Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.mft
File:                     4tccU1qnoKzpP62r22WD-ISmxiY.mft (raw, json)
Hash identifier:          VmbHwtxoeoY6mIMjKJPzag/kVn9KxVH2b2UYaTx0vLw=
Subject key identifier:   F8:69:8D:7E:BE:3B:07:72:19:58:25:5E:C8:03:4F:FF:29:3B:63:20
Authority key identifier: E2:D7:1C:53:5A:A7:A0:AC:E9:3F:AD:AB:DB:65:83:F8:84:A6:C6:26
Certificate issuer:       /CN=e2d71c535aa7a0ace93fadabdb6583f884a6c626
Certificate serial:       019F1943583BCA81BDC3DBCFA6F67E8A8255
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4tccU1qnoKzpP62r22WD-ISmxiY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.mft
Manifest number:          0A61
Signing time:             Tue 30 Jun 2026 16:01:11 +0000
Manifest this update:     Tue 30 Jun 2026 16:01:11 +0000
Manifest next update:     Wed 01 Jul 2026 16:01:11 +0000
Files and hashes:         1: 4tccU1qnoKzpP62r22WD-ISmxiY.crl (hash: jwfSgI8vO7ZA5nsGVV+oT5xwonRNBQuNW0TZPJEp9qs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4tccU1qnoKzpP62r22WD-ISmxiY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:43:58:3b:ca:81:bd:c3:db:cf:a6:f6:7e:8a:82:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e2d71c535aa7a0ace93fadabdb6583f884a6c626
        Validity
            Not Before: Jun 30 16:01:11 2026 GMT
            Not After : Jul  1 16:01:11 2026 GMT
        Subject: CN=f8698d7ebe3b07721958255ec8034fff293b6320
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:58:5a:5d:13:b2:12:9c:5b:71:0c:e6:42:5b:
                    38:52:03:1c:32:74:ad:19:45:10:40:81:a8:6a:09:
                    e1:31:b1:82:de:a9:f7:47:07:12:85:08:f6:a9:51:
                    16:cb:86:c6:2b:a8:c7:07:ab:62:98:47:60:70:98:
                    f9:aa:49:b0:65:d6:e9:b8:46:57:f2:7d:10:67:9e:
                    45:a6:22:f3:df:5b:bc:40:63:8b:98:63:dd:72:55:
                    2e:80:a6:45:9b:c6:5d:96:35:e9:99:24:6f:e0:43:
                    3a:7d:13:c2:e2:25:44:41:6d:0d:9c:2b:14:41:7d:
                    9e:ce:ae:fb:34:16:10:53:07:9d:63:16:2f:36:e5:
                    b1:61:0b:8e:6a:aa:11:18:6e:85:6d:a4:5d:b0:3d:
                    2d:45:4e:47:d4:8a:d3:05:b7:ed:bc:03:3b:3c:19:
                    42:1f:ec:b7:84:0a:7c:de:4d:d7:fc:0d:42:76:bc:
                    59:e0:14:99:e5:78:79:95:9b:ad:40:80:db:fb:45:
                    48:50:42:29:f5:19:c0:f3:70:da:2a:8a:8a:ba:25:
                    b6:ab:e6:96:76:bd:4a:e6:80:ea:5b:5f:35:f6:eb:
                    fa:e5:48:00:98:53:6c:8f:db:e9:ba:a6:eb:9c:3b:
                    be:4f:dc:dd:ac:25:4e:77:5e:7c:96:21:bb:79:b7:
                    1c:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F8:69:8D:7E:BE:3B:07:72:19:58:25:5E:C8:03:4F:FF:29:3B:63:20
            X509v3 Authority Key Identifier:
                keyid:E2:D7:1C:53:5A:A7:A0:AC:E9:3F:AD:AB:DB:65:83:F8:84:A6:C6:26

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tccU1qnoKzpP62r22WD-ISmxiY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/49/2c708b-b6e2-4def-a2d9-b31011137a57/1/4tccU1qnoKzpP62r22WD-ISmxiY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:2f:ce:ff:4e:5b:75:2b:6c:ae:53:96:bb:0e:a5:0a:0a:d4:
         6a:45:a1:22:c9:b5:cd:8b:ab:1a:c4:6e:ed:5a:19:0a:d4:25:
         f4:9b:3f:0c:97:16:7e:10:79:39:59:e1:af:13:8a:a4:d3:53:
         a0:0d:cd:29:88:e4:3b:c1:57:b3:59:b2:bf:c2:05:13:b6:09:
         85:44:3f:16:d6:69:cd:7c:fb:ba:7d:52:fa:89:26:46:e0:34:
         b9:da:45:28:7f:1b:ee:9e:58:39:f4:ae:b6:e5:24:a4:a9:0f:
         43:82:1a:33:70:81:80:7a:49:1a:20:89:e4:89:1f:b9:db:bf:
         e9:5c:38:e6:a1:64:47:e7:ad:8b:7b:ba:7f:74:d2:64:60:7d:
         d2:8d:91:69:d4:4f:2f:28:ac:2e:ca:fd:74:ec:73:dc:7e:b4:
         db:65:46:e2:b7:a6:9c:27:97:37:eb:ed:c3:5f:73:66:05:ca:
         3a:a4:66:1f:d2:26:d5:2b:e3:3b:f0:38:3a:2d:f9:44:13:16:
         7a:ef:d3:74:ff:23:bb:ff:00:ce:df:f3:29:1e:bc:fe:11:3b:
         93:6e:8d:f3:00:06:7a:ca:5b:34:a9:5c:a9:94:21:d6:88:a2:
         38:70:7e:4e:5a:ba:a8:9a:74:bd:49:04:bf:b1:0f:c8:ed:79:
         4c:9f:d0:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----