Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
File:                     2o2nRADHVVq6J8Eon7-5CzO3miI.mft (raw, json)
Hash identifier:          sKexngwj+Kyi840afI39WRDCMbVBercG4WJZEy5HomY=
Subject key identifier:   3E:F2:80:52:20:65:14:21:84:A2:FB:E0:4B:22:AD:6B:FC:74:72:D2
Authority key identifier: DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
Certificate issuer:       /CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Certificate serial:       019E30051D1C53A30BBC8E4D5564E6C8C796
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
Manifest number:          179C
Signing time:             Sat 16 May 2026 09:01:41 +0000
Manifest this update:     Sat 16 May 2026 09:01:41 +0000
Manifest next update:     Sun 17 May 2026 09:01:41 +0000
Files and hashes:         1: 2o2nRADHVVq6J8Eon7-5CzO3miI.crl (hash: TgQUnfiLiBcnoO17QvwYc0DapdnRuu7Y8XshndjXCr8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 09:01:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:05:1d:1c:53:a3:0b:bc:8e:4d:55:64:e6:c8:c7:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da8da74400c7555aba27c1289fbfb90b33b79a22
        Validity
            Not Before: May 16 09:01:41 2026 GMT
            Not After : May 17 09:01:41 2026 GMT
        Subject: CN=3ef280522065142184a2fbe04b22ad6bfc7472d2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:10:aa:d3:fe:ff:b4:9e:fd:88:b6:a7:57:be:
                    5c:67:8c:ea:ff:6d:84:39:b2:d6:27:a6:7d:78:2c:
                    09:ad:17:61:6b:4e:94:c7:4a:5c:d3:e0:9f:2b:a0:
                    9e:7e:c9:c9:b8:ba:d7:19:ae:1c:05:a5:41:ed:e6:
                    4e:00:4f:eb:95:26:12:b9:50:5a:2f:04:50:f0:a6:
                    f7:c7:48:2e:b6:c7:12:63:b8:96:07:1b:4e:65:de:
                    17:86:3c:10:c3:fa:34:e5:99:67:ab:fb:17:aa:23:
                    65:53:b5:1d:d8:6d:b9:a9:a4:3e:57:25:cc:b7:df:
                    c3:38:7d:08:a5:77:74:36:f7:b5:32:1b:f5:38:a6:
                    ed:82:d1:6a:3f:67:43:fc:bb:18:32:8c:54:a3:c0:
                    b3:3f:46:97:cb:e1:55:2e:18:ab:5b:78:46:92:b9:
                    b7:ac:2e:d8:6b:93:dc:f9:6e:a5:1e:c2:ec:54:66:
                    19:81:58:ec:7a:90:b8:9d:ff:13:fe:90:e9:64:fd:
                    ec:61:25:f8:1c:f1:8e:aa:f8:c8:f5:21:06:20:ec:
                    ae:c2:3e:95:d4:3b:7f:d6:1a:05:5c:72:b5:8f:af:
                    9c:ce:6e:fc:de:89:ee:81:27:00:d2:a2:07:24:90:
                    e8:53:f5:be:80:47:04:85:66:8f:8e:18:0b:eb:fb:
                    a8:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3E:F2:80:52:20:65:14:21:84:A2:FB:E0:4B:22:AD:6B:FC:74:72:D2
            X509v3 Authority Key Identifier:
                keyid:DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8d:1a:26:d9:81:72:81:00:bf:54:9a:a0:40:05:c4:fc:1b:4d:
         dc:e3:b5:5c:d7:a3:e1:2c:15:13:70:1a:72:ef:34:c2:55:b5:
         05:f3:03:d6:94:77:1d:e9:a0:7b:f5:ed:88:49:fc:df:18:23:
         9a:7e:4d:43:29:7c:18:36:b7:4e:13:bd:05:d4:8d:a7:7a:8e:
         c0:1f:d8:fc:cd:73:14:7f:95:c4:f4:8e:df:e8:fa:37:7d:74:
         45:15:ac:85:9d:e8:71:45:2b:05:9b:37:39:5d:00:a6:ee:f3:
         d7:c0:59:12:de:34:47:19:05:6d:28:a0:18:6c:70:75:6b:64:
         1a:3e:4d:7f:79:37:7f:4e:17:99:7f:72:98:03:88:1f:ca:44:
         39:4f:ec:19:3e:d6:37:33:3a:72:40:dd:81:fb:56:25:1f:e1:
         bf:26:96:80:e9:f7:7b:88:06:5e:fd:d4:39:aa:40:eb:4b:1f:
         4f:12:20:74:ed:91:c5:08:16:76:d2:fb:a0:2c:bd:50:8b:a5:
         61:7d:eb:44:76:7e:9d:65:45:e0:ba:4c:2e:a4:fd:34:57:65:
         18:0c:78:68:b1:8e:40:66:f0:b6:f1:cd:3c:e9:2b:84:fa:f3:
         9f:68:36:92:b4:92:ab:60:eb:62:ab:7b:50:04:5e:8b:37:c2:
         2b:67:cf:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----