Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.mft
File:                     4T3UuB8fx53U2mQo-cKgJzRX_wY.mft (raw, json)
Hash identifier:          0g4cal+J99IzRvnggj+pjb/bB3FK2mBTGjYM5s12u/U=
Subject key identifier:   2E:94:72:8E:1F:46:5B:70:4E:F1:9F:36:B0:EA:03:2D:A6:9C:2D:00
Authority key identifier: E1:3D:D4:B8:1F:1F:C7:9D:D4:DA:64:28:F9:C2:A0:27:34:57:FF:06
Certificate issuer:       /CN=e13dd4b81f1fc79dd4da6428f9c2a0273457ff06
Certificate serial:       019E30E0D6107FB8678FD24F0CD2531CF34C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4T3UuB8fx53U2mQo-cKgJzRX_wY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.mft
Manifest number:          0789
Signing time:             Sat 16 May 2026 13:01:41 +0000
Manifest this update:     Sat 16 May 2026 13:01:41 +0000
Manifest next update:     Sun 17 May 2026 13:01:41 +0000
Files and hashes:         1: 4T3UuB8fx53U2mQo-cKgJzRX_wY.crl (hash: bn4efzSJN+cobJl5ndooBY0Du2BXtmKNPTP4wad9kjs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4T3UuB8fx53U2mQo-cKgJzRX_wY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 05:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:e0:d6:10:7f:b8:67:8f:d2:4f:0c:d2:53:1c:f3:4c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e13dd4b81f1fc79dd4da6428f9c2a0273457ff06
        Validity
            Not Before: May 16 13:01:41 2026 GMT
            Not After : May 17 13:01:41 2026 GMT
        Subject: CN=2e94728e1f465b704ef19f36b0ea032da69c2d00
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:72:4c:14:e4:ab:2d:b3:af:04:0b:d3:39:6d:
                    6a:49:ab:07:00:7a:cc:2f:5e:6d:8e:69:5f:ca:9f:
                    8a:81:3f:b7:19:cc:8f:87:27:8c:52:e4:47:af:95:
                    29:bb:51:b9:ca:53:6d:df:71:de:ec:72:45:4f:c7:
                    32:9c:b0:7f:ec:d6:f3:a9:5e:1c:17:40:fb:e7:79:
                    69:c3:5b:60:41:c4:3b:c2:88:2a:4b:23:ea:10:3d:
                    ef:a9:68:cf:a4:6d:cb:e4:a7:5f:59:b8:95:22:53:
                    02:b4:64:95:e1:b8:e2:94:4c:8e:ae:92:d5:01:ec:
                    a4:a5:2b:30:98:9d:75:8c:37:78:e5:27:47:fd:6e:
                    48:cc:2b:d7:bf:66:18:74:8f:39:3a:1b:50:2b:35:
                    e7:6e:aa:6f:05:d8:4b:c0:3d:87:e8:53:c3:20:81:
                    a8:fd:9d:80:6d:fa:36:44:0d:18:5d:39:8d:7f:e1:
                    da:22:d9:ac:a9:18:75:bf:9a:8b:17:2d:b4:6f:63:
                    2c:9e:90:30:f5:ec:83:97:45:59:af:00:db:e9:ad:
                    cd:4b:8d:ac:0c:c0:b8:fc:cd:8f:c1:45:37:4e:ca:
                    ee:b5:27:11:a6:1d:69:78:77:5e:c2:5c:42:d4:61:
                    81:19:9c:fa:bf:96:90:79:8d:6a:25:f6:bf:4e:dc:
                    87:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2E:94:72:8E:1F:46:5B:70:4E:F1:9F:36:B0:EA:03:2D:A6:9C:2D:00
            X509v3 Authority Key Identifier:
                keyid:E1:3D:D4:B8:1F:1F:C7:9D:D4:DA:64:28:F9:C2:A0:27:34:57:FF:06

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4T3UuB8fx53U2mQo-cKgJzRX_wY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0b5bd7-603b-4a5c-8a98-d563959d277d/1/4T3UuB8fx53U2mQo-cKgJzRX_wY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:fa:e6:60:6b:16:72:33:39:c5:45:bc:1c:d7:62:63:36:00:
         82:ac:f9:df:13:45:a3:e2:ed:c7:b9:2c:77:1d:74:81:cf:62:
         20:9e:8c:2f:39:32:56:be:f7:f4:db:ba:41:f7:00:fd:e9:1e:
         40:90:c4:4c:9c:15:db:5c:16:f0:dd:44:68:17:0c:86:66:70:
         cb:8e:b1:54:b2:73:fc:05:a0:fd:3f:4a:67:37:33:0f:d8:c3:
         33:06:47:21:90:97:56:ee:58:fa:e4:e3:54:cd:6f:e0:be:b3:
         3f:01:be:93:7d:9c:db:77:91:a8:1a:81:02:6a:d9:3e:13:12:
         b3:50:f0:18:63:d0:c5:f4:d9:69:1e:08:1e:16:56:a9:05:99:
         a3:88:da:e4:26:07:0f:15:87:dd:95:5c:97:8d:16:dd:c4:1e:
         62:94:0e:1a:f0:dd:c3:75:e7:6e:10:5a:90:36:bf:2b:ef:ab:
         3f:76:2b:57:4a:c6:7a:ae:8f:df:db:70:45:81:08:34:cd:60:
         50:f9:1e:78:a9:ef:a3:5c:7f:72:be:a0:dd:dd:69:80:7a:a2:
         54:f9:52:d5:5e:60:88:bd:19:c3:8e:86:e2:21:fe:36:45:f3:
         0d:9e:b7:c4:b7:ec:d3:52:53:66:4b:4f:51:28:18:85:27:7f:
         1a:59:ae:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----