Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft
File:                     7nwowZyp0nBozrxpyBVBZ13BLN8.mft (raw, json)
Hash identifier:          I8sgHSrNn4T3grQoeKKdC8/BiWjENUmXSWhC/eP65eA=
Subject key identifier:   DE:38:8F:E3:E3:92:2E:99:EF:50:E8:3A:50:85:32:3E:C7:86:7D:16
Authority key identifier: EE:7C:28:C1:9C:A9:D2:70:68:CE:BC:69:C8:15:41:67:5D:C1:2C:DF
Certificate issuer:       /CN=ee7c28c19ca9d27068cebc69c81541675dc12cdf
Certificate serial:       019F1943A480316EB56183082E1443918587
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7nwowZyp0nBozrxpyBVBZ13BLN8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft
Manifest number:          1986
Signing time:             Tue 30 Jun 2026 16:01:31 +0000
Manifest this update:     Tue 30 Jun 2026 16:01:31 +0000
Manifest next update:     Wed 01 Jul 2026 16:01:31 +0000
Files and hashes:         1: 7nwowZyp0nBozrxpyBVBZ13BLN8.crl (hash: Ja7jPxoS4xd/Bx+M2/Ym9JAoTF2l3v3DRoHC5ixMsPo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7nwowZyp0nBozrxpyBVBZ13BLN8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:43:a4:80:31:6e:b5:61:83:08:2e:14:43:91:85:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ee7c28c19ca9d27068cebc69c81541675dc12cdf
        Validity
            Not Before: Jun 30 16:01:31 2026 GMT
            Not After : Jul  1 16:01:31 2026 GMT
        Subject: CN=de388fe3e3922e99ef50e83a5085323ec7867d16
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:3e:cc:42:59:d5:2f:c8:07:ad:f4:1f:47:59:
                    e5:22:71:1c:7c:d6:12:fb:77:6f:7a:2d:5f:3e:49:
                    23:f3:b3:91:ad:b7:21:14:7e:98:f1:bb:a3:3a:73:
                    9d:38:be:0e:b5:6a:77:c1:de:c0:4b:92:2a:ed:45:
                    dd:fc:5a:a6:63:46:d8:6e:b8:7c:d9:7d:08:13:cf:
                    ca:d2:e5:00:b9:c7:22:43:ba:83:ea:99:45:4b:d2:
                    d8:a1:11:9c:9c:b0:46:aa:50:06:33:e1:73:37:ea:
                    9b:7d:be:42:09:1e:0a:48:23:6e:87:e2:e4:f3:8f:
                    24:c3:e7:14:ef:1a:d5:ac:6b:0f:2c:0d:17:6b:dd:
                    40:94:f6:03:3a:fd:e0:f7:f2:ae:0e:19:b5:04:e3:
                    23:b3:e4:92:1c:d2:ce:74:ef:2d:44:5c:4c:70:ff:
                    a2:a9:d4:13:55:cf:fc:68:44:f1:b9:4a:f5:09:9c:
                    6d:df:b1:4f:8e:43:01:e6:c5:b7:8a:28:1e:46:6e:
                    c9:54:37:1c:59:fc:25:02:f0:bd:e3:79:9b:26:e4:
                    b7:cd:00:38:64:99:f4:d0:3c:56:2a:0d:36:c8:0d:
                    15:00:ab:60:5b:ab:2f:0b:4e:3c:25:37:bd:f5:2e:
                    d2:c4:4a:f9:78:69:61:b2:bc:b4:36:cb:da:19:34:
                    0d:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DE:38:8F:E3:E3:92:2E:99:EF:50:E8:3A:50:85:32:3E:C7:86:7D:16
            X509v3 Authority Key Identifier:
                keyid:EE:7C:28:C1:9C:A9:D2:70:68:CE:BC:69:C8:15:41:67:5D:C1:2C:DF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7nwowZyp0nBozrxpyBVBZ13BLN8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/e24ec2-d956-4575-9287-157e3ed52f11/1/7nwowZyp0nBozrxpyBVBZ13BLN8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:c5:6a:63:b4:e5:d2:b3:7f:63:47:97:85:17:3e:58:0f:a7:
         11:ff:5e:50:37:c8:63:c2:9d:3e:6a:58:30:7d:15:be:e6:6c:
         4a:18:61:7a:b9:bb:c0:56:26:cf:35:3a:00:38:6f:69:ad:f6:
         50:3b:ec:b9:43:aa:44:47:2b:7f:be:c0:40:d6:77:61:26:72:
         21:ed:0e:6e:5d:9f:f8:7a:fe:b9:58:81:98:37:31:a0:cc:e6:
         d7:c8:8a:19:36:db:da:b2:9e:41:a0:e6:16:96:97:bc:9b:05:
         08:4a:10:da:2e:97:1e:dd:93:b2:cc:3d:58:1e:47:7d:4b:a1:
         ae:93:03:3f:5b:48:6b:99:5a:f7:8c:cd:d1:63:59:7d:e1:6d:
         2c:e4:ba:c9:b1:b5:2c:a7:c6:d7:52:c8:f3:f1:3c:6f:e6:90:
         da:ac:c7:6c:0d:63:88:d4:92:75:d5:c2:f7:29:e9:93:7d:83:
         cd:6d:3f:0d:bf:2e:11:76:7d:2b:9c:07:34:7a:3a:5e:49:be:
         19:53:c5:9d:f1:db:a6:30:bc:fd:db:4f:13:7e:55:86:a4:3c:
         68:d2:d0:74:59:17:88:54:4e:65:59:ed:30:13:3f:02:b3:4a:
         05:c2:42:b5:2c:a1:7f:b4:82:21:a2:2c:ed:9f:bd:aa:e0:94:
         b4:19:46:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZQ6SAMW61YYMILhRDkYWHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlN2MyOGMxOWNhOWQyNzA2OGNlYmM2OWM4MTU0MTY3NWRj
MTJjZGYwHhcNMjYwNjMwMTYwMTMxWhcNMjYwNzAxMTYwMTMxWjAzMTEwLwYDVQQD
EyhkZTM4OGZlM2UzOTIyZTk5ZWY1MGU4M2E1MDg1MzIzZWM3ODY3ZDE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0D7MQlnVL8gHrfQfR1nlInEcfNYS
+3dvei1fPkkj87ORrbchFH6Y8bujOnOdOL4OtWp3wd7AS5Iq7UXd/FqmY0bYbrh8
2X0IE8/K0uUAucciQ7qD6plFS9LYoRGcnLBGqlAGM+FzN+qbfb5CCR4KSCNuh+Lk
848kw+cU7xrVrGsPLA0Xa91AlPYDOv3g9/KuDhm1BOMjs+SSHNLOdO8tRFxMcP+i
qdQTVc/8aETxuUr1CZxt37FPjkMB5sW3iigeRm7JVDccWfwlAvC943mbJuS3zQA4
ZJn00DxWKg02yA0VAKtgW6svC048JTe99S7SxEr5eGlhsry0NsvaGTQNXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN44j+Pjki6Z71DoOlCFMj7Hhn0WMB8GA1UdIwQY
MBaAFO58KMGcqdJwaM68acgVQWddwSzfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN253b3daeXAwbkJvenJ4cHlCVkJaMTNCTE44LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9lMjRlYzItZDk1Ni00NTc1LTkyODct
MTU3ZTNlZDUyZjExLzEvN253b3daeXAwbkJvenJ4cHlCVkJaMTNCTE44Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9lMjRlYzItZDk1Ni00NTc1LTkyODctMTU3ZTNlZDUyZjEx
LzEvN253b3daeXAwbkJvenJ4cHlCVkJaMTNCTE44LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUsVqY7Tl
0rN/Y0eXhRc+WA+nEf9eUDfIY8KdPmpYMH0VvuZsShhherm7wFYmzzU6ADhvaa32
UDvsuUOqREcrf77AQNZ3YSZyIe0Obl2f+Hr+uViBmDcxoMzm18iKGTbb2rKeQaDm
FpaXvJsFCEoQ2i6XHt2Tssw9WB5HfUuhrpMDP1tIa5la94zN0WNZfeFtLOS6ybG1
LKfG11LI8/E8b+aQ2qzHbA1jiNSSddXC9ynpk32DzW0/Db8uEXZ9K5wHNHo6Xkm+
GVPFnfHbpjC8/dtPE35VhqQ8aNLQdFkXiFROZVntMBM/ArNKBcJCtSyhf7SCIaIs
7Z+9quCUtBlGPg==
-----END CERTIFICATE-----