Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.mft
File:                     0ur89N6SC5zmRdbmlt8IqosFUZs.mft (raw, json)
Hash identifier:          2yEdKm/0fKAMZyXrM8RLkiRWW20pwvyT2oxFQFHzQUk=
Subject key identifier:   01:56:F5:55:FA:17:2B:72:EA:90:AD:55:44:66:92:62:EF:38:00:1A
Authority key identifier: D2:EA:FC:F4:DE:92:0B:9C:E6:45:D6:E6:96:DF:08:AA:8B:05:51:9B
Certificate issuer:       /CN=d2eafcf4de920b9ce645d6e696df08aa8b05519b
Certificate serial:       019E3073031DF516C31F5093F96EC0B0A54A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0ur89N6SC5zmRdbmlt8IqosFUZs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.mft
Manifest number:          1611
Signing time:             Sat 16 May 2026 11:01:44 +0000
Manifest this update:     Sat 16 May 2026 11:01:44 +0000
Manifest next update:     Sun 17 May 2026 11:01:44 +0000
Files and hashes:         1: 0ur89N6SC5zmRdbmlt8IqosFUZs.crl (hash: DHzRwx2/bqUmL6kMm2NS4pktJZ6rWir5wRGGccgCaiY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0ur89N6SC5zmRdbmlt8IqosFUZs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 11:01:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:73:03:1d:f5:16:c3:1f:50:93:f9:6e:c0:b0:a5:4a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d2eafcf4de920b9ce645d6e696df08aa8b05519b
        Validity
            Not Before: May 16 11:01:44 2026 GMT
            Not After : May 17 11:01:44 2026 GMT
        Subject: CN=0156f555fa172b72ea90ad5544669262ef38001a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:c7:72:7a:06:0b:8b:ba:56:d8:ed:f4:33:9d:
                    f0:ef:1f:7d:e1:d4:57:7e:7a:29:00:16:10:f0:ff:
                    5c:0b:86:25:2e:4b:84:b4:4d:db:23:33:a7:d9:dd:
                    5e:6f:89:22:f5:b2:ed:23:86:ad:f1:8c:05:70:fe:
                    87:18:66:0e:f2:07:c9:8f:af:b9:36:83:89:6f:1c:
                    d1:14:65:a5:0f:f7:88:8e:c3:78:ce:d8:04:d3:a2:
                    f5:be:d1:f4:7a:bf:65:5c:f4:1a:e0:7a:3d:03:56:
                    61:41:6a:9c:84:6d:01:4a:38:3d:40:25:87:42:3d:
                    8c:7e:f1:4a:2b:e7:5a:62:3c:ba:84:bc:03:08:87:
                    20:e7:7c:37:91:4c:9b:bc:a0:36:43:2b:3b:fc:5b:
                    2f:a4:08:ef:e4:5b:40:46:92:bc:22:63:5a:39:60:
                    7b:29:75:98:d2:e1:4f:b7:0e:2f:fb:ef:69:8c:38:
                    19:c3:5a:ab:aa:eb:71:f0:da:4d:01:af:bd:87:13:
                    c0:06:c5:e6:59:a4:24:22:0b:57:25:96:6a:3a:04:
                    23:24:ae:51:52:99:10:86:50:f7:46:75:cb:0d:db:
                    04:25:5d:63:0d:8a:9c:2d:cc:99:d2:98:14:4f:87:
                    35:f9:04:83:6c:40:e9:8b:1f:25:72:56:41:7f:1c:
                    3c:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                01:56:F5:55:FA:17:2B:72:EA:90:AD:55:44:66:92:62:EF:38:00:1A
            X509v3 Authority Key Identifier:
                keyid:D2:EA:FC:F4:DE:92:0B:9C:E6:45:D6:E6:96:DF:08:AA:8B:05:51:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ur89N6SC5zmRdbmlt8IqosFUZs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:24:97:72:28:6f:5a:4d:c9:b2:92:03:76:e7:20:b7:55:d6:
         29:bb:e7:c5:a9:80:d7:4b:1b:7b:5d:3f:c6:7a:56:31:ed:19:
         7c:33:1d:7c:d5:84:93:3c:1f:dd:e0:23:4d:52:3f:9f:63:bb:
         8e:d4:ef:ca:33:e1:46:33:a6:91:88:3e:bf:46:a2:17:5c:e6:
         43:ae:99:06:cc:4a:29:45:2a:f2:9e:45:3d:95:57:19:da:29:
         8e:92:c1:ed:fd:bf:d3:ee:7c:fd:27:4e:d9:b5:e6:a5:65:37:
         be:d5:78:3d:2a:25:10:4b:57:b7:08:a5:3d:0d:7f:87:4e:a5:
         e5:93:19:0d:d8:66:9b:6e:c5:88:82:6d:9a:aa:8e:dd:ca:7a:
         ec:91:e4:87:4e:f9:35:37:07:0d:6e:a3:79:ad:66:58:9e:1b:
         4f:9b:d9:41:6a:c6:70:ce:f7:2d:52:fa:99:a3:40:1c:4a:3b:
         81:7f:fc:48:41:51:20:e0:15:8b:c7:39:3c:7a:c1:a6:ba:fe:
         70:d6:d2:04:48:e7:11:5f:93:aa:da:c3:16:8e:dd:ea:26:16:
         2f:15:41:60:08:58:4b:fe:7c:9f:fa:53:9c:99:99:84:95:a0:
         2f:cf:1a:3e:65:43:7c:3b:1f:d8:c1:7d:7b:b8:fa:ce:63:66:
         f3:43:1d:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----