Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
File:                     2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft (raw, json)
Hash identifier:          XG1bwfCwrHjRxpm6BhYOaW7hI+ifd2VQBf/l1982Jy8=
Subject key identifier:   D9:A9:B6:51:CF:68:B5:AF:9A:39:EE:E7:87:2C:AD:26:48:4D:4A:5A
Authority key identifier: D8:7D:81:50:D1:18:23:85:C4:61:B5:80:D5:63:8A:57:0C:2B:C0:BF
Certificate issuer:       /CN=d87d8150d1182385c461b580d5638a570c2bc0bf
Certificate serial:       019F17C34B0E025722944A10DADC85F8519F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
Manifest number:          1983
Signing time:             Tue 30 Jun 2026 09:01:42 +0000
Manifest this update:     Tue 30 Jun 2026 09:01:42 +0000
Manifest next update:     Wed 01 Jul 2026 09:01:42 +0000
Files and hashes:         1: 2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl (hash: inThcpr/KmgMzs6E1DaVAyJCD9Gp8zoHaJHniayc20Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 09:01:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:c3:4b:0e:02:57:22:94:4a:10:da:dc:85:f8:51:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d87d8150d1182385c461b580d5638a570c2bc0bf
        Validity
            Not Before: Jun 30 09:01:42 2026 GMT
            Not After : Jul  1 09:01:42 2026 GMT
        Subject: CN=d9a9b651cf68b5af9a39eee7872cad26484d4a5a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:d7:d3:16:aa:e3:0e:0f:ba:d6:00:4f:29:c4:
                    57:15:ef:bd:92:c5:ca:15:5f:1c:7d:70:bc:05:c1:
                    f1:d3:c3:a7:81:b0:7a:19:80:7c:9a:73:df:59:e9:
                    9b:d5:80:59:c6:ac:5f:9c:80:c0:b0:ce:59:92:05:
                    28:7b:5b:1a:1e:52:95:85:79:dd:11:a0:57:4b:8d:
                    16:4d:f4:ee:10:92:76:d8:56:eb:f4:48:2f:c7:ac:
                    0b:15:50:13:9e:9f:09:c3:31:73:2e:86:7e:a0:53:
                    68:a7:b3:e9:17:3d:a5:da:81:39:be:36:25:11:ba:
                    e7:1d:37:a3:2f:e2:2e:aa:81:41:96:33:3d:2c:a6:
                    b5:19:53:78:a6:6f:24:cc:16:8b:a1:28:e4:e7:07:
                    42:dc:7f:03:1a:2f:b9:d1:6c:4f:f7:11:c1:6d:59:
                    9e:04:3d:5f:56:c0:0c:aa:e8:5a:ac:77:9b:fa:86:
                    78:b7:68:63:ee:86:3d:8a:32:47:69:06:e1:ba:40:
                    6c:e0:f9:df:dc:d7:0b:98:c1:5e:39:1a:ea:96:f0:
                    64:8e:f0:52:f4:fc:da:e2:42:d8:07:a7:93:4a:9f:
                    10:1d:c6:b6:7c:4e:aa:a7:d8:1a:8e:97:34:fd:2f:
                    cf:ae:89:44:23:c9:8a:b5:10:66:b0:92:4e:2d:8a:
                    b8:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:A9:B6:51:CF:68:B5:AF:9A:39:EE:E7:87:2C:AD:26:48:4D:4A:5A
            X509v3 Authority Key Identifier:
                keyid:D8:7D:81:50:D1:18:23:85:C4:61:B5:80:D5:63:8A:57:0C:2B:C0:BF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2H2BUNEYI4XEYbWA1WOKVwwrwL8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/58/e1124d-7b34-439d-961d-867953a3b181/1/2H2BUNEYI4XEYbWA1WOKVwwrwL8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:f6:b6:24:71:a4:bd:37:b4:ba:12:61:dd:c8:90:f9:96:8e:
         98:c3:e7:59:b9:a7:ae:12:bd:7b:29:34:98:27:68:72:55:1d:
         83:4d:3f:25:60:7e:10:b6:67:39:06:e6:6e:30:81:9f:5a:5f:
         53:3d:71:58:c6:46:e5:8a:40:0a:f3:86:0f:77:60:aa:cf:c7:
         cb:5d:14:fe:30:b5:d6:c7:4a:52:75:9f:a3:58:cb:4b:44:0f:
         a3:db:e0:49:9a:f9:80:7b:b5:09:3d:55:67:a2:1a:ba:c1:7c:
         47:83:0b:f3:1a:98:6f:5d:89:f4:33:9c:08:54:6e:32:f7:9f:
         42:5b:65:53:2f:49:bf:aa:bc:3a:b6:84:d3:9d:9b:17:7e:d4:
         fd:3b:25:34:d6:3f:63:66:5e:07:1a:bd:43:98:bb:6a:c3:c6:
         de:31:12:7f:c1:b7:0e:d1:a8:32:46:af:80:56:7b:bc:97:07:
         39:21:e4:2c:dd:0f:0c:66:ef:c1:17:03:3c:ed:33:49:9c:11:
         dd:7b:c5:26:8c:2d:ea:f6:6c:46:24:72:7e:10:cf:de:16:e4:
         cb:0e:6a:1c:7b:5b:4b:46:e3:99:9b:3c:b7:2a:b0:66:16:98:
         12:de:99:fd:5d:0f:ff:cc:f6:1a:88:6c:92:e2:1a:2c:08:a2:
         40:c8:ea:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----