Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
File:                     0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft (raw, json)
Hash identifier:          EVrp7t5CfQ0DYZ5BXL5zKtHmpOKfaU42aJnhAZ7RM8g=
Subject key identifier:   68:70:50:C3:B8:92:5E:64:F9:5F:84:AC:0F:73:E7:EA:3B:22:8F:21
Authority key identifier: D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF
Certificate issuer:       /CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
Certificate serial:       019E300547FA93D205564B93E7619BBC9F89
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
Manifest number:          0765
Signing time:             Sat 16 May 2026 09:01:52 +0000
Manifest this update:     Sat 16 May 2026 09:01:52 +0000
Manifest next update:     Sun 17 May 2026 09:01:52 +0000
Files and hashes:         1: 0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl (hash: eTGGWyYmNl0ZYWBOkugYcdkpdifudrIg/Nz6jKA5ZL8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 09:01:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:05:47:fa:93:d2:05:56:4b:93:e7:61:9b:bc:9f:89
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d1b0e8686f7dab1f64c80d4382c3c5949ff11dbf
        Validity
            Not Before: May 16 09:01:52 2026 GMT
            Not After : May 17 09:01:52 2026 GMT
        Subject: CN=687050c3b8925e64f95f84ac0f73e7ea3b228f21
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:5a:b7:d3:ac:78:d4:e7:26:c1:b8:60:f6:7d:
                    97:9b:be:01:f4:78:be:62:97:98:66:fc:ae:e8:18:
                    c2:c1:29:10:d8:85:91:43:f5:46:5d:bf:89:e4:bd:
                    6f:c2:1e:da:6a:64:bf:ae:2e:69:52:db:51:c0:37:
                    e1:44:89:ab:a0:75:e8:27:d5:f7:56:e7:f5:be:33:
                    c7:6d:a3:51:a5:34:09:ae:58:7a:2a:75:65:f5:9f:
                    97:45:72:b5:b3:e6:03:0e:94:5a:99:8e:38:a2:a0:
                    22:b8:c1:8a:81:29:40:cc:5e:99:50:22:6d:0b:bb:
                    f0:c5:44:85:da:e8:63:8c:22:8d:9a:34:77:7a:22:
                    9e:52:73:c4:7c:a9:a8:0d:9c:73:77:da:16:1e:fa:
                    a5:d1:b1:c2:6b:c1:39:46:67:f9:81:39:45:51:be:
                    80:99:84:ec:f7:a1:91:d5:7e:6f:62:a8:ab:d1:88:
                    75:5e:3c:d5:72:64:22:7e:e0:92:9f:5a:19:19:2e:
                    76:a6:9c:cc:85:fd:c0:9a:d9:cb:77:81:43:8f:2d:
                    45:ef:34:2f:2f:6d:39:80:0c:6e:50:8c:55:94:67:
                    aa:45:f2:aa:bd:da:f4:e0:dc:db:e5:c6:54:4f:78:
                    99:f8:b9:68:54:ab:f9:7f:28:95:53:67:2f:a8:08:
                    6e:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:70:50:C3:B8:92:5E:64:F9:5F:84:AC:0F:73:E7:EA:3B:22:8F:21
            X509v3 Authority Key Identifier:
                keyid:D1:B0:E8:68:6F:7D:AB:1F:64:C8:0D:43:82:C3:C5:94:9F:F1:1D:BF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bDoaG99qx9kyA1DgsPFlJ_xHb8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/456a2b-8755-4bfc-8b6c-dbbc254d1c6c/1/0bDoaG99qx9kyA1DgsPFlJ_xHb8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:97:92:c2:71:00:c5:88:a7:cc:cd:be:55:e2:1d:b5:b6:de:
         c8:19:ba:d0:83:e9:87:8f:09:07:5d:70:69:e9:84:56:ac:ac:
         63:77:bb:55:0c:a5:37:0e:6d:f5:98:46:75:1e:38:4e:1a:00:
         e9:10:4a:a3:7d:0b:46:c3:f7:c1:df:e0:13:7b:e7:f0:0a:e2:
         90:98:99:80:04:f1:20:00:f0:83:54:43:8a:cb:bd:31:54:44:
         9a:0b:17:a1:25:7d:34:f0:14:d0:9e:72:99:f1:08:e6:e7:9f:
         7a:6e:52:df:2e:ae:21:90:c2:c7:7b:f3:92:b7:56:a3:2d:70:
         46:2f:53:37:dc:1a:cf:1d:d8:4a:ac:25:8b:22:49:36:26:a3:
         38:7e:88:9e:4a:c3:cc:90:08:98:94:22:f8:df:9b:2e:5c:ac:
         34:c6:fc:94:a3:76:4d:f9:99:91:52:c0:7a:19:90:c5:4d:27:
         3c:0e:b9:fc:9c:a2:14:e9:42:52:b6:2a:bc:da:41:e5:63:dc:
         e5:7d:e5:b0:c6:ae:41:a9:96:a3:10:7c:6b:25:05:d6:b9:30:
         8b:74:b5:c2:67:e5:f8:d5:8e:ed:9b:99:10:5b:56:60:04:33:
         b4:26:4b:d7:bd:3e:df:88:e9:c8:73:bd:d8:2e:d0:c5:da:a4:
         82:dc:a5:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----