b7336863a84659
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:bf:ea:95:dd:b7:31:66:69:e0:1a:86:e3:62:
                    aa:ac:bc:66:3a:92:67:9a:fc:ff:00:d6:85:f4:32:
                    b5:15:9f:61:a8:93:e1:aa:eb:f1:7a:9e:a7:60:40:
                    2f:b7:83:d7:e3:6f:02:76:ae:29:8e:b9:b8:44:53:
                    db:4f:60:f4:60:49:fd:7b:2a:dc:15:2d:cd:60:fa:
                    cf:05:40:c6:da:c8:e7:11:71:b9:8f:ba:d2:e2:0f:
                    41:2a:e7:87:fc:c7:da:f9:a7:62:2f:27:64:1a:f2:
                    82:d2:b4:76:06:6c:2d:b6:82:9b:29:16:d8:e3:f3:
                    52:b0:5d:f7:99:76:dc:dc:6a:5b:83:8c:51:80:1f:
                    b4:d5:17:14:16:e9:4c:b4:97:68:ab:6f:45:dc:06:
                    5e:20:69:1e:bc:65:03:c1:96:c1:e7:ea:2d:f8:bd:
                    6d:c1:a5:5b:28:3b:b8:ce:fd:8c:93:e8:8d:7d:18:
                    d7:f5:88:05:11:3a:71:a8:d4:2f:6a:29:af:5c:81:
                    2c:83:69:87:4e:4e:09:4e:74:ee:d4:db:28:63:84:
                    32:10:e1:4f:b4:cd:3f:fc:3a:0b:f5:0d:fb:fe:be:
                    89:0c:b8:5f:b1:30:ee:79:d9:3d:18:76:fa:8a:6f:
                    41:b8:7b:72:61:14:75:8d:b9:cb:06:bb:c9:1f:14:
                    84:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:9F:C3:7D:D7:27:35:2F:F8:03:D6:91:A9:B7:33:68:63:A8:46:59
            X509v3 Authority Key Identifier:
                keyid:D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         51:58:2a:6c:11:32:ef:30:1d:bd:4a:ee:12:89:d5:bb:2a:9c:
         85:32:81:cc:6d:99:9f:13:df:6a:dc:4e:b1:20:17:1c:6b:db:
         e2:ca:2f:a5:6c:81:5c:20:10:0e:2b:8c:35:23:49:b4:3f:e8:
         d0:3b:2c:e5:a3:3e:09:26:b5:42:e6:1f:e2:ea:18:63:20:75:
         e9:24:b4:83:e3:8e:7f:50:6f:20:4f:71:3b:b8:3d:fa:25:69:
         99:6d:b3:b3:9a:27:bd:47:06:7c:6b:1f:9e:31:67:fe:38:38:
         78:db:1c:71:f3:c3:7b:fa:91:36:ad:8a:ec:c0:2e:9e:9f:06:
         9e:46:5d:79:ed:66:14:29:55:7f:61:b7:9e:a0:7a:25:7b:f9:
         b6:7b:0d:b9:01:53:57:96:88:4f:cd:eb:7e:d4:7c:6b:9f:30:
         8f:1e:e4:f6:6b:72:cf:49:35:f2:52:c4:dd:8b:48:5c:2d:3d:
         48:6e:e0:2b:5d:03:c8:ad:e1:27:0f:15:8c:23:74:f4:43:30:
         c2:e7:86:14:cb:cb:c6:a6:64:c8:d0:55:6e:93:6c:b9:6f:cc:
         e0:12:fb:4e:0b:a2:c6:4c:5d:56:3a:32:45:19:08:91:96:3c:
         5f:4d:4d:46:09:f2:5f:88:82:ed:a9:94:66:96:25:88:4f:8b:
         16:bf:2c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----