Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
File:                     5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft (raw, json)
Hash identifier:          JTvzagI1JOOGOcJqOgAbUcQXjOtc0AXhKSincr0Zoz4=
Subject key identifier:   3B:70:4F:DF:BE:DA:6D:5F:5A:3C:1E:7D:19:93:6C:A5:68:C2:6A:B7
Authority key identifier: E7:33:B2:EA:B7:E2:34:68:7B:E9:7F:8C:35:D6:E6:CC:3E:2D:FC:BA
Certificate issuer:       /CN=e733b2eab7e234687be97f8c35d6e6cc3e2dfcba
Certificate serial:       019E303BB3C0EB91EA7095F36E85A9389DA1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
Manifest number:          190C
Signing time:             Sat 16 May 2026 10:01:19 +0000
Manifest this update:     Sat 16 May 2026 10:01:19 +0000
Manifest next update:     Sun 17 May 2026 10:01:19 +0000
Files and hashes:         1: 5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl (hash: +JvHbcBXi9gREy2RvWiLnlJBXZFFhy5bYQY+ENcsSpg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 10:01:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:3b:b3:c0:eb:91:ea:70:95:f3:6e:85:a9:38:9d:a1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e733b2eab7e234687be97f8c35d6e6cc3e2dfcba
        Validity
            Not Before: May 16 10:01:19 2026 GMT
            Not After : May 17 10:01:19 2026 GMT
        Subject: CN=3b704fdfbeda6d5f5a3c1e7d19936ca568c26ab7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:fd:58:a1:e1:26:6e:b5:e9:28:83:d9:11:f3:
                    a2:b4:a9:f9:e9:0d:3c:60:c7:e5:5a:74:16:e5:35:
                    02:8c:5a:ae:00:7f:a2:5f:49:92:44:f7:9f:33:33:
                    81:83:49:c3:9d:2e:6d:b3:77:a9:3e:69:67:0c:06:
                    f3:b7:0b:cf:7f:90:e0:f5:3b:a4:88:24:c3:43:8c:
                    e9:a2:06:95:00:a2:a8:85:bf:12:d4:81:92:f1:37:
                    3d:23:97:83:8d:e8:3c:a8:a9:02:90:1c:64:10:71:
                    17:af:81:45:71:da:13:ae:8d:f5:3f:ac:d7:a7:27:
                    c0:12:90:87:44:7b:0f:e1:80:74:7c:ec:9b:92:bd:
                    fe:68:a9:8f:cc:3f:f0:26:b0:5e:09:14:b3:91:cf:
                    0f:74:f9:da:17:b6:3b:3b:1f:c9:a0:66:68:c2:1e:
                    f7:a4:c2:d1:c5:d6:19:1d:a1:b0:e0:6c:29:4b:7a:
                    00:ff:e9:e0:34:c8:3f:53:e5:0f:e2:53:e5:83:d2:
                    a1:b2:64:24:bd:9e:b8:5d:0a:fc:e1:78:b4:ac:87:
                    7c:0d:ea:c8:98:71:6a:98:f4:d0:1e:42:c5:37:9d:
                    80:54:bb:ef:38:cf:ef:14:7b:3f:94:19:75:d3:b5:
                    2c:79:a3:a7:bc:8c:c6:1f:4b:d1:0b:21:0e:ef:f4:
                    06:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3B:70:4F:DF:BE:DA:6D:5F:5A:3C:1E:7D:19:93:6C:A5:68:C2:6A:B7
            X509v3 Authority Key Identifier:
                keyid:E7:33:B2:EA:B7:E2:34:68:7B:E9:7F:8C:35:D6:E6:CC:3E:2D:FC:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:1b:0b:34:93:6b:c2:24:26:23:64:fd:97:6b:a9:d9:16:e0:
         a4:bc:f4:72:d5:8b:87:3b:80:f3:ee:16:fa:14:e9:96:63:99:
         4c:f2:7f:dd:bf:db:c8:d4:bd:ab:1d:b9:b1:cc:b7:40:df:50:
         23:7d:68:8a:a8:a3:1c:d0:54:2f:75:f5:66:e7:d4:dc:ff:43:
         95:09:21:7c:a3:8b:30:bd:44:f9:ed:9a:65:6d:3d:6d:73:1b:
         03:b8:23:71:00:94:05:df:b4:25:df:ba:c2:58:a7:76:84:e4:
         e3:f5:70:fc:a4:87:4f:11:e6:9c:18:84:5c:62:7e:56:5d:d0:
         57:03:d4:d2:60:d1:ef:e3:93:78:af:4d:34:40:b0:73:04:95:
         81:63:f9:13:13:86:1c:a0:d5:c4:dc:81:2d:de:4e:1b:ad:18:
         b5:fe:a7:81:74:05:c2:b5:0d:42:24:29:90:e5:f9:54:3a:39:
         98:a3:4d:fe:62:89:e2:cd:89:56:cb:a2:a8:37:ff:e0:2f:e6:
         05:6d:cc:da:5f:40:f2:63:6a:96:a7:43:e7:58:62:77:4c:0e:
         b7:a0:d1:53:f3:8c:aa:61:4e:c3:26:9b:41:24:9d:28:40:a3:
         3e:37:65:e1:e4:91:59:4f:f1:df:2b:82:76:a5:c3:09:d4:a4:
         c5:47:d3:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----