Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
File:                     5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft (raw, json)
Hash identifier:          fS8q5Mv/aS+NHe6FFeCi+O9SjpGfhCqzT+AKM4T54ec=
Subject key identifier:   F7:A2:02:D4:84:49:E7:B1:F0:74:22:4E:5B:9C:15:B2:56:D8:55:B0
Authority key identifier: E6:1B:9A:5D:6D:98:70:3C:38:72:A1:BB:3F:90:D1:03:68:5C:BD:04
Certificate issuer:       /CN=e61b9a5d6d98703c3872a1bb3f90d103685cbd04
Certificate serial:       019F1831069E541F62216EEC648FBC1F2152
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
Manifest number:          1984
Signing time:             Tue 30 Jun 2026 11:01:33 +0000
Manifest this update:     Tue 30 Jun 2026 11:01:33 +0000
Manifest next update:     Wed 01 Jul 2026 11:01:33 +0000
Files and hashes:         1: 5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl (hash: Car0cj2MMH4DR76Tr9TFcMogvXbLafL0nTPJX3/ti6M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 11:01:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:18:31:06:9e:54:1f:62:21:6e:ec:64:8f:bc:1f:21:52
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e61b9a5d6d98703c3872a1bb3f90d103685cbd04
        Validity
            Not Before: Jun 30 11:01:33 2026 GMT
            Not After : Jul  1 11:01:33 2026 GMT
        Subject: CN=f7a202d48449e7b1f074224e5b9c15b256d855b0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:a9:14:89:f7:37:59:06:b1:79:03:28:ca:09:
                    f3:23:39:41:62:a0:f6:25:53:66:2c:d2:8c:68:39:
                    7d:fc:47:4d:67:a1:f0:46:7f:b2:bd:05:91:ce:da:
                    ee:90:b7:bb:c3:c2:2d:b8:d6:69:d3:64:d0:f6:5b:
                    07:f2:e6:f9:a4:85:be:f7:de:54:20:35:13:c9:86:
                    2d:cf:5b:bf:38:b5:ae:34:21:f6:38:49:27:43:f9:
                    43:2e:f6:46:bc:a5:26:4d:b4:41:94:90:36:29:15:
                    7f:cf:35:9d:a1:c9:e1:3b:3d:57:6c:b0:97:81:33:
                    59:67:3b:65:cf:96:8e:86:de:33:73:fa:aa:bd:7f:
                    0f:60:83:9c:d4:ed:57:61:83:05:0f:22:b7:0b:00:
                    5c:fe:c4:66:4e:9f:4b:aa:3e:1b:0e:79:22:c7:54:
                    07:85:f4:d0:f2:34:d3:2b:ce:3d:68:e7:84:46:af:
                    c1:c0:bd:a3:80:84:55:a5:89:43:09:be:65:53:d5:
                    f7:e6:c1:22:8b:2d:1f:ba:7b:81:8f:3d:98:a7:db:
                    ae:f6:ea:11:20:d8:c4:a6:1e:78:c3:f6:d0:d9:ba:
                    71:eb:57:55:60:ed:bf:8e:65:73:ed:21:af:1f:8c:
                    1d:13:e9:9b:93:65:d3:0c:e4:0a:9a:1b:4b:e5:51:
                    63:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:A2:02:D4:84:49:E7:B1:F0:74:22:4E:5B:9C:15:B2:56:D8:55:B0
            X509v3 Authority Key Identifier:
                keyid:E6:1B:9A:5D:6D:98:70:3C:38:72:A1:BB:3F:90:D1:03:68:5C:BD:04

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:b2:57:5d:2e:83:48:d3:bd:12:eb:06:4c:42:05:11:3f:97:
         ee:73:e6:23:99:64:81:7a:92:88:16:6a:cb:9c:40:6a:c9:01:
         7a:d5:c6:15:88:7c:21:f2:e8:5c:ce:ed:e0:ad:ec:89:59:5d:
         b2:7f:8c:bf:5e:c5:61:20:cb:1e:19:b8:f3:44:ba:86:7f:cf:
         70:e1:27:35:30:22:9e:8e:39:3c:51:c2:85:6c:63:29:74:78:
         be:20:ad:43:59:72:91:dc:19:46:99:eb:4a:9b:44:4f:9e:57:
         f7:9b:4e:c8:d6:51:70:a8:fb:08:3e:33:90:af:13:58:d5:40:
         0a:4c:24:e2:c1:f6:e4:8b:ad:de:e2:75:4b:52:cf:83:c9:55:
         de:4e:9c:ba:c4:e6:cc:87:1f:c0:4c:87:15:ed:9a:6a:1e:66:
         ca:72:d4:22:f2:be:a0:0f:3f:3d:f5:ce:13:f1:9f:f1:b4:cf:
         0c:6e:1f:1c:e2:e8:39:79:76:07:5b:39:74:c7:0b:85:79:70:
         fe:81:b0:8a:48:56:d4:19:d4:2a:c7:9a:2b:28:1e:71:c2:6f:
         5a:b6:25:38:0d:ee:c0:5d:71:e7:eb:1b:cf:ff:cd:76:2b:94:
         f0:08:68:50:62:05:1f:81:f7:c3:30:17:80:c4:9c:8a:42:7c:
         87:3b:bb:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8YMQaeVB9iIW7sZI+8HyFSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2MWI5YTVkNmQ5ODcwM2MzODcyYTFiYjNmOTBkMTAzNjg1
Y2JkMDQwHhcNMjYwNjMwMTEwMTMzWhcNMjYwNzAxMTEwMTMzWjAzMTEwLwYDVQQD
EyhmN2EyMDJkNDg0NDllN2IxZjA3NDIyNGU1YjljMTViMjU2ZDg1NWIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkqkUifc3WQaxeQMoygnzIzlBYqD2
JVNmLNKMaDl9/EdNZ6HwRn+yvQWRztrukLe7w8ItuNZp02TQ9lsH8ub5pIW+995U
IDUTyYYtz1u/OLWuNCH2OEknQ/lDLvZGvKUmTbRBlJA2KRV/zzWdocnhOz1XbLCX
gTNZZztlz5aOht4zc/qqvX8PYIOc1O1XYYMFDyK3CwBc/sRmTp9Lqj4bDnkix1QH
hfTQ8jTTK849aOeERq/BwL2jgIRVpYlDCb5lU9X35sEiiy0funuBjz2Yp9uu9uoR
INjEph54w/bQ2bpx61dVYO2/jmVz7SGvH4wdE+mbk2XTDOQKmhtL5VFjFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPeiAtSESeex8HQiTlucFbJW2FWwMB8GA1UdIwQY
MBaAFOYbml1tmHA8OHKhuz+Q0QNoXL0EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWh1YVhXMlljRHc0Y3FHN1A1RFJBMmhjdlFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9jYjg3OWItOWM5Ni00MjlhLTliYjMt
ZTE4ZDk5OGM2NGVmLzEvNWh1YVhXMlljRHc0Y3FHN1A1RFJBMmhjdlFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9jYjg3OWItOWM5Ni00MjlhLTliYjMtZTE4ZDk5OGM2NGVm
LzEvNWh1YVhXMlljRHc0Y3FHN1A1RFJBMmhjdlFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk7JXXS6D
SNO9EusGTEIFET+X7nPmI5lkgXqSiBZqy5xAaskBetXGFYh8IfLoXM7t4K3siVld
sn+Mv17FYSDLHhm480S6hn/PcOEnNTAino45PFHChWxjKXR4viCtQ1lykdwZRpnr
SptET55X95tOyNZRcKj7CD4zkK8TWNVACkwk4sH25Iut3uJ1S1LPg8lV3k6cusTm
zIcfwEyHFe2aah5mynLUIvK+oA8/PfXOE/Gf8bTPDG4fHOLoOXl2B1s5dMcLhXlw
/oGwikhW1BnUKseaKygeccJvWrYlOA3uwF1x5+sbz//NdiuU8AhoUGIFH4H3wzAX
gMScikJ8hzu7CQ==
-----END CERTIFICATE-----