Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
File:                     A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json)
Hash identifier:          jtqLh8WQo60pyvevjJOeIT2xfSbPgwWhwZle6wE3sXs=
Subject key identifier:   B0:59:58:A8:E7:C1:10:B9:8C:7D:CA:8E:BD:68:47:AE:8E:47:ED:C3
Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
Certificate issuer:       /CN=036847b297235faf071686fed2c1e910bf600486
Certificate serial:       019F1943471768480BCB7A780D59A5D0DAAC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
Manifest number:          1618
Signing time:             Tue 30 Jun 2026 16:01:07 +0000
Manifest this update:     Tue 30 Jun 2026 16:01:07 +0000
Manifest next update:     Wed 01 Jul 2026 16:01:07 +0000
Files and hashes:         1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: n7iHwl6hyWyyaCXHaQi84SGXGniuxOc8PhAo/cl6Uh0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:43:47:17:68:48:0b:cb:7a:78:0d:59:a5:d0:da:ac
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=036847b297235faf071686fed2c1e910bf600486
        Validity
            Not Before: Jun 30 16:01:07 2026 GMT
            Not After : Jul  1 16:01:07 2026 GMT
        Subject: CN=b05958a8e7c110b98c7dca8ebd6847ae8e47edc3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:f6:f2:ed:5f:98:33:57:ee:27:24:8c:54:c3:
                    0d:07:aa:79:43:3d:8f:b4:56:83:f7:c8:96:bf:cd:
                    64:38:fe:15:2d:63:db:31:22:04:9a:02:5f:1d:89:
                    e8:5d:6e:27:23:b1:4d:d4:ab:b9:14:ad:54:ac:4f:
                    0d:5d:5a:16:9c:68:5c:bb:a0:08:16:69:10:f2:2d:
                    af:76:40:a4:91:38:44:93:c8:80:b0:5c:02:75:bd:
                    c3:80:0a:61:3a:77:2e:d9:98:e9:c4:f1:74:3f:0a:
                    23:1d:0e:d4:54:e4:7b:04:92:7e:96:0d:03:4e:31:
                    5a:17:e0:f4:8b:0f:91:ee:da:ca:65:37:43:fe:54:
                    39:2c:61:70:06:31:b1:0b:68:5d:6a:5b:38:de:bd:
                    2f:cf:1f:01:11:6c:76:5e:e2:ad:92:b3:05:13:3c:
                    3b:3b:dc:f4:9d:52:4f:e3:f4:93:bb:df:75:0f:22:
                    82:5a:1a:10:8a:2d:60:82:21:3f:cc:da:c4:3f:d4:
                    70:16:91:1a:83:7b:c3:a8:a3:4e:16:0c:7e:91:d4:
                    67:68:e5:cd:e8:a0:24:db:45:8a:2f:ad:bd:14:be:
                    53:c3:e6:ec:90:84:c7:1c:bc:fa:90:90:75:4d:14:
                    2f:1a:84:db:56:95:c7:07:a7:87:29:b7:a8:67:a5:
                    01:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:59:58:A8:E7:C1:10:B9:8C:7D:CA:8E:BD:68:47:AE:8E:47:ED:C3
            X509v3 Authority Key Identifier:
                keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:62:52:ae:44:b8:a2:3c:90:e7:1a:81:37:ea:07:5f:7f:24:
         ae:62:be:53:73:7b:de:9a:7c:33:ae:d1:48:a3:5f:ba:e7:db:
         17:6a:54:6c:62:57:ab:4b:ef:fe:08:e8:8d:6e:c3:21:ec:68:
         21:a7:2a:75:52:5d:26:34:64:7c:cc:76:08:64:71:17:47:5d:
         e9:e6:1a:fe:d2:2e:e2:5e:29:5b:8a:f2:9c:f2:4b:eb:c6:bd:
         dc:f7:04:22:d1:eb:1f:d0:92:5d:3d:1f:27:14:38:e0:5a:ef:
         82:19:48:81:1f:e0:44:4a:f9:96:0f:e0:e1:9d:00:32:fc:f1:
         37:1d:1d:51:12:d8:c3:18:a1:f2:2b:0e:58:b3:4c:4d:0d:9d:
         11:9f:c0:bb:1e:a4:c7:a3:05:24:a3:15:21:43:46:0f:c8:55:
         a5:b2:3a:e8:39:51:03:ee:8e:b7:59:b8:0a:79:6a:af:15:74:
         da:85:78:01:53:2f:dc:4c:80:fb:6a:ca:d3:83:e3:c6:ea:b5:
         4a:e1:e4:42:ee:b7:68:ec:da:8b:c2:d7:1d:30:e4:cd:47:d3:
         6d:59:8a:51:ed:c3:e0:c8:03:86:38:d4:70:d8:47:36:dc:be:
         21:dc:53:71:a7:b6:df:a2:f1:d3:d8:b0:c5:e0:b1:a8:4e:b2:
         5f:55:e7:1b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZQ0cXaEgLy3p4DVml0NqsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzNjg0N2IyOTcyMzVmYWYwNzE2ODZmZWQyYzFlOTEwYmY2
MDA0ODYwHhcNMjYwNjMwMTYwMTA3WhcNMjYwNzAxMTYwMTA3WjAzMTEwLwYDVQQD
EyhiMDU5NThhOGU3YzExMGI5OGM3ZGNhOGViZDY4NDdhZThlNDdlZGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvby7V+YM1fuJySMVMMNB6p5Qz2P
tFaD98iWv81kOP4VLWPbMSIEmgJfHYnoXW4nI7FN1Ku5FK1UrE8NXVoWnGhcu6AI
FmkQ8i2vdkCkkThEk8iAsFwCdb3DgAphOncu2ZjpxPF0PwojHQ7UVOR7BJJ+lg0D
TjFaF+D0iw+R7trKZTdD/lQ5LGFwBjGxC2hdals43r0vzx8BEWx2XuKtkrMFEzw7
O9z0nVJP4/STu991DyKCWhoQii1ggiE/zNrEP9RwFpEag3vDqKNOFgx+kdRnaOXN
6KAk20WKL629FL5Tw+bskITHHLz6kJB1TRQvGoTbVpXHB6eHKbeoZ6UBUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLBZWKjnwRC5jH3Kjr1oR66OR+3DMB8GA1UdIwQY
MBaAFANoR7KXI1+vBxaG/tLB6RC/YASGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQTJoSHNwY2pYNjhIRm9iLTBzSHBFTDlnQklZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS80NGI3OTctY2Q1Yi00ZGVkLWE1NjIt
YmRkNzMyOGU5NGNiLzEvQTJoSHNwY2pYNjhIRm9iLTBzSHBFTDlnQklZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS80NGI3OTctY2Q1Yi00ZGVkLWE1NjItYmRkNzMyOGU5NGNi
LzEvQTJoSHNwY2pYNjhIRm9iLTBzSHBFTDlnQklZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATWJSrkS4
ojyQ5xqBN+oHX38krmK+U3N73pp8M67RSKNfuufbF2pUbGJXq0vv/gjojW7DIexo
IacqdVJdJjRkfMx2CGRxF0dd6eYa/tIu4l4pW4rynPJL68a93PcEItHrH9CSXT0f
JxQ44FrvghlIgR/gREr5lg/g4Z0AMvzxNx0dURLYwxih8isOWLNMTQ2dEZ/Aux6k
x6MFJKMVIUNGD8hVpbI66DlRA+6Ot1m4CnlqrxV02oV4AVMv3EyA+2rK04Pjxuq1
SuHkQu63aOzai8LXHTDkzUfTbVmKUe3D4MgDhjjUcNhHNty+IdxTcae236Lx09iw
xeCxqE6yX1XnGw==
-----END CERTIFICATE-----