Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft
File:                     5LDTY6ChegaEUahRRc5PpGTX-hs.mft (raw, json)
Hash identifier:          rUmP/gifRBNUDL6yItIS1L5EhxYAesMGeSNOPK5poC8=
Subject key identifier:   1E:64:67:15:CE:9C:35:D9:6A:36:94:B9:76:8A:7D:C0:25:D5:59:AF
Authority key identifier: E4:B0:D3:63:A0:A1:7A:06:84:51:A8:51:45:CE:4F:A4:64:D7:FA:1B
Certificate issuer:       /CN=e4b0d363a0a17a068451a85145ce4fa464d7fa1b
Certificate serial:       019F194321778B7E2E009F8D13D42F84A740
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft
Manifest number:          12B9
Signing time:             Tue 30 Jun 2026 16:00:57 +0000
Manifest this update:     Tue 30 Jun 2026 16:00:57 +0000
Manifest next update:     Wed 01 Jul 2026 16:00:57 +0000
Files and hashes:         1: 5LDTY6ChegaEUahRRc5PpGTX-hs.crl (hash: yN98wK0EXUzHsHzL3fR15urArLMEoWS1hPQUwF2J8Fw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:43:21:77:8b:7e:2e:00:9f:8d:13:d4:2f:84:a7:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4b0d363a0a17a068451a85145ce4fa464d7fa1b
        Validity
            Not Before: Jun 30 16:00:57 2026 GMT
            Not After : Jul  1 16:00:57 2026 GMT
        Subject: CN=1e646715ce9c35d96a3694b9768a7dc025d559af
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:02:94:70:b3:dc:9f:4d:f2:01:fd:a4:d1:a1:
                    b8:02:90:e5:be:14:da:13:d5:fc:d3:2a:eb:aa:6e:
                    d5:71:d1:00:26:3a:69:32:4b:65:92:27:57:84:34:
                    57:6a:ff:b1:bd:05:b7:6a:d5:dd:69:87:74:ab:4f:
                    5c:2f:cc:d6:f6:a0:5c:45:39:4c:99:9c:2c:3b:28:
                    97:4a:0d:60:16:50:5e:16:e0:79:18:f2:a6:61:f6:
                    3b:5c:1d:33:2f:fc:92:cb:83:26:a3:99:2e:4b:c0:
                    c2:2c:47:27:38:aa:11:37:a4:a8:c7:9f:02:17:19:
                    47:19:80:fd:e6:d7:a5:20:2b:7a:c6:8a:e0:56:56:
                    d6:6c:8d:56:5c:18:9e:03:89:23:c3:a8:9c:d4:20:
                    43:7c:6b:aa:2a:1b:44:61:70:7a:f2:62:5f:72:07:
                    91:66:5a:17:48:b8:a4:a0:7b:19:64:06:8b:4f:04:
                    99:75:2b:87:59:e9:bf:64:9c:49:35:ee:24:e8:fb:
                    9b:e0:81:d3:f7:d9:7f:27:f3:ef:e7:6e:11:ab:48:
                    c0:88:5a:e4:37:f9:7b:d1:d8:ca:6f:bc:18:63:74:
                    68:9f:0b:5c:44:3f:55:e1:e6:de:6b:06:3f:48:8a:
                    3f:a5:1c:d1:0a:d8:f7:8c:75:a4:20:5f:cb:5c:fc:
                    6d:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:64:67:15:CE:9C:35:D9:6A:36:94:B9:76:8A:7D:C0:25:D5:59:AF
            X509v3 Authority Key Identifier:
                keyid:E4:B0:D3:63:A0:A1:7A:06:84:51:A8:51:45:CE:4F:A4:64:D7:FA:1B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5LDTY6ChegaEUahRRc5PpGTX-hs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4753d3-a1e9-4fd5-aefe-7c7d8a78a963/1/5LDTY6ChegaEUahRRc5PpGTX-hs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:32:c4:ba:06:3f:76:f8:10:ca:25:ce:1c:58:7b:d4:d8:26:
         90:b0:cb:0b:40:4c:ff:73:77:bf:8c:38:f8:82:e1:e3:17:e5:
         f9:6c:95:a5:e0:87:bb:ab:ac:a7:26:42:e9:7b:19:d5:a7:f3:
         e3:67:b2:c1:69:9a:cf:25:a8:fc:2e:45:e3:7d:c0:d7:cc:b5:
         89:7b:05:c8:99:8b:7e:a2:ed:a3:c5:51:c5:54:49:45:00:e7:
         82:06:46:c0:d8:c0:d7:86:60:12:c9:b4:ab:0d:26:32:10:63:
         a9:0b:cb:99:f3:af:e1:86:d7:09:e3:dd:21:8c:7f:f0:d8:88:
         05:4a:55:ab:f5:44:95:d8:53:9a:76:02:42:ab:4c:bc:8d:08:
         63:85:54:62:bc:c7:82:c0:36:19:8d:17:ca:c7:48:84:40:67:
         1c:d6:07:5e:3c:ad:90:7d:f9:53:2b:01:cb:ea:64:6a:5c:cb:
         72:3f:26:09:6f:93:1b:7f:cf:6c:c3:00:da:ee:05:88:2f:fa:
         05:f1:94:e8:a0:fa:3d:c5:63:71:4e:94:bb:59:d1:67:4d:f1:
         6a:00:80:72:73:8e:d9:c1:56:6b:14:69:b3:5a:6e:5d:44:5d:
         3a:f2:88:19:ae:5d:b6:73:8b:20:e8:c9:f6:48:26:fd:c8:5d:
         48:ab:1b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----