Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft
File:                     3tRskpaCjJwCVTCqaEFgmt8FaaA.mft (raw, json)
Hash identifier:          +lePbeuh6U1aBbO5YD4ozHL8vQhVTDAhJOBda9sYoP4=
Subject key identifier:   0E:64:A5:CE:82:27:30:CB:7B:54:C0:B2:4F:64:1A:82:DC:E3:50:95
Authority key identifier: DE:D4:6C:92:96:82:8C:9C:02:55:30:AA:68:41:60:9A:DF:05:69:A0
Certificate issuer:       /CN=ded46c9296828c9c025530aa6841609adf0569a0
Certificate serial:       019F18680E50683FAFB73B32C41767761013
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3tRskpaCjJwCVTCqaEFgmt8FaaA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft
Manifest number:          069F
Signing time:             Tue 30 Jun 2026 12:01:40 +0000
Manifest this update:     Tue 30 Jun 2026 12:01:40 +0000
Manifest next update:     Wed 01 Jul 2026 12:01:40 +0000
Files and hashes:         1: 3tRskpaCjJwCVTCqaEFgmt8FaaA.crl (hash: QRfDPdSsYZesxNP+VBIhoASLD5pOuqFDpaVdThUvjao=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3tRskpaCjJwCVTCqaEFgmt8FaaA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 12:01:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:18:68:0e:50:68:3f:af:b7:3b:32:c4:17:67:76:10:13
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ded46c9296828c9c025530aa6841609adf0569a0
        Validity
            Not Before: Jun 30 12:01:40 2026 GMT
            Not After : Jul  1 12:01:40 2026 GMT
        Subject: CN=0e64a5ce822730cb7b54c0b24f641a82dce35095
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:6d:5a:d4:f2:cc:91:0b:80:65:32:28:62:d3:
                    99:b2:4d:9e:9e:f6:2d:1e:5c:b1:c3:f9:d8:a2:13:
                    51:c1:d2:76:f7:f4:79:93:68:57:d0:80:e5:8b:1e:
                    90:45:b6:fe:0e:ba:0e:87:cb:60:8e:47:98:02:74:
                    aa:e9:5e:fc:e4:d7:eb:eb:33:31:43:91:8b:9c:89:
                    63:18:c7:57:59:7a:14:ca:4a:84:96:90:28:7d:9c:
                    a6:c7:37:32:4a:61:8f:19:a9:3f:0c:88:b5:70:ad:
                    05:e8:76:48:c0:66:75:5d:ed:e6:6e:d9:e7:12:c1:
                    89:72:f9:88:17:12:0e:bb:0a:75:5e:94:e2:96:ec:
                    3d:ae:36:30:e6:75:cf:a3:4f:be:06:f5:af:4d:da:
                    fa:2c:0e:5d:28:ca:c1:37:12:74:99:70:12:ca:9b:
                    7e:bb:ff:b3:c0:c3:da:26:49:23:2e:6e:47:9f:f8:
                    3f:6d:fd:40:8a:96:5e:d5:e7:8f:c7:c5:6f:f6:fc:
                    af:6d:4b:2d:bb:c9:fc:44:3f:db:e7:47:bd:da:45:
                    f7:80:d5:95:bc:b7:b7:86:b0:a8:7a:6c:b3:33:69:
                    1c:73:62:47:31:16:92:b9:f1:b3:46:c0:38:06:6a:
                    62:22:07:df:e1:84:4b:ff:65:8e:68:94:e2:97:76:
                    49:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:64:A5:CE:82:27:30:CB:7B:54:C0:B2:4F:64:1A:82:DC:E3:50:95
            X509v3 Authority Key Identifier:
                keyid:DE:D4:6C:92:96:82:8C:9C:02:55:30:AA:68:41:60:9A:DF:05:69:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3tRskpaCjJwCVTCqaEFgmt8FaaA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/936f93-0922-4f5d-8e3a-a0007bd5ace7/1/3tRskpaCjJwCVTCqaEFgmt8FaaA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:5f:a4:37:22:b5:82:55:aa:cf:ca:73:e8:a9:17:2b:f2:70:
         b8:ad:2a:2e:d8:5a:d5:56:5b:cc:33:68:9b:68:fb:68:98:fd:
         de:35:61:fd:6e:ce:3e:d5:03:d6:8c:03:69:a8:76:b0:5e:37:
         ba:f9:1d:4e:50:2e:a6:76:7d:fb:b3:b6:01:a5:3b:ca:52:1b:
         55:c0:2d:a6:63:72:25:47:a1:dc:c6:75:dc:90:c3:72:70:5d:
         df:84:08:f8:5c:0f:f0:87:45:ed:64:c9:fc:f6:2c:75:bf:1b:
         2f:74:0c:8e:1c:92:03:e2:f0:7c:0d:c8:79:b5:0f:5d:8c:9d:
         f5:a7:b9:78:97:4d:67:06:16:42:c6:af:e1:4f:2b:fc:db:83:
         1c:40:b2:d5:2f:18:43:68:f2:e1:be:c4:0c:d8:06:83:53:70:
         eb:b7:18:22:3c:37:94:7b:6d:34:23:8f:b5:f0:f4:87:e0:d0:
         60:0e:10:73:16:af:0e:b7:43:f2:9e:b9:e7:3a:4c:17:42:b9:
         66:fa:7d:9f:ff:f5:05:eb:12:c2:a8:8b:b2:3c:c4:a9:10:b1:
         9d:a2:8a:cc:5d:8e:05:f4:ae:c9:dc:16:50:a7:85:ef:47:6c:
         09:66:0a:8a:69:2a:68:5b:d6:8b:2a:55:e7:65:47:ab:ca:c5:
         aa:4c:ed:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8YaA5QaD+vtzsyxBdndhATMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlZDQ2YzkyOTY4MjhjOWMwMjU1MzBhYTY4NDE2MDlhZGYw
NTY5YTAwHhcNMjYwNjMwMTIwMTQwWhcNMjYwNzAxMTIwMTQwWjAzMTEwLwYDVQQD
EygwZTY0YTVjZTgyMjczMGNiN2I1NGMwYjI0ZjY0MWE4MmRjZTM1MDk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5W1a1PLMkQuAZTIoYtOZsk2envYt
Hlyxw/nYohNRwdJ29/R5k2hX0IDlix6QRbb+DroOh8tgjkeYAnSq6V785Nfr6zMx
Q5GLnIljGMdXWXoUykqElpAofZymxzcySmGPGak/DIi1cK0F6HZIwGZ1Xe3mbtnn
EsGJcvmIFxIOuwp1XpTiluw9rjYw5nXPo0++BvWvTdr6LA5dKMrBNxJ0mXASypt+
u/+zwMPaJkkjLm5Hn/g/bf1AipZe1eePx8Vv9vyvbUstu8n8RD/b50e92kX3gNWV
vLe3hrCoemyzM2kcc2JHMRaSufGzRsA4BmpiIgff4YRL/2WOaJTil3ZJJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA5kpc6CJzDLe1TAsk9kGoLc41CVMB8GA1UdIwQY
MBaAFN7UbJKWgoycAlUwqmhBYJrfBWmgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3RSc2twYUNqSndDVlRDcWFFRmdtdDhGYWFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC85MzZmOTMtMDkyMi00ZjVkLThlM2Et
YTAwMDdiZDVhY2U3LzEvM3RSc2twYUNqSndDVlRDcWFFRmdtdDhGYWFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC85MzZmOTMtMDkyMi00ZjVkLThlM2EtYTAwMDdiZDVhY2U3
LzEvM3RSc2twYUNqSndDVlRDcWFFRmdtdDhGYWFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYF+kNyK1
glWqz8pz6KkXK/JwuK0qLtha1VZbzDNom2j7aJj93jVh/W7OPtUD1owDaah2sF43
uvkdTlAupnZ9+7O2AaU7ylIbVcAtpmNyJUeh3MZ13JDDcnBd34QI+FwP8IdF7WTJ
/PYsdb8bL3QMjhySA+LwfA3IebUPXYyd9ae5eJdNZwYWQsav4U8r/NuDHECy1S8Y
Q2jy4b7EDNgGg1Nw67cYIjw3lHttNCOPtfD0h+DQYA4QcxavDrdD8p655zpMF0K5
Zvp9n//1BesSwqiLsjzEqRCxnaKKzF2OBfSuydwWUKeF70dsCWYKimkqaFvWiypV
52VHq8rFqkztTg==
-----END CERTIFICATE-----