Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft
File:                     4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft (raw, json)
Hash identifier:          VJm5CJ+CVUmdst7UznhX7PxY1Jb/uzu9UzXfUWJfVJ0=
Subject key identifier:   A6:E0:8D:01:20:11:6E:2F:53:FD:C0:E4:09:7D:80:45:83:24:86:0B
Authority key identifier: E3:37:79:B8:38:8D:00:1F:DC:BD:DC:48:AC:E2:27:F0:09:85:06:60
Certificate issuer:       /CN=e33779b8388d001fdcbddc48ace227f009850660
Certificate serial:       019F1755624B754C032864AE4A5C734C8835
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft
Manifest number:          1982
Signing time:             Tue 30 Jun 2026 07:01:39 +0000
Manifest this update:     Tue 30 Jun 2026 07:01:39 +0000
Manifest next update:     Wed 01 Jul 2026 07:01:39 +0000
Files and hashes:         1: 4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl (hash: HB2w+nek+Jzcfqg2iK1jNHt3mlfKNBnqovx1dyB83yw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 07:01:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:55:62:4b:75:4c:03:28:64:ae:4a:5c:73:4c:88:35
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e33779b8388d001fdcbddc48ace227f009850660
        Validity
            Not Before: Jun 30 07:01:39 2026 GMT
            Not After : Jul  1 07:01:39 2026 GMT
        Subject: CN=a6e08d0120116e2f53fdc0e4097d80458324860b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:1d:11:9b:81:24:4f:9e:a7:1c:0a:b4:05:4e:
                    6a:fb:e3:36:22:44:cd:80:d8:ed:2f:a1:4d:74:f6:
                    48:84:b6:1d:c3:45:f8:8f:d2:b5:5f:3e:cf:2c:02:
                    aa:19:00:79:38:a4:2f:53:e9:4e:9b:9c:04:17:b2:
                    8c:03:c2:fe:4e:df:51:f9:da:49:c3:3e:1d:0a:4c:
                    ac:09:33:8f:1c:b3:b7:3e:5e:ed:a1:b9:ec:12:92:
                    5d:61:9e:bd:6b:c2:90:8c:83:8b:74:6f:65:39:86:
                    5c:30:05:92:90:cb:48:b0:f6:d2:81:cd:48:19:3b:
                    62:d4:3d:bc:3c:cd:44:53:0f:a5:9d:2d:44:0b:24:
                    6b:69:54:5e:4c:c1:ab:69:3b:de:2f:ad:bf:25:f1:
                    77:8a:18:9d:5e:90:1a:fa:f9:2f:a6:22:ec:c3:d0:
                    ea:f8:c5:b8:e1:38:22:4e:c2:39:08:d3:d5:6b:1e:
                    79:6d:dc:67:37:fe:af:68:4c:c8:3c:b6:f5:87:92:
                    41:c6:90:8f:a0:ba:4b:36:ea:35:dd:af:cd:75:5a:
                    61:92:33:26:00:48:d4:cb:66:4b:e7:9b:ca:80:d6:
                    67:b5:d5:c2:71:c7:8c:33:8b:d6:5d:d5:5d:45:1a:
                    f3:cb:82:b3:96:d8:03:94:7c:27:3b:9d:eb:36:69:
                    dd:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:E0:8D:01:20:11:6E:2F:53:FD:C0:E4:09:7D:80:45:83:24:86:0B
            X509v3 Authority Key Identifier:
                keyid:E3:37:79:B8:38:8D:00:1F:DC:BD:DC:48:AC:E2:27:F0:09:85:06:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:f5:b7:c3:88:39:a2:d6:21:46:d4:7f:87:b4:d5:0d:55:26:
         df:19:66:78:5a:88:ed:94:e7:9b:d9:e5:0d:d2:93:c5:8c:df:
         34:09:f2:d0:67:c7:1d:21:bc:36:fa:4b:e3:08:de:63:60:52:
         26:11:f5:ec:59:25:41:23:87:18:a0:44:fa:6d:b6:7a:23:f0:
         54:5c:39:cc:e5:a2:a7:02:4b:e6:3d:ab:2b:69:5b:28:77:da:
         54:da:02:6c:a2:e3:f2:20:bd:8c:24:71:d9:bd:5a:bd:7a:20:
         41:0a:0f:c8:d8:24:e2:c7:96:7d:13:7c:6c:18:35:90:6b:5c:
         28:d0:31:21:22:b3:e3:b2:09:20:77:a6:aa:9e:75:25:12:5e:
         dc:dc:58:03:e3:5c:cc:b4:a9:a6:fb:4c:85:e0:e7:fe:a8:53:
         39:29:75:cd:36:14:3a:c5:5e:29:73:09:14:de:68:f5:96:8c:
         ea:c4:70:4f:a8:07:68:9b:47:86:7c:49:84:19:b8:4c:b9:9c:
         23:ba:20:0b:8e:15:64:ef:13:95:8f:e6:43:0e:bd:30:61:b5:
         09:22:61:1e:02:c1:76:be:77:1b:91:b4:74:2f:4d:29:1f:5a:
         cf:a1:18:a2:cb:db:3d:90:2d:ae:29:2c:20:bc:30:42:a3:30:
         a9:41:33:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8XVWJLdUwDKGSuSlxzTIg1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzMzc3OWI4Mzg4ZDAwMWZkY2JkZGM0OGFjZTIyN2YwMDk4
NTA2NjAwHhcNMjYwNjMwMDcwMTM5WhcNMjYwNzAxMDcwMTM5WjAzMTEwLwYDVQQD
EyhhNmUwOGQwMTIwMTE2ZTJmNTNmZGMwZTQwOTdkODA0NTgzMjQ4NjBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0B0Rm4EkT56nHAq0BU5q++M2IkTN
gNjtL6FNdPZIhLYdw0X4j9K1Xz7PLAKqGQB5OKQvU+lOm5wEF7KMA8L+Tt9R+dpJ
wz4dCkysCTOPHLO3Pl7tobnsEpJdYZ69a8KQjIOLdG9lOYZcMAWSkMtIsPbSgc1I
GTti1D28PM1EUw+lnS1ECyRraVReTMGraTveL62/JfF3ihidXpAa+vkvpiLsw9Dq
+MW44TgiTsI5CNPVax55bdxnN/6vaEzIPLb1h5JBxpCPoLpLNuo13a/NdVphkjMm
AEjUy2ZL55vKgNZntdXCcceMM4vWXdVdRRrzy4KzltgDlHwnO53rNmnd8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKbgjQEgEW4vU/3A5Al9gEWDJIYLMB8GA1UdIwQY
MBaAFOM3ebg4jQAf3L3cSKziJ/AJhQZgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHpkNXVEaU5BQl9jdmR4SXJPSW44QW1GQm1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi85ZGIzMjYtMTE4OS00YWM5LWI0MTIt
ZjI5NGQzYjEyY2ZkLzEvNHpkNXVEaU5BQl9jdmR4SXJPSW44QW1GQm1BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi85ZGIzMjYtMTE4OS00YWM5LWI0MTItZjI5NGQzYjEyY2Zk
LzEvNHpkNXVEaU5BQl9jdmR4SXJPSW44QW1GQm1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS/W3w4g5
otYhRtR/h7TVDVUm3xlmeFqI7ZTnm9nlDdKTxYzfNAny0GfHHSG8NvpL4wjeY2BS
JhH17FklQSOHGKBE+m22eiPwVFw5zOWipwJL5j2rK2lbKHfaVNoCbKLj8iC9jCRx
2b1avXogQQoPyNgk4seWfRN8bBg1kGtcKNAxISKz47IJIHemqp51JRJe3NxYA+Nc
zLSppvtMheDn/qhTOSl1zTYUOsVeKXMJFN5o9ZaM6sRwT6gHaJtHhnxJhBm4TLmc
I7ogC44VZO8TlY/mQw69MGG1CSJhHgLBdr53G5G0dC9NKR9az6EYosvbPZAtriks
ILwwQqMwqUEzew==
-----END CERTIFICATE-----