Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
File:                     8VzG8-5-0llTHW0Izp4JNztxYGI.mft (raw, json)
Hash identifier:          BLH3TVedrR3eg2x85onofFXrK2dXf6mb1FQ2Ez2g88A=
Subject key identifier:   61:66:69:D7:96:60:68:EF:70:9F:29:8E:1E:6E:3A:B6:B1:C7:51:1A
Authority key identifier: F1:5C:C6:F3:EE:7E:D2:59:53:1D:6D:08:CE:9E:09:37:3B:71:60:62
Certificate issuer:       /CN=f15cc6f3ee7ed259531d6d08ce9e09373b716062
Certificate serial:       019E303B9ADF463473EF70ACFE8A6CDFFE88
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
Manifest number:          06AC
Signing time:             Sat 16 May 2026 10:01:13 +0000
Manifest this update:     Sat 16 May 2026 10:01:13 +0000
Manifest next update:     Sun 17 May 2026 10:01:13 +0000
Files and hashes:         1: 8VzG8-5-0llTHW0Izp4JNztxYGI.crl (hash: rFS3QzvVB4KKQoqLTgjMB8BH6huwFnWBYIni63tNskI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 10:01:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:3b:9a:df:46:34:73:ef:70:ac:fe:8a:6c:df:fe:88
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f15cc6f3ee7ed259531d6d08ce9e09373b716062
        Validity
            Not Before: May 16 10:01:13 2026 GMT
            Not After : May 17 10:01:13 2026 GMT
        Subject: CN=616669d7966068ef709f298e1e6e3ab6b1c7511a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:56:2c:62:3d:16:0b:be:99:97:2b:72:99:f5:
                    0d:1d:a3:2a:19:49:85:03:ad:34:7e:db:47:e7:7c:
                    2d:20:f5:9f:36:68:e6:2e:9c:35:b4:f3:34:f9:61:
                    92:3d:40:c1:54:8b:bb:51:0b:95:f1:20:78:c4:6b:
                    5a:d9:f3:65:2f:31:38:8e:66:76:ef:8b:ac:ee:60:
                    89:dc:d6:1a:35:2b:a4:b6:ed:92:63:92:27:ba:10:
                    05:bb:e8:25:fd:32:bc:db:27:ae:a5:19:6b:ff:d8:
                    d9:7c:a3:63:39:4f:12:79:1a:9d:89:42:13:d2:79:
                    4a:5f:4d:08:1e:9f:39:6c:24:a4:b9:df:94:36:dd:
                    60:12:26:2f:35:3b:61:89:74:98:04:03:49:82:f3:
                    84:d4:f9:6a:ea:d4:dd:4d:3d:9a:34:99:f5:c1:ed:
                    fa:6d:2e:57:25:19:7c:5f:2a:93:8f:92:4e:25:97:
                    6a:ce:dd:ef:03:6e:38:9f:60:20:4a:71:64:4e:95:
                    28:f4:9a:4c:1e:f9:d6:76:2f:59:84:af:ae:5d:ee:
                    25:64:0a:20:cf:86:ac:0e:2d:fc:3a:f1:cf:7a:2d:
                    84:ac:98:c4:ea:61:47:69:5f:9f:cc:0f:31:e0:15:
                    b4:37:68:b7:fe:c2:0f:27:f8:b3:dd:86:47:fa:7f:
                    4b:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:66:69:D7:96:60:68:EF:70:9F:29:8E:1E:6E:3A:B6:B1:C7:51:1A
            X509v3 Authority Key Identifier:
                keyid:F1:5C:C6:F3:EE:7E:D2:59:53:1D:6D:08:CE:9E:09:37:3B:71:60:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:4b:fa:02:81:b0:ba:a8:8d:ae:4c:bf:87:ee:14:70:4d:ec:
         6a:28:0f:aa:c8:9a:9a:71:56:ae:e2:85:37:b2:eb:61:03:92:
         b4:12:c6:1b:a7:c4:8a:4d:e7:d9:6d:fb:cf:12:c5:3d:0c:de:
         42:05:43:02:16:43:75:c0:ee:76:73:df:97:60:79:7d:b3:1c:
         09:c9:c0:d7:d1:e9:b0:99:8c:8d:5c:57:d7:c3:d8:84:bc:cd:
         df:bb:ea:72:c9:cb:d0:02:98:a0:23:b3:df:86:4c:54:1f:63:
         8e:e6:fe:58:f3:92:15:dc:27:f2:1e:1b:a3:c0:80:ff:98:a2:
         e1:7e:f7:99:25:1c:00:42:42:b6:fb:75:17:5f:2d:42:a0:dd:
         c9:89:28:82:c3:d4:7a:73:d8:cf:ae:ae:34:09:c5:1b:1f:f1:
         c1:61:39:31:20:d2:bd:86:94:30:d2:c9:f5:a4:99:38:63:44:
         62:36:11:3c:11:36:f8:db:c7:61:7f:c6:f6:fa:a4:fa:63:5e:
         dd:55:fb:dd:6a:d9:5a:3a:9c:31:c4:2e:52:8c:e6:b2:18:f5:
         43:05:19:77:1d:d0:b0:bb:f9:30:9f:7f:d7:73:85:ca:b0:d5:
         b0:7f:bf:98:12:38:80:65:9f:72:c3:d0:cb:3c:c4:b9:93:a8:
         32:de:08:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----