Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
File:                     5_y3rNVfY0m52BRheGwSRY-G9y4.mft (raw, json)
Hash identifier:          0OWFBgeH4tQeWiZZxaaUT0LA0X/+O9Vge9dpw0aIC1c=
Subject key identifier:   F0:6D:66:77:F4:73:85:08:F4:1F:37:64:EE:D5:AB:AE:3C:ED:07:8D
Authority key identifier: E7:FC:B7:AC:D5:5F:63:49:B9:D8:14:61:78:6C:12:45:8F:86:F7:2E
Certificate issuer:       /CN=e7fcb7acd55f6349b9d81461786c12458f86f72e
Certificate serial:       019E30E0AB265DBF708748D2210013455A38
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
Manifest number:          190C
Signing time:             Sat 16 May 2026 13:01:30 +0000
Manifest this update:     Sat 16 May 2026 13:01:30 +0000
Manifest next update:     Sun 17 May 2026 13:01:30 +0000
Files and hashes:         1: 5_y3rNVfY0m52BRheGwSRY-G9y4.crl (hash: NscchFAkPC9X2vNyUg2DFNJ/pWomll0yF+vhTakP168=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:e0:ab:26:5d:bf:70:87:48:d2:21:00:13:45:5a:38
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7fcb7acd55f6349b9d81461786c12458f86f72e
        Validity
            Not Before: May 16 13:01:30 2026 GMT
            Not After : May 17 13:01:30 2026 GMT
        Subject: CN=f06d6677f4738508f41f3764eed5abae3ced078d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:41:58:08:fd:70:96:fa:de:24:1a:48:cb:e0:
                    19:25:3d:9e:c0:b4:3d:ed:36:de:31:18:cc:48:ab:
                    22:1a:e8:70:74:0c:e0:b0:15:b4:06:0d:bb:b3:1a:
                    28:b7:dd:6b:bb:e5:25:d6:1a:71:53:68:67:64:37:
                    f5:bb:af:85:84:fd:59:eb:48:39:7d:b3:e7:a9:05:
                    a4:92:97:ee:ee:15:f4:e0:98:d3:ec:60:fc:6f:46:
                    e2:91:ed:f6:e9:b5:e7:0c:1b:d3:d5:ae:eb:14:a9:
                    b7:00:76:95:53:94:82:21:93:c8:7a:f3:9b:58:c6:
                    76:fc:2a:4b:fd:ff:21:01:66:ec:1d:50:1a:fe:92:
                    99:42:36:97:a8:de:a5:9d:74:15:4a:e2:5a:f8:20:
                    be:2a:63:26:c2:16:2d:57:fd:41:0c:a7:10:6a:5f:
                    af:a8:ed:a6:fe:1f:fc:7d:5f:c5:68:d9:b2:5b:6a:
                    fa:2e:97:0e:f2:d6:65:39:75:53:14:5d:94:18:de:
                    74:af:51:e1:6c:47:5c:e9:f2:fd:90:40:81:ea:34:
                    7c:06:c3:a8:2a:ee:46:45:90:97:fa:a4:8b:18:fd:
                    66:54:11:6f:57:20:2a:fc:4f:c7:9b:45:a1:6f:11:
                    71:70:e0:95:f1:09:7b:f6:e1:67:bc:66:a5:80:bb:
                    3b:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F0:6D:66:77:F4:73:85:08:F4:1F:37:64:EE:D5:AB:AE:3C:ED:07:8D
            X509v3 Authority Key Identifier:
                keyid:E7:FC:B7:AC:D5:5F:63:49:B9:D8:14:61:78:6C:12:45:8F:86:F7:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0a:a6:b5:e1:b7:10:71:cd:2c:ef:da:94:a8:f7:b8:c9:28:52:
         ce:e6:00:fb:11:e6:9c:f0:df:fa:6c:d1:5f:43:ee:d0:d7:87:
         ad:ae:7b:3c:18:f6:82:69:6f:65:a2:22:07:9e:2d:c6:6b:4a:
         97:99:23:28:99:f7:32:e8:2c:8d:60:54:2f:8a:28:40:8f:12:
         76:9f:59:73:c1:a8:d1:dc:46:67:b7:17:df:ca:19:ff:bb:e1:
         f8:c4:10:27:f9:d5:ba:97:dc:b6:c0:3f:13:61:66:fe:f2:53:
         d7:94:c3:9b:17:af:bb:fd:55:96:23:0b:4e:da:01:b9:bd:11:
         fc:70:92:97:f2:38:a9:02:2b:e7:95:db:ac:d9:39:ad:77:55:
         3e:cd:50:84:0b:2e:b4:a6:51:2e:81:0b:f2:99:a7:69:53:23:
         11:02:5d:ac:ef:06:bb:f7:e1:8d:fb:fe:59:54:32:31:05:31:
         53:ac:99:ae:aa:c0:24:20:3e:34:48:bc:e6:60:84:7e:94:b7:
         f2:09:4d:d5:88:1b:38:ae:fc:ae:2e:38:2b:25:be:92:2c:39:
         cd:2f:b7:54:49:be:25:80:2c:3e:f3:2d:d1:17:9c:37:79:73:
         de:e0:0d:c3:fc:ab:4d:2c:a5:b2:25:3c:cd:8b:19:ee:9c:ac:
         9d:80:94:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----