Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
File:                     3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft (raw, json)
Hash identifier:          JVxRrMn9k+SPD7rqFQD0uNf+eZ8ggFVlUq2BdpVQmt8=
Subject key identifier:   0C:E1:3A:97:17:31:00:A0:D1:8B:0A:29:A7:DD:D8:8C:2E:FA:32:9B
Authority key identifier: DC:36:63:1C:A2:0E:C9:2D:19:5C:16:A8:D7:0A:63:F3:72:E5:9F:24
Certificate issuer:       /CN=dc36631ca20ec92d195c16a8d70a63f372e59f24
Certificate serial:       019F17C235B80987F468A76DEFBEE9EBD73D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
Manifest number:          08BE
Signing time:             Tue 30 Jun 2026 09:00:31 +0000
Manifest this update:     Tue 30 Jun 2026 09:00:31 +0000
Manifest next update:     Wed 01 Jul 2026 09:00:31 +0000
Files and hashes:         1: 3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl (hash: rRpq5UxtxH3Io1AECt2xC7yZNeNC8NbTYnNjFIBqoKQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 09:00:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:c2:35:b8:09:87:f4:68:a7:6d:ef:be:e9:eb:d7:3d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc36631ca20ec92d195c16a8d70a63f372e59f24
        Validity
            Not Before: Jun 30 09:00:31 2026 GMT
            Not After : Jul  1 09:00:31 2026 GMT
        Subject: CN=0ce13a97173100a0d18b0a29a7ddd88c2efa329b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:75:03:70:9d:1a:65:34:8d:e0:5e:0e:a2:52:
                    bf:d8:79:72:5e:5a:4a:fd:1a:97:34:5d:d4:82:5f:
                    06:6c:0f:42:2e:b3:94:d1:dd:61:0c:1f:95:8f:40:
                    e6:fd:e7:42:09:4a:97:91:df:52:96:27:b6:10:42:
                    db:b8:e1:20:71:c2:49:31:74:e0:1d:f8:60:a2:2b:
                    55:64:32:a1:95:66:40:34:23:b4:b5:90:72:be:90:
                    d1:59:ad:eb:47:15:7c:8a:10:9f:92:68:b3:bc:a7:
                    33:2a:64:d5:fb:9b:4d:55:c4:df:49:c5:45:75:17:
                    97:9c:2e:6a:57:65:39:65:e4:6b:8d:55:0c:9b:f9:
                    5f:d6:66:34:6b:06:46:58:1b:dc:c7:c8:c5:8f:4a:
                    aa:3a:eb:a4:7e:d9:2a:f5:c9:0d:8f:0f:89:4b:ad:
                    c1:47:5e:bf:63:0c:bc:f4:db:96:51:98:41:bf:7a:
                    5a:ed:f4:97:a6:91:9e:75:5d:8c:96:64:23:8a:34:
                    44:cb:55:2c:fa:7b:22:a7:d8:a2:b3:e4:4a:c2:3a:
                    69:a5:b9:98:32:b7:a7:dc:8b:aa:c9:e6:7a:11:46:
                    2b:e3:b3:1a:46:f4:6b:75:5b:10:cf:20:ca:10:6e:
                    f7:c6:92:34:7a:38:74:72:ba:4b:5a:14:3f:15:5e:
                    ff:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0C:E1:3A:97:17:31:00:A0:D1:8B:0A:29:A7:DD:D8:8C:2E:FA:32:9B
            X509v3 Authority Key Identifier:
                keyid:DC:36:63:1C:A2:0E:C9:2D:19:5C:16:A8:D7:0A:63:F3:72:E5:9F:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3DZjHKIOyS0ZXBao1wpj83LlnyQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/4ac162-e16e-406e-b985-5ef56f86ab83/1/3DZjHKIOyS0ZXBao1wpj83LlnyQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:c2:e1:9f:87:b3:0d:26:50:30:7e:6b:6d:ae:05:2f:bf:dd:
         23:ec:a9:b2:2f:8f:2b:c0:8c:36:bc:da:2f:4a:ff:8b:6e:81:
         3c:29:5c:12:04:48:b5:a2:88:2f:fc:14:f4:99:4e:61:94:ae:
         d1:e8:f5:11:ae:aa:cf:e8:43:d0:7f:4f:b9:53:65:6c:97:72:
         75:91:80:a9:f8:b1:71:31:2e:e8:20:83:1f:1e:88:e6:81:56:
         e7:53:de:eb:1e:fc:96:1e:bb:f1:dd:8b:35:b3:25:1f:ef:9f:
         b8:f7:fa:6d:c2:c7:8b:b0:bf:6b:43:64:56:58:90:82:0e:84:
         46:6c:7a:4b:15:4d:f6:10:60:8a:75:13:8d:5f:ee:60:02:69:
         f5:26:d1:e7:a8:52:e2:49:9f:5c:b8:76:6d:c9:70:3a:1c:3a:
         4b:56:04:0c:f1:ec:2d:bc:d8:fa:11:fd:f3:14:c9:2b:cd:a5:
         16:87:0d:8c:0d:c5:1d:9e:e1:49:0d:a6:b6:a7:15:cc:b6:b7:
         9e:02:72:30:50:8a:d6:1f:20:b0:4b:1e:d6:03:8c:a9:e9:02:
         40:b4:be:a4:ea:dc:e2:8e:9e:90:39:f8:57:8b:10:82:01:c6:
         40:65:bb:28:f1:10:91:2f:dc:4a:78:e5:ab:05:11:63:e8:36:
         d3:89:9a:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8XwjW4CYf0aKdt777p69c9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMzY2MzFjYTIwZWM5MmQxOTVjMTZhOGQ3MGE2M2YzNzJl
NTlmMjQwHhcNMjYwNjMwMDkwMDMxWhcNMjYwNzAxMDkwMDMxWjAzMTEwLwYDVQQD
EygwY2UxM2E5NzE3MzEwMGEwZDE4YjBhMjlhN2RkZDg4YzJlZmEzMjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8HUDcJ0aZTSN4F4OolK/2HlyXlpK
/RqXNF3Ugl8GbA9CLrOU0d1hDB+Vj0Dm/edCCUqXkd9Slie2EELbuOEgccJJMXTg
HfhgoitVZDKhlWZANCO0tZByvpDRWa3rRxV8ihCfkmizvKczKmTV+5tNVcTfScVF
dReXnC5qV2U5ZeRrjVUMm/lf1mY0awZGWBvcx8jFj0qqOuukftkq9ckNjw+JS63B
R16/Ywy89NuWUZhBv3pa7fSXppGedV2MlmQjijREy1Us+nsip9iis+RKwjpppbmY
Mren3IuqyeZ6EUYr47MaRvRrdVsQzyDKEG73xpI0ejh0crpLWhQ/FV7/cwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAzhOpcXMQCg0YsKKafd2Iwu+jKbMB8GA1UdIwQY
MBaAFNw2YxyiDsktGVwWqNcKY/Ny5Z8kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0RaakhLSU95UzBaWEJhbzF3cGo4M0xsbnlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS80YWMxNjItZTE2ZS00MDZlLWI5ODUt
NWVmNTZmODZhYjgzLzEvM0RaakhLSU95UzBaWEJhbzF3cGo4M0xsbnlRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS80YWMxNjItZTE2ZS00MDZlLWI5ODUtNWVmNTZmODZhYjgz
LzEvM0RaakhLSU95UzBaWEJhbzF3cGo4M0xsbnlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbMLhn4ez
DSZQMH5rba4FL7/dI+ypsi+PK8CMNrzaL0r/i26BPClcEgRItaKIL/wU9JlOYZSu
0ej1Ea6qz+hD0H9PuVNlbJdydZGAqfixcTEu6CCDHx6I5oFW51Pe6x78lh678d2L
NbMlH++fuPf6bcLHi7C/a0NkVliQgg6ERmx6SxVN9hBginUTjV/uYAJp9SbR56hS
4kmfXLh2bclwOhw6S1YEDPHsLbzY+hH98xTJK82lFocNjA3FHZ7hSQ2mtqcVzLa3
ngJyMFCK1h8gsEse1gOMqekCQLS+pOrc4o6ekDn4V4sQggHGQGW7KPEQkS/cSnjl
qwURY+g204maRw==
-----END CERTIFICATE-----