Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
File:                     Bv170s3aV23AzQiOvm7mAZceEjQ.mft (raw, json)
Hash identifier:          rw2KZFLJkDWo1PVKDkYbcmrkoLxJSs404zZIOVNSanA=
Subject key identifier:   BA:D9:46:5E:33:AF:39:2B:33:BD:ED:C3:7C:74:F4:66:CB:19:E7:45
Authority key identifier: 06:FD:7B:D2:CD:DA:57:6D:C0:CD:08:8E:BE:6E:E6:01:97:1E:12:34
Certificate issuer:       /CN=06fd7bd2cdda576dc0cd088ebe6ee601971e1234
Certificate serial:       019F1830EED7DB6EB2E9B00B885C95E4C5F2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
Manifest number:          115E
Signing time:             Tue 30 Jun 2026 11:01:27 +0000
Manifest this update:     Tue 30 Jun 2026 11:01:27 +0000
Manifest next update:     Wed 01 Jul 2026 11:01:27 +0000
Files and hashes:         1: Bv170s3aV23AzQiOvm7mAZceEjQ.crl (hash: GVeGDKEjVYrXQaWI0x5R/bcEFYx32SbxUntsXEKRm/Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 11:01:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:18:30:ee:d7:db:6e:b2:e9:b0:0b:88:5c:95:e4:c5:f2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=06fd7bd2cdda576dc0cd088ebe6ee601971e1234
        Validity
            Not Before: Jun 30 11:01:27 2026 GMT
            Not After : Jul  1 11:01:27 2026 GMT
        Subject: CN=bad9465e33af392b33bdedc37c74f466cb19e745
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:5d:8c:6c:51:18:74:56:40:77:22:a8:09:b6:
                    ac:35:b2:b3:66:b8:cc:31:97:fd:2c:c6:da:b8:66:
                    d5:50:cd:29:f4:8e:2f:a9:ed:7a:28:20:de:27:fe:
                    eb:a4:ef:82:77:6f:79:ff:1c:67:d6:92:e3:51:5c:
                    cb:79:fe:2a:62:2f:71:dd:88:8e:d2:62:6a:56:42:
                    f9:f1:64:a9:33:83:28:c0:04:67:e9:9e:79:bd:05:
                    7d:b1:dc:33:67:1f:8d:5c:8f:09:f5:96:12:5e:6d:
                    cb:7e:f9:2b:b8:f7:4e:83:ec:1d:03:81:3d:dc:4b:
                    8c:bb:84:49:9f:0e:42:f6:f6:bf:9f:a2:e1:80:ae:
                    e2:b0:d0:29:2c:af:cb:fc:09:da:ad:40:5e:91:30:
                    de:f3:56:bc:86:bf:22:14:f3:17:ff:3c:aa:b6:a7:
                    16:cd:19:b7:fc:9d:d7:5f:4d:8c:04:1a:23:d8:61:
                    a3:64:94:9b:ba:dd:47:33:8d:bb:bb:e1:3a:2f:eb:
                    6b:db:4f:70:20:40:47:cc:0e:9a:fd:5c:ad:2c:50:
                    f9:b1:c1:34:8d:c3:83:b7:f1:69:2d:57:e8:d4:da:
                    4f:29:fc:c0:36:ee:1d:ba:20:46:50:9f:61:cb:0a:
                    72:0a:7b:8e:40:a9:9b:6f:9f:3b:2c:16:c1:95:35:
                    52:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:D9:46:5E:33:AF:39:2B:33:BD:ED:C3:7C:74:F4:66:CB:19:E7:45
            X509v3 Authority Key Identifier:
                keyid:06:FD:7B:D2:CD:DA:57:6D:C0:CD:08:8E:BE:6E:E6:01:97:1E:12:34

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:c5:e4:3f:5f:68:8e:13:6b:de:75:59:3e:47:d7:ee:db:17:
         4e:59:aa:10:07:bf:45:17:4a:e0:7f:25:28:18:a6:3b:33:2f:
         cd:c3:09:d4:83:6c:21:62:64:e5:7a:02:79:8e:cf:2c:00:66:
         ce:be:92:a6:f0:c3:25:be:76:53:48:be:09:4b:20:ee:3c:54:
         88:80:14:52:11:9e:52:48:66:7c:a2:f2:df:94:13:99:df:cd:
         f9:b3:e9:bd:9a:63:5f:7f:dd:94:fc:72:a4:b3:72:88:79:fa:
         56:2c:bd:53:25:a6:78:2c:1a:16:2c:c8:ca:d9:10:9a:e5:af:
         0c:e0:40:0e:2d:66:36:29:f0:c0:3c:22:99:c1:2a:08:c1:43:
         64:5a:a3:d0:7d:ed:66:24:c7:6d:27:41:af:58:88:44:19:f2:
         50:9e:27:76:cd:05:93:a0:cd:65:45:fd:83:d1:57:c4:d9:cb:
         8b:f1:01:b2:b7:9e:2d:71:12:54:75:6f:6d:74:82:2b:e9:52:
         15:fa:34:c7:13:9e:96:a7:83:80:35:c7:e9:d8:8d:18:e8:25:
         5c:46:34:92:fe:26:2b:bf:bd:a6:0d:07:7d:c9:fa:60:58:e9:
         34:38:4f:8f:63:1b:eb:af:57:8e:b2:1f:d8:87:5c:01:40:eb:
         67:06:48:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----