Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft
File:                     7nwowZyp0nBozrxpyBVBZ13BLN8.mft (raw, json)
Hash identifier:          DRc/Y47P/QAlCc61dJ80/IBAfHUXCvr0Mcj3WjK13Xg=
Subject key identifier:   8A:7C:2D:BB:B3:56:26:EA:0A:CD:D5:F9:F0:C2:2D:6C:17:C5:E3:F3
Authority key identifier: EE:7C:28:C1:9C:A9:D2:70:68:CE:BC:69:C8:15:41:67:5D:C1:2C:DF
Certificate issuer:       /CN=ee7c28c19ca9d27068cebc69c81541675dc12cdf
Certificate serial:       019E2F9673836EB31C91C3D11D082A7D8E49
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7nwowZyp0nBozrxpyBVBZ13BLN8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft
Manifest number:          190D
Signing time:             Sat 16 May 2026 07:00:49 +0000
Manifest this update:     Sat 16 May 2026 07:00:49 +0000
Manifest next update:     Sun 17 May 2026 07:00:49 +0000
Files and hashes:         1: 7nwowZyp0nBozrxpyBVBZ13BLN8.crl (hash: huRnY2cJe+qDHLjSnsRSxNZOuLesGVC9YYrMLpa7afU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7nwowZyp0nBozrxpyBVBZ13BLN8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:96:73:83:6e:b3:1c:91:c3:d1:1d:08:2a:7d:8e:49
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ee7c28c19ca9d27068cebc69c81541675dc12cdf
        Validity
            Not Before: May 16 07:00:49 2026 GMT
            Not After : May 17 07:00:49 2026 GMT
        Subject: CN=8a7c2dbbb35626ea0acdd5f9f0c22d6c17c5e3f3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:9f:8c:c5:65:ed:35:db:92:3f:39:cd:ac:28:
                    32:14:bd:45:00:49:8e:fe:96:8f:1a:f6:e5:0a:b4:
                    b5:66:0d:e2:7d:a0:ac:4a:55:7e:a5:87:ee:dc:69:
                    f6:aa:48:53:66:bd:09:8b:ea:f6:06:70:09:d1:73:
                    62:c3:9f:07:ac:61:97:dd:f2:64:3c:d1:9e:d8:5d:
                    87:47:84:d2:de:b2:d7:37:45:e9:0d:f5:a4:12:77:
                    1c:da:ed:89:ed:28:cc:cc:f5:49:5d:d8:ea:ec:f9:
                    49:06:bb:a2:82:24:c8:1f:d0:e2:a0:4c:25:3f:b1:
                    f0:1b:ba:5f:7a:38:c3:26:04:b9:6f:52:00:ca:34:
                    f8:0e:3b:ca:24:34:71:1a:cd:d0:54:8a:87:91:58:
                    7d:b5:ba:42:09:76:ea:96:52:2c:f3:62:9c:7b:67:
                    73:e6:fa:bb:7b:7b:6c:61:84:51:aa:b7:7e:77:ec:
                    16:33:0e:0d:15:9e:4e:81:ef:38:c2:b3:19:56:75:
                    06:d1:a3:70:2f:cf:d4:61:d1:7c:ef:bf:2d:ca:07:
                    2b:71:99:79:90:b9:a7:be:f6:2b:64:ff:ea:98:47:
                    23:07:c6:ab:be:f6:ad:95:05:57:84:05:7b:cc:c6:
                    72:0f:39:ee:fd:7e:cc:ec:9d:6a:90:92:d2:a6:03:
                    1d:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8A:7C:2D:BB:B3:56:26:EA:0A:CD:D5:F9:F0:C2:2D:6C:17:C5:E3:F3
            X509v3 Authority Key Identifier:
                keyid:EE:7C:28:C1:9C:A9:D2:70:68:CE:BC:69:C8:15:41:67:5D:C1:2C:DF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7nwowZyp0nBozrxpyBVBZ13BLN8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:b5:6d:f6:0c:10:d8:ee:97:41:52:c9:63:6d:3c:d5:7a:fc:
         19:05:2b:c1:33:8c:1b:b8:89:3e:f9:92:79:1c:7b:bb:bd:14:
         46:0e:ec:e0:0e:dd:79:04:9f:52:91:e0:31:f3:43:97:8e:c9:
         12:0d:fd:9a:62:65:3b:0e:fa:09:8f:43:e0:fe:25:1c:27:08:
         5d:a9:22:f5:12:da:ba:f9:c7:0a:97:7f:06:f8:18:6a:2f:d9:
         35:f3:10:25:16:4f:25:21:21:be:77:d1:32:3a:f4:c8:a6:15:
         cb:0e:34:37:46:a3:e7:b7:e6:ec:f1:6b:f0:da:65:d4:6d:07:
         92:6f:40:22:83:d4:da:c4:b5:a8:5d:6b:9c:5c:18:05:a7:44:
         82:e4:7a:e4:1a:ed:96:d0:66:23:0f:0f:61:29:96:76:2a:05:
         3d:82:7c:5c:64:4f:75:cd:72:51:e8:4f:8c:91:8b:b6:a2:19:
         87:0a:08:f2:5c:8e:95:ad:65:f4:b4:1b:ea:0b:24:fa:72:4d:
         99:10:26:cb:82:73:45:22:20:e8:17:0a:73:ee:21:5c:95:d6:
         11:13:b6:07:92:25:f9:88:41:4f:2d:4d:de:09:0e:fc:28:cf:
         6f:d4:12:3d:fe:7c:9d:94:6d:e6:d9:72:ef:fc:ca:a3:f4:94:
         0f:1d:d2:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----