Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft
File:                     4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft (raw, json)
Hash identifier:          6QsUa0rZQuB84bTUZII0PdAFsFwhaFgshYfZ0Nnti6A=
Subject key identifier:   94:1A:E5:5E:10:8F:C8:08:71:B8:A6:DE:12:69:0F:A3:B6:CA:F4:81
Authority key identifier: E2:AE:E5:A5:92:B3:A7:EC:73:B5:49:44:24:99:6F:7E:BE:C6:8F:BC
Certificate issuer:       /CN=e2aee5a592b3a7ec73b5494424996f7ebec68fbc
Certificate serial:       019E318537A81C1AF0EB800A1FF629E57959
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4q7lpZKzp-xztUlEJJlvfr7Gj7w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft
Manifest number:          190D
Signing time:             Sat 16 May 2026 16:01:14 +0000
Manifest this update:     Sat 16 May 2026 16:01:14 +0000
Manifest next update:     Sun 17 May 2026 16:01:14 +0000
Files and hashes:         1: 4q7lpZKzp-xztUlEJJlvfr7Gj7w.crl (hash: QSGYBBegaIS80AR3OXzRrtloYaOFCyqE1QPL1N4ZSoY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4q7lpZKzp-xztUlEJJlvfr7Gj7w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:31:85:37:a8:1c:1a:f0:eb:80:0a:1f:f6:29:e5:79:59
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e2aee5a592b3a7ec73b5494424996f7ebec68fbc
        Validity
            Not Before: May 16 16:01:14 2026 GMT
            Not After : May 17 16:01:14 2026 GMT
        Subject: CN=941ae55e108fc80871b8a6de12690fa3b6caf481
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:04:7d:0c:23:26:af:64:79:c6:83:47:21:0e:
                    80:2a:17:ec:50:1c:13:90:3f:ac:1f:6d:6d:60:8a:
                    40:0f:e8:a8:83:df:b8:f6:63:ea:bc:9f:47:55:f4:
                    09:a7:4c:48:a0:25:99:8f:b3:2a:a3:2f:13:7f:6a:
                    2e:94:03:f2:d8:42:cd:1e:00:57:1d:fb:7c:56:20:
                    9c:d1:1a:fb:5a:3c:7f:4f:96:83:c1:ff:27:86:50:
                    90:48:23:55:de:9b:ab:d2:0f:47:30:ad:db:53:06:
                    3e:1e:fe:9b:37:08:40:dc:22:3b:d0:f8:6d:d0:1d:
                    e6:ed:a4:af:0c:ba:fe:b7:48:9e:8e:c3:89:f8:a9:
                    60:62:74:0f:d7:a6:ec:0e:cd:d5:fd:60:3e:94:31:
                    9b:d7:a0:41:56:d1:db:90:1f:66:f2:7d:6b:ed:8c:
                    d1:f3:b4:3c:1f:ad:60:ab:51:73:09:71:4f:f5:d2:
                    47:2d:1a:1c:5b:2a:a4:20:88:52:61:f5:16:3a:af:
                    f4:a5:cb:b6:f0:3e:b4:77:08:87:59:ee:c6:c9:a2:
                    0f:2d:b2:64:7f:13:7e:dd:67:ac:c0:fb:8f:27:58:
                    88:4a:f1:87:21:8d:69:78:0b:ca:18:29:1f:bf:88:
                    03:2e:94:53:a5:e2:d6:a2:28:2f:6e:ba:e4:0a:79:
                    57:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:1A:E5:5E:10:8F:C8:08:71:B8:A6:DE:12:69:0F:A3:B6:CA:F4:81
            X509v3 Authority Key Identifier:
                keyid:E2:AE:E5:A5:92:B3:A7:EC:73:B5:49:44:24:99:6F:7E:BE:C6:8F:BC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4q7lpZKzp-xztUlEJJlvfr7Gj7w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:62:77:8a:1c:f8:9e:36:e5:5a:ec:4c:94:63:c4:5e:71:3b:
         84:ed:87:f1:c0:2b:3e:cc:a1:a5:73:c2:53:88:29:16:e7:c9:
         61:65:78:d3:21:c3:60:67:e4:2c:2b:a4:98:3b:b1:82:92:2c:
         83:ca:38:0b:f3:2d:91:4f:43:66:28:d9:d5:c8:7a:c3:df:8c:
         6b:54:6b:fd:d3:e9:cc:e6:e6:6a:87:89:f9:e9:9e:10:07:0a:
         50:0a:72:21:3d:1c:24:c1:e5:71:41:43:d1:b9:c6:d3:2a:7d:
         85:c6:a9:2d:36:47:b3:1a:ec:b4:d0:ef:06:56:47:44:0c:ae:
         54:6c:16:eb:58:c0:ce:73:7f:5b:7a:87:a3:da:ef:5d:ce:4b:
         ea:73:96:19:be:9e:42:72:ac:b2:99:2f:f8:68:ae:db:0c:4c:
         79:2d:fa:b2:61:19:82:83:4a:16:f2:12:f8:3b:76:ef:cb:33:
         5a:9b:fe:7e:78:e4:0a:79:8c:f9:21:cd:3c:91:ec:2b:c3:79:
         8b:38:cc:81:f9:8a:ea:fc:8f:74:e2:60:8f:87:d2:7c:5f:e7:
         d7:3e:bb:2f:ff:ab:57:fb:f6:c4:ff:0f:4c:d8:68:f6:5e:86:
         e0:e1:4a:ea:75:b7:fd:f4:d9:c2:ef:e1:59:ae:e4:c0:b0:80:
         30:a8:7f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----