Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
File:                     2lNAluw_e_xU1lT84PAWitlmIs0.mft (raw, json)
Hash identifier:          JenYFyPglknw0wCvHOyy78d3qOSNZcN0au7mI9G6n5g=
Subject key identifier:   7F:52:6C:55:C9:F6:0D:8E:D0:C2:C9:66:5B:AA:32:09:F0:02:8E:9A
Authority key identifier: DA:53:40:96:EC:3F:7B:FC:54:D6:54:FC:E0:F0:16:8A:D9:66:22:CD
Certificate issuer:       /CN=da534096ec3f7bfc54d654fce0f0168ad96622cd
Certificate serial:       019F18D650CA0A160348916727C46D80B3F5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
Manifest number:          06ED
Signing time:             Tue 30 Jun 2026 14:02:06 +0000
Manifest this update:     Tue 30 Jun 2026 14:02:06 +0000
Manifest next update:     Wed 01 Jul 2026 14:02:06 +0000
Files and hashes:         1: 2lNAluw_e_xU1lT84PAWitlmIs0.crl (hash: 8uD7ByCELGbHIXft7Ns2KxNVHPZF7+AGVRwGIoxdusY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:02:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:18:d6:50:ca:0a:16:03:48:91:67:27:c4:6d:80:b3:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da534096ec3f7bfc54d654fce0f0168ad96622cd
        Validity
            Not Before: Jun 30 14:02:06 2026 GMT
            Not After : Jul  1 14:02:06 2026 GMT
        Subject: CN=7f526c55c9f60d8ed0c2c9665baa3209f0028e9a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:40:96:7c:b0:7b:98:d8:3f:6b:ec:f4:bb:80:
                    92:4d:8b:fd:bd:22:93:38:e8:ad:c3:8e:cd:c2:4e:
                    a1:ef:11:c2:05:6f:6a:3e:1c:30:de:9b:3e:a1:d4:
                    74:bf:f3:61:53:d1:09:e3:fb:44:30:b2:b5:20:f8:
                    2b:57:20:e1:9d:16:cb:ba:0f:af:5b:54:0e:b3:cf:
                    c1:ea:e8:cd:85:cc:a3:14:22:7b:e2:2a:a0:82:b4:
                    b4:3f:c9:0a:4c:2b:39:05:4d:6e:cd:e2:df:82:6a:
                    ce:5b:17:70:a2:45:9d:3b:4f:6f:13:6a:64:ad:62:
                    a1:62:dd:2f:2a:0e:fc:48:da:dc:48:c6:12:cf:99:
                    49:55:e5:56:01:a5:34:d8:a8:cf:4f:84:c1:fd:e3:
                    3d:e0:4d:c1:00:f6:97:a7:20:9e:31:d1:03:66:d2:
                    ba:06:24:ad:1b:d8:f5:74:5f:95:06:a4:5a:f3:55:
                    be:8b:9e:6e:8d:74:6c:7e:c9:cd:82:29:21:93:10:
                    2e:10:1a:7b:ca:07:46:d9:22:1f:46:bd:c9:93:b6:
                    8b:19:48:92:07:73:52:61:ce:2d:1f:fb:e3:6b:86:
                    bb:cd:9f:f2:6f:bc:37:60:f0:c9:31:bc:ab:15:f3:
                    04:37:00:38:3b:87:38:71:b1:60:ff:02:6b:5d:83:
                    a1:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7F:52:6C:55:C9:F6:0D:8E:D0:C2:C9:66:5B:AA:32:09:F0:02:8E:9A
            X509v3 Authority Key Identifier:
                keyid:DA:53:40:96:EC:3F:7B:FC:54:D6:54:FC:E0:F0:16:8A:D9:66:22:CD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lNAluw_e_xU1lT84PAWitlmIs0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/4052b5-b59e-433f-87aa-86f2a1af4d79/1/2lNAluw_e_xU1lT84PAWitlmIs0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:66:f9:ac:1f:a4:67:6d:ce:77:6f:50:28:08:c8:2c:6a:3b:
         b5:6e:10:4b:2f:dc:34:e1:0c:24:6d:a6:1f:da:c7:9f:25:0b:
         33:77:93:9a:46:2b:2a:7f:4f:4b:50:c4:49:c7:b7:18:17:72:
         aa:8e:80:16:27:cd:9f:a4:92:e8:96:b8:fb:52:79:bb:a5:39:
         f6:8a:66:bf:51:48:c1:ee:7a:76:aa:66:54:0d:69:1c:59:fd:
         49:1e:7e:4d:f6:cc:0f:86:0c:7b:b8:fd:98:5f:1c:88:39:fb:
         fd:f7:ef:84:f0:ca:87:03:94:c2:f5:ad:01:a0:c5:53:48:04:
         8b:12:9e:81:06:f7:61:55:09:d8:2c:0d:e5:53:a2:a9:03:bd:
         6b:20:ba:92:de:e0:ec:40:43:6b:79:ff:cb:26:cf:6b:22:3c:
         1f:eb:b0:84:bd:bd:7d:92:d1:d0:98:bc:5e:c1:61:ed:cd:96:
         3f:35:d3:25:4b:55:ae:57:2c:fc:70:2b:71:da:d8:cf:b1:77:
         d2:de:0b:5d:f7:26:be:bf:c3:5b:bb:06:3b:8d:26:4c:65:da:
         f8:a7:00:30:0a:3a:36:9e:e4:95:b9:e3:5a:5e:1a:00:28:58:
         6b:37:67:c9:11:92:3d:e0:bf:a9:54:3a:84:51:c8:af:f7:71:
         7f:14:b7:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----