Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.mft
File:                     ESXJC-alxXrBYrVYE8_HZm7wg1o.mft (raw, json)
Hash identifier:          ynVqi0KqEr7ZRXJy9nxuc6126eM6oOhxw2Zn8eH9pZk=
Subject key identifier:   7C:B2:38:0B:8C:FF:8F:F8:DF:57:20:A2:82:92:99:B8:A6:DC:2E:CE
Authority key identifier: 11:25:C9:0B:E6:A5:C5:7A:C1:62:B5:58:13:CF:C7:66:6E:F0:83:5A
Certificate issuer:       /CN=1125c90be6a5c57ac162b55813cfc7666ef0835a
Certificate serial:       019F17C2FB1D249589E02532276AB1E1DE6B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ESXJC-alxXrBYrVYE8_HZm7wg1o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.mft
Manifest number:          079F
Signing time:             Tue 30 Jun 2026 09:01:21 +0000
Manifest this update:     Tue 30 Jun 2026 09:01:21 +0000
Manifest next update:     Wed 01 Jul 2026 09:01:21 +0000
Files and hashes:         1: ESXJC-alxXrBYrVYE8_HZm7wg1o.crl (hash: vssSDaxXzCGsjcbWX2C8LlFr4234knJz54c4n0Pli00=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ESXJC-alxXrBYrVYE8_HZm7wg1o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 09:01:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:c2:fb:1d:24:95:89:e0:25:32:27:6a:b1:e1:de:6b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1125c90be6a5c57ac162b55813cfc7666ef0835a
        Validity
            Not Before: Jun 30 09:01:21 2026 GMT
            Not After : Jul  1 09:01:21 2026 GMT
        Subject: CN=7cb2380b8cff8ff8df5720a2829299b8a6dc2ece
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:4d:ff:27:41:d9:58:05:a5:2a:ca:6e:84:bd:
                    b5:1d:3f:d8:db:91:2f:80:71:ab:70:1c:ef:fd:fd:
                    cd:04:56:6b:77:3b:6d:b4:b7:09:b9:ad:79:20:2e:
                    7f:df:ad:92:27:69:69:f2:4a:44:4f:0d:4a:17:62:
                    97:b9:00:bb:06:e4:39:1d:ab:65:bc:41:9a:c3:f8:
                    16:6e:86:5f:e2:e0:39:25:30:e3:34:1b:54:d2:e8:
                    d9:60:a3:a8:76:07:01:e1:95:cc:c5:18:39:e7:97:
                    f9:d8:1c:30:20:41:05:54:c5:60:cc:e1:7d:78:74:
                    67:a0:41:e6:cd:df:86:98:73:e5:91:98:31:88:a5:
                    07:7d:e6:70:8b:83:08:50:c2:9e:91:7a:c2:ba:ae:
                    a9:55:88:b0:2e:b7:91:23:45:5c:23:32:c9:d8:8e:
                    ce:89:ef:cd:83:b4:58:ce:bf:f1:e2:23:09:df:1a:
                    35:0f:35:95:70:6e:d9:44:06:cb:76:66:06:a7:2e:
                    43:cb:38:66:25:1c:e0:7c:27:74:f2:13:65:8c:58:
                    8d:81:56:8a:0b:d2:bf:4a:3f:07:d6:e9:7d:30:b4:
                    44:3b:3e:0c:d9:d4:08:0a:0b:7d:2b:38:c9:38:1a:
                    d5:25:96:4e:ce:1b:4e:a9:62:ae:22:4b:fc:da:c6:
                    a1:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:B2:38:0B:8C:FF:8F:F8:DF:57:20:A2:82:92:99:B8:A6:DC:2E:CE
            X509v3 Authority Key Identifier:
                keyid:11:25:C9:0B:E6:A5:C5:7A:C1:62:B5:58:13:CF:C7:66:6E:F0:83:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESXJC-alxXrBYrVYE8_HZm7wg1o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ac:42:0d:66:80:45:bc:fb:c6:1d:33:d9:74:63:d5:1b:c6:ee:
         18:6c:53:ee:cf:c0:7b:70:a7:9f:43:30:d3:9f:6a:74:93:5c:
         d7:0b:9e:c9:f5:e0:b0:a0:35:e5:a4:d9:8b:62:6a:49:3d:de:
         ce:05:6d:12:1b:83:92:eb:46:b4:5b:1b:42:64:a5:f6:c9:7d:
         54:7e:f8:6a:40:0b:68:a9:f4:d4:7c:ad:c3:8e:03:04:c2:09:
         72:ee:18:40:6d:d6:a9:30:09:24:c3:12:40:40:0d:38:b9:6f:
         12:7b:0a:7e:c3:c9:81:52:2d:f7:0e:31:c3:4a:a0:fe:04:4f:
         72:87:32:3d:3a:64:a8:2d:df:23:07:81:b6:17:02:5e:b6:b4:
         29:f3:96:0b:77:0f:69:88:33:e9:22:dd:dc:84:ab:1d:dc:37:
         15:69:c8:45:5b:53:a4:55:ce:7b:38:b8:29:d2:b5:ce:f6:ca:
         75:15:77:97:f4:f1:0e:02:88:e6:7a:54:bf:8a:fe:4a:59:6b:
         62:c1:49:fe:71:a3:db:ca:59:67:9e:dd:86:5f:43:11:9d:9a:
         88:9d:43:51:1e:b4:e8:00:e6:bf:da:11:a0:12:5a:2e:5b:fc:
         d3:90:3a:8a:66:8b:f6:fa:22:a6:3e:55:05:ee:70:96:25:45:
         52:b6:50:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----