Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft
File:                     BQJMtECm3Xana1aUwOL07jMOCnw.mft (raw, json)
Hash identifier:          sL7ihST3aHYSeXIJuO9hgn0TQ0zhUeFUQHJW3mJtx8c=
Subject key identifier:   E6:56:34:E6:3E:E0:40:E3:6B:9D:F1:8B:1C:35:34:BB:59:10:15:D7
Authority key identifier: 05:02:4C:B4:40:A6:DD:76:A7:6B:56:94:C0:E2:F4:EE:33:0E:0A:7C
Certificate issuer:       /CN=05024cb440a6dd76a76b5694c0e2f4ee330e0a7c
Certificate serial:       019F194408C4F4DC82364AA6BB2D530481B9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BQJMtECm3Xana1aUwOL07jMOCnw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft
Manifest number:          06B2
Signing time:             Tue 30 Jun 2026 16:01:56 +0000
Manifest this update:     Tue 30 Jun 2026 16:01:56 +0000
Manifest next update:     Wed 01 Jul 2026 16:01:56 +0000
Files and hashes:         1: BQJMtECm3Xana1aUwOL07jMOCnw.crl (hash: hZxK5fesRkAUpEgQ9HFCQntstdGjOL3xvPbONpn9k0s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BQJMtECm3Xana1aUwOL07jMOCnw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:44:08:c4:f4:dc:82:36:4a:a6:bb:2d:53:04:81:b9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=05024cb440a6dd76a76b5694c0e2f4ee330e0a7c
        Validity
            Not Before: Jun 30 16:01:56 2026 GMT
            Not After : Jul  1 16:01:56 2026 GMT
        Subject: CN=e65634e63ee040e36b9df18b1c3534bb591015d7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:ec:53:b8:a3:93:42:11:38:a5:7b:8c:50:3d:
                    2b:96:22:b0:2a:75:58:f7:9d:ef:1d:1b:ca:49:5d:
                    89:41:03:70:38:f8:c5:64:e1:d0:4e:f7:05:b2:3f:
                    6c:97:1a:88:73:55:5b:24:be:9d:36:82:f9:83:41:
                    cd:5d:16:e8:70:23:6c:b2:69:fa:8f:b2:e1:36:37:
                    fa:5d:7b:b4:bd:55:01:c6:9a:d3:01:b9:37:25:f8:
                    aa:1a:7a:be:53:60:c7:d7:79:d0:55:1f:92:e3:26:
                    35:72:f5:31:cd:d3:b1:cf:91:43:b7:ab:e3:21:10:
                    15:55:f0:56:9f:e2:1e:dc:af:be:02:d5:f9:ae:13:
                    1b:de:66:98:02:a4:06:91:a4:ca:6d:3e:8d:0d:ac:
                    92:c5:60:60:06:c5:2f:01:3b:b9:a9:b3:00:8f:19:
                    c9:29:19:92:bb:ca:5b:e3:76:9a:bc:dd:5e:16:64:
                    80:e1:40:5f:6c:64:a0:be:b6:76:ba:b4:f8:21:b7:
                    74:81:fb:5e:3e:22:00:75:47:0e:e1:1a:cc:f9:cc:
                    6e:09:30:22:12:e7:98:53:bc:67:6f:db:b5:a5:04:
                    fe:57:47:10:07:54:e1:73:83:af:af:b9:64:a5:f5:
                    d7:6e:2d:fd:53:ef:ef:b3:77:d3:f5:8f:b2:db:8a:
                    c1:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:56:34:E6:3E:E0:40:E3:6B:9D:F1:8B:1C:35:34:BB:59:10:15:D7
            X509v3 Authority Key Identifier:
                keyid:05:02:4C:B4:40:A6:DD:76:A7:6B:56:94:C0:E2:F4:EE:33:0E:0A:7C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BQJMtECm3Xana1aUwOL07jMOCnw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cd:99:41:01:85:21:17:81:b4:fb:fd:06:c7:81:ea:fd:f9:1c:
         0a:0d:9f:a5:bb:a0:24:fb:73:58:e2:d6:a3:34:31:0c:90:9b:
         8e:ca:51:40:02:9c:87:df:de:2f:49:e8:7a:18:93:75:bb:63:
         57:65:40:36:5c:da:8d:34:d5:9a:39:3c:bf:9c:91:db:fc:69:
         e8:3b:1d:c1:3a:35:f3:85:e8:d7:e8:d4:fe:c7:48:0d:40:6c:
         30:5e:fb:6c:a4:e5:7e:0e:64:66:a6:a6:bc:51:5b:29:2e:66:
         88:cf:60:2f:08:07:e2:c9:d3:88:21:7f:0b:7a:9e:2c:f1:ca:
         48:63:ef:34:5b:e7:6d:cb:b0:1f:57:6e:a5:67:fc:52:92:8d:
         04:26:76:ee:9c:d0:62:f8:4b:a3:46:bd:69:78:4d:b8:dc:47:
         36:44:67:9b:f0:41:c7:1e:37:77:b8:4a:12:ef:82:e7:cf:31:
         ad:07:c6:0f:9d:47:bb:39:a9:07:90:40:5b:32:df:3d:95:87:
         d6:3d:71:ca:1d:c7:82:43:32:bf:cf:2f:cd:3c:98:3d:b1:51:
         86:69:86:b9:c4:cb:2c:7b:b2:98:70:66:72:a0:b2:97:ff:75:
         48:df:3d:88:3e:6a:f5:17:17:c2:0a:f1:9c:78:65:1c:fc:ee:
         1c:e3:c4:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZRAjE9NyCNkqmuy1TBIG5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MDI0Y2I0NDBhNmRkNzZhNzZiNTY5NGMwZTJmNGVlMzMw
ZTBhN2MwHhcNMjYwNjMwMTYwMTU2WhcNMjYwNzAxMTYwMTU2WjAzMTEwLwYDVQQD
EyhlNjU2MzRlNjNlZTA0MGUzNmI5ZGYxOGIxYzM1MzRiYjU5MTAxNWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOxTuKOTQhE4pXuMUD0rliKwKnVY
953vHRvKSV2JQQNwOPjFZOHQTvcFsj9slxqIc1VbJL6dNoL5g0HNXRbocCNssmn6
j7LhNjf6XXu0vVUBxprTAbk3JfiqGnq+U2DH13nQVR+S4yY1cvUxzdOxz5FDt6vj
IRAVVfBWn+Ie3K++AtX5rhMb3maYAqQGkaTKbT6NDaySxWBgBsUvATu5qbMAjxnJ
KRmSu8pb43aavN1eFmSA4UBfbGSgvrZ2urT4Ibd0gftePiIAdUcO4RrM+cxuCTAi
EueYU7xnb9u1pQT+V0cQB1Thc4Ovr7lkpfXXbi39U+/vs3fT9Y+y24rBewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOZWNOY+4EDja53xixw1NLtZEBXXMB8GA1UdIwQY
MBaAFAUCTLRApt12p2tWlMDi9O4zDgp8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlFKTXRFQ20zWGFuYTFhVXdPTDA3ak1PQ253LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9hNjBiMWEtMjdiYi00NjA0LTkzNDAt
YTgyMjYyMjA0ZTM4LzEvQlFKTXRFQ20zWGFuYTFhVXdPTDA3ak1PQ253Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9hNjBiMWEtMjdiYi00NjA0LTkzNDAtYTgyMjYyMjA0ZTM4
LzEvQlFKTXRFQ20zWGFuYTFhVXdPTDA3ak1PQ253LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzZlBAYUh
F4G0+/0Gx4Hq/fkcCg2fpbugJPtzWOLWozQxDJCbjspRQAKch9/eL0noehiTdbtj
V2VANlzajTTVmjk8v5yR2/xp6DsdwTo184Xo1+jU/sdIDUBsMF77bKTlfg5kZqam
vFFbKS5miM9gLwgH4snTiCF/C3qeLPHKSGPvNFvnbcuwH1dupWf8UpKNBCZ27pzQ
YvhLo0a9aXhNuNxHNkRnm/BBxx43d7hKEu+C588xrQfGD51HuzmpB5BAWzLfPZWH
1j1xyh3HgkMyv88vzTyYPbFRhmmGucTLLHuymHBmcqCyl/91SN89iD5q9RcXwgrx
nHhlHPzuHOPEGg==
-----END CERTIFICATE-----