Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
File:                     2o2nRADHVVq6J8Eon7-5CzO3miI.mft (raw, json)
Hash identifier:          0XgevuVlsMQaOwTMsaEU6YKwnjm+i8+iq54kn00DYoI=
Subject key identifier:   EF:11:EA:99:C7:E6:27:65:DF:E5:6F:E6:8A:DB:98:FD:B4:34:14:27
Authority key identifier: DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22
Certificate issuer:       /CN=da8da74400c7555aba27c1289fbfb90b33b79a22
Certificate serial:       019F17C36A03C2C0DA3FC11AEFB94330F195
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
Manifest number:          1814
Signing time:             Tue 30 Jun 2026 09:01:50 +0000
Manifest this update:     Tue 30 Jun 2026 09:01:50 +0000
Manifest next update:     Wed 01 Jul 2026 09:01:50 +0000
Files and hashes:         1: 2o2nRADHVVq6J8Eon7-5CzO3miI.crl (hash: eZH7MuOpPF9nxiUKh9uYq4OrGmYZEbP8uUAheI73PgU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 09:01:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:c3:6a:03:c2:c0:da:3f:c1:1a:ef:b9:43:30:f1:95
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da8da74400c7555aba27c1289fbfb90b33b79a22
        Validity
            Not Before: Jun 30 09:01:50 2026 GMT
            Not After : Jul  1 09:01:50 2026 GMT
        Subject: CN=ef11ea99c7e62765dfe56fe68adb98fdb4341427
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:7b:11:f2:69:02:5d:44:bf:3f:27:b5:ea:80:
                    5b:82:61:e7:f9:7e:64:d1:dc:1d:6e:1d:59:7f:46:
                    d0:ac:50:9c:2f:65:87:c3:13:f6:95:b5:59:8a:e0:
                    04:42:de:4a:67:1a:8f:dd:b7:ce:d5:e3:87:46:77:
                    a6:97:6f:1b:80:45:45:97:83:d0:2f:25:09:a3:a1:
                    91:a0:f7:a0:28:41:e2:c4:7e:cb:f0:7a:09:be:a9:
                    19:af:d2:f4:64:6d:1d:6a:8d:5a:8a:ff:60:5c:1a:
                    0c:53:56:2a:16:b7:84:60:64:a9:5b:08:d6:60:60:
                    56:b2:c5:01:7f:88:a0:ef:e8:68:92:e2:23:e2:bb:
                    3a:1f:4d:7a:d0:04:e0:88:a5:88:98:b5:d9:3a:41:
                    8f:f0:dd:4e:64:8c:a1:21:12:3c:08:99:5a:70:46:
                    be:00:49:c1:cd:f0:52:f9:6f:5a:6c:f2:58:6a:e1:
                    4c:bc:50:b6:89:dd:49:81:a9:4f:91:65:7f:ff:81:
                    76:be:a4:71:94:a8:7d:ab:43:02:e0:bf:ee:53:d4:
                    35:90:c2:0c:90:09:28:8b:a0:d2:e1:85:ae:82:c2:
                    c6:40:23:79:b3:b6:b9:cb:c8:ce:5f:e7:83:db:44:
                    14:0a:e3:7c:aa:d9:27:36:dd:28:90:88:d7:d8:58:
                    2b:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:11:EA:99:C7:E6:27:65:DF:E5:6F:E6:8A:DB:98:FD:B4:34:14:27
            X509v3 Authority Key Identifier:
                keyid:DA:8D:A7:44:00:C7:55:5A:BA:27:C1:28:9F:BF:B9:0B:33:B7:9A:22

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2o2nRADHVVq6J8Eon7-5CzO3miI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/59/759ab4-eb40-418c-8f11-25a6824e3157/1/2o2nRADHVVq6J8Eon7-5CzO3miI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:49:a6:02:7a:1f:6d:f5:e3:7f:c2:80:a0:e0:61:71:8f:c3:
         74:83:47:3a:ad:22:db:77:d3:e3:74:84:ae:44:c1:b2:52:07:
         19:de:63:a3:05:88:f6:36:1b:00:44:fa:a2:f2:b4:f3:73:25:
         77:36:a1:73:85:ce:3e:55:7b:cb:ed:c1:17:98:df:bf:19:5d:
         ae:d7:28:5c:0e:ef:47:58:a6:c1:a4:f8:f1:fb:28:6d:58:78:
         ef:bd:e5:10:8c:62:36:79:d0:f1:fd:64:25:da:ee:d2:1d:ca:
         3c:b1:78:51:78:bd:72:2b:f5:34:08:4e:74:6b:f3:f6:c6:53:
         b9:33:27:8e:2f:7e:cb:2b:a9:93:9c:a9:b0:4b:07:7f:d4:2b:
         83:10:a2:6c:ca:54:f0:54:35:95:5b:7f:d8:a9:ad:c0:5c:63:
         c6:85:06:da:bb:58:34:62:d0:4e:11:58:bf:5e:ac:67:90:ba:
         6e:e9:05:0e:fd:0f:52:25:55:50:d9:71:86:8f:29:5d:9e:94:
         aa:98:ba:c2:a5:d6:a4:c5:b8:c4:d7:3e:86:b6:87:f1:92:74:
         1f:66:b2:62:ca:3f:90:72:7e:ee:e5:27:3f:a3:79:d1:d4:75:
         6d:a8:3c:f8:47:22:ba:24:e4:8d:9c:d6:f0:75:5e:d2:9d:06:
         57:34:96:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----