Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.mft
File:                     ESXJC-alxXrBYrVYE8_HZm7wg1o.mft (raw, json)
Hash identifier:          6IH7JG2/KzeA3oY+B0M1SNLi6ZYByjiijmyBJ5KZeLw=
Subject key identifier:   70:F7:0C:3E:EF:04:2F:BB:D8:06:AE:45:4C:BA:4B:D5:F4:CF:FE:CB
Authority key identifier: 11:25:C9:0B:E6:A5:C5:7A:C1:62:B5:58:13:CF:C7:66:6E:F0:83:5A
Certificate issuer:       /CN=1125c90be6a5c57ac162b55813cfc7666ef0835a
Certificate serial:       019E30052D56193108BA4E23B78AC3972F2A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ESXJC-alxXrBYrVYE8_HZm7wg1o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.mft
Manifest number:          0727
Signing time:             Sat 16 May 2026 09:01:46 +0000
Manifest this update:     Sat 16 May 2026 09:01:46 +0000
Manifest next update:     Sun 17 May 2026 09:01:46 +0000
Files and hashes:         1: ESXJC-alxXrBYrVYE8_HZm7wg1o.crl (hash: GGj7q+Q9qoJbc/3m6YP+/xJNJ+0nN5xY+6Y8ux64HNU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ESXJC-alxXrBYrVYE8_HZm7wg1o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 09:01:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:05:2d:56:19:31:08:ba:4e:23:b7:8a:c3:97:2f:2a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1125c90be6a5c57ac162b55813cfc7666ef0835a
        Validity
            Not Before: May 16 09:01:46 2026 GMT
            Not After : May 17 09:01:46 2026 GMT
        Subject: CN=70f70c3eef042fbbd806ae454cba4bd5f4cffecb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:f6:24:cb:2c:1c:82:31:70:b7:05:b8:35:e4:
                    ba:5b:d4:11:d4:2d:23:b4:b1:95:fb:ab:40:1d:b6:
                    a8:c8:cf:c2:a1:d5:c9:71:a8:bd:19:db:ba:ef:4e:
                    da:82:35:2f:f6:3d:85:5f:77:e3:cb:79:8d:91:17:
                    fd:56:7c:20:8d:6a:3d:70:5d:a4:3d:00:dc:ac:e2:
                    90:48:a7:55:af:01:d6:36:5e:17:e7:5c:53:38:45:
                    9e:ae:00:fd:a2:7d:42:6a:79:3e:f3:59:40:87:7b:
                    38:20:73:a6:19:69:3e:41:bb:af:fa:bf:8a:ef:63:
                    73:61:26:a7:ed:89:aa:07:bc:48:b7:66:90:09:06:
                    38:2a:2b:6b:8a:23:b0:71:a1:d4:6f:fd:46:d9:5c:
                    ea:6a:ef:89:97:13:ca:20:9c:25:fc:89:c1:ee:68:
                    6a:46:ac:09:4a:85:4a:f0:6d:77:76:77:f9:54:34:
                    ef:81:57:34:9f:97:45:00:d7:3a:aa:c9:3e:c9:cd:
                    7f:b0:29:2c:75:91:f6:fc:7d:42:c1:ed:66:af:59:
                    d2:17:f8:c1:11:7f:68:a5:b6:30:c2:73:79:3b:e0:
                    e1:d9:c1:0f:14:aa:9d:63:dc:36:c9:fd:f4:c4:65:
                    5c:56:8a:f7:51:2f:94:0b:28:1f:e8:57:29:68:e2:
                    4c:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                70:F7:0C:3E:EF:04:2F:BB:D8:06:AE:45:4C:BA:4B:D5:F4:CF:FE:CB
            X509v3 Authority Key Identifier:
                keyid:11:25:C9:0B:E6:A5:C5:7A:C1:62:B5:58:13:CF:C7:66:6E:F0:83:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESXJC-alxXrBYrVYE8_HZm7wg1o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/32/527416-ee06-4890-9fe0-eceeeb97a7d1/1/ESXJC-alxXrBYrVYE8_HZm7wg1o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:cf:59:ab:d0:ab:15:7d:05:df:f9:3b:ed:ab:d5:aa:d6:46:
         38:24:83:2c:94:4a:cf:80:4c:88:28:ea:dd:bd:5c:19:90:18:
         2b:64:4d:b3:5e:02:42:97:7e:53:28:75:a7:c1:cc:ad:c7:4f:
         0e:67:46:b6:e6:d7:65:c1:a2:22:70:0d:6b:77:fe:e0:ba:45:
         3f:b2:da:f7:e9:c7:48:17:35:c8:af:18:78:8e:e5:2a:18:00:
         16:79:7c:9d:d1:c5:a3:6c:37:c8:ea:b9:4e:d0:5b:a6:2a:cc:
         e4:e2:42:c8:e1:fd:a1:15:b3:9f:c3:af:02:85:63:f1:b3:a2:
         8d:06:f6:bd:dc:02:66:87:61:ac:d3:8e:41:be:d0:65:53:2c:
         0c:e2:0c:41:ab:36:71:e7:71:c6:5c:fa:be:92:0a:9b:55:db:
         dc:28:41:d9:c7:83:a7:d0:02:80:32:d3:1f:43:7f:84:4d:bc:
         64:6e:cc:89:d8:2b:41:69:fc:31:e1:c5:c7:ab:15:2d:79:17:
         45:9b:06:a2:1d:16:0b:54:da:52:2a:84:ff:36:4d:2d:b1:88:
         58:5a:03:38:43:a9:be:4f:83:18:c7:ca:d3:16:a8:d2:0f:55:
         0d:05:e8:bb:66:80:fc:15:9d:c8:72:9c:53:34:ca:14:99:c5:
         4a:b7:da:49
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wBS1WGTEIuk4jt4rDly8qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExMjVjOTBiZTZhNWM1N2FjMTYyYjU1ODEzY2ZjNzY2NmVm
MDgzNWEwHhcNMjYwNTE2MDkwMTQ2WhcNMjYwNTE3MDkwMTQ2WjAzMTEwLwYDVQQD
Eyg3MGY3MGMzZWVmMDQyZmJiZDgwNmFlNDU0Y2JhNGJkNWY0Y2ZmZWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu/YkyywcgjFwtwW4NeS6W9QR1C0j
tLGV+6tAHbaoyM/CodXJcai9Gdu6707agjUv9j2FX3fjy3mNkRf9VnwgjWo9cF2k
PQDcrOKQSKdVrwHWNl4X51xTOEWergD9on1Cank+81lAh3s4IHOmGWk+Qbuv+r+K
72NzYSan7YmqB7xIt2aQCQY4KitriiOwcaHUb/1G2Vzqau+JlxPKIJwl/InB7mhq
RqwJSoVK8G13dnf5VDTvgVc0n5dFANc6qsk+yc1/sCksdZH2/H1Cwe1mr1nSF/jB
EX9opbYwwnN5O+Dh2cEPFKqdY9w2yf30xGVcVor3US+UCygf6FcpaOJMiwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHD3DD7vBC+72AauRUy6S9X0z/7LMB8GA1UdIwQY
MBaAFBElyQvmpcV6wWK1WBPPx2Zu8INaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRVNYSkMtYWx4WHJCWXJWWUU4X0habTd3ZzFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81Mjc0MTYtZWUwNi00ODkwLTlmZTAt
ZWNlZWViOTdhN2QxLzEvRVNYSkMtYWx4WHJCWXJWWUU4X0habTd3ZzFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi81Mjc0MTYtZWUwNi00ODkwLTlmZTAtZWNlZWViOTdhN2Qx
LzEvRVNYSkMtYWx4WHJCWXJWWUU4X0habTd3ZzFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh89Zq9Cr
FX0F3/k77avVqtZGOCSDLJRKz4BMiCjq3b1cGZAYK2RNs14CQpd+Uyh1p8HMrcdP
DmdGtubXZcGiInANa3f+4LpFP7La9+nHSBc1yK8YeI7lKhgAFnl8ndHFo2w3yOq5
TtBbpirM5OJCyOH9oRWzn8OvAoVj8bOijQb2vdwCZodhrNOOQb7QZVMsDOIMQas2
cedxxlz6vpIKm1Xb3ChB2ceDp9ACgDLTH0N/hE28ZG7MidgrQWn8MeHFx6sVLXkX
RZsGoh0WC1TaUiqE/zZNLbGIWFoDOEOpvk+DGMfK0xao0g9VDQXou2aA/BWdyHKc
UzTKFJnFSrfaSQ==
-----END CERTIFICATE-----