Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft
File:                     1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft (raw, json)
Hash identifier:          KDeCr73UC5OV7F8A0CHRszu/d07B9spG1xBjQy/Jbqk=
Subject key identifier:   4E:55:EE:CE:F3:F8:78:52:57:84:26:E6:EF:23:4D:7C:F9:6F:9C:E4
Authority key identifier: D5:F6:23:DA:4C:D2:EE:DD:C2:C8:7C:51:5C:62:51:8C:43:1D:3F:B5
Certificate issuer:       /CN=d5f623da4cd2eeddc2c87c515c62518c431d3fb5
Certificate serial:       019F183108E080B97FA10A31FE78BB163767
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft
Manifest number:          069F
Signing time:             Tue 30 Jun 2026 11:01:34 +0000
Manifest this update:     Tue 30 Jun 2026 11:01:34 +0000
Manifest next update:     Wed 01 Jul 2026 11:01:34 +0000
Files and hashes:         1: 1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl (hash: h+4f+CC02/PUQrFaxQ41id/W0hlhtnR49eacXoRHpqs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 11:01:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:18:31:08:e0:80:b9:7f:a1:0a:31:fe:78:bb:16:37:67
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d5f623da4cd2eeddc2c87c515c62518c431d3fb5
        Validity
            Not Before: Jun 30 11:01:34 2026 GMT
            Not After : Jul  1 11:01:34 2026 GMT
        Subject: CN=4e55eecef3f87852578426e6ef234d7cf96f9ce4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:c0:c9:7e:01:4e:af:d8:1b:a9:09:e9:23:82:
                    4a:f4:8c:fc:dc:80:81:f6:9c:5c:21:66:b3:e1:69:
                    cc:58:70:c0:2a:3b:98:4c:e0:cf:b3:aa:87:56:96:
                    6d:f8:fe:da:d8:fb:a1:47:2b:0a:67:ed:ba:9d:d5:
                    4e:c3:65:85:5d:8b:95:1d:ad:15:2d:f9:c6:1b:c7:
                    ca:fc:52:19:ab:b2:af:c1:b4:c9:92:84:8e:ec:aa:
                    2c:4c:e0:4e:35:ff:97:f3:66:d9:d3:c5:47:07:7a:
                    b1:fd:08:7b:9d:72:4a:4b:26:d9:09:40:a2:73:0b:
                    f6:b2:3d:96:84:2a:88:4e:8d:49:90:1e:89:20:4b:
                    9c:b9:30:55:63:a6:98:fc:83:89:0d:e7:ff:a2:33:
                    be:dc:15:de:bf:72:7e:0a:5f:7e:38:46:df:83:0d:
                    74:36:c2:20:90:e6:1b:e5:c1:db:81:cd:f8:70:40:
                    43:a8:21:76:01:d7:d3:fe:93:2a:57:46:77:1f:e7:
                    f4:57:e8:a3:80:3f:2e:5e:60:e3:ee:2b:29:73:17:
                    cb:78:8b:fd:7e:96:57:9d:87:e3:52:96:03:20:a9:
                    80:7f:36:86:c5:6d:c6:21:77:7a:c5:b8:42:cd:17:
                    21:83:b2:79:ed:7e:54:52:c9:4f:1e:57:45:60:b0:
                    b2:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:55:EE:CE:F3:F8:78:52:57:84:26:E6:EF:23:4D:7C:F9:6F:9C:E4
            X509v3 Authority Key Identifier:
                keyid:D5:F6:23:DA:4C:D2:EE:DD:C2:C8:7C:51:5C:62:51:8C:43:1D:3F:B5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:99:7d:6e:51:e5:7d:b8:b2:47:1c:11:bf:bf:a8:98:78:4d:
         7c:43:60:14:60:b7:f4:0b:d7:d5:45:d2:1c:03:76:38:11:54:
         7d:08:64:b9:3e:58:da:e2:25:64:26:8c:eb:0f:1b:b6:8f:a2:
         cd:23:57:46:e1:65:85:49:b7:a7:7d:ee:2a:3c:9b:88:7f:a8:
         fb:35:92:9c:37:69:41:2b:ec:00:33:2c:6b:27:dd:a8:52:d2:
         ce:64:07:ee:83:35:91:c8:53:71:8a:17:10:1f:ba:cd:03:e4:
         82:ab:77:9b:6c:6b:36:c1:75:56:9a:29:c5:d8:94:f7:f6:1a:
         92:40:4b:a9:49:84:22:94:3a:ec:8d:1d:62:0e:00:72:c8:3e:
         5c:27:57:e6:62:d4:32:21:30:29:84:7d:eb:11:16:97:65:88:
         1c:cb:d5:32:a7:f0:42:1f:cd:81:d6:ff:1e:eb:3b:8f:83:e2:
         0e:a1:31:68:4b:db:bb:90:f4:d4:2c:01:0b:2d:25:02:b4:cb:
         bb:a9:f5:1a:89:61:30:4d:58:e0:ca:40:ac:50:33:27:1a:5b:
         84:3e:f9:e2:41:2d:85:75:98:1e:83:ea:93:19:fe:0a:c2:52:
         22:b4:2b:5d:58:bd:bc:83:cd:af:4a:79:78:84:61:a7:5b:40:
         77:b1:b4:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----