Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
File:                     2LlxoaILZPFCUYAfj0NKQHX36pE.mft (raw, json)
Hash identifier:          imRe8PQKaIDGkK5cO+5ix64FeeIX26Dpdn1+VPZ5/n8=
Subject key identifier:   F5:9F:92:99:34:7F:73:26:BB:09:86:A8:B1:17:89:FD:53:B8:C4:E6
Authority key identifier: D8:B9:71:A1:A2:0B:64:F1:42:51:80:1F:8F:43:4A:40:75:F7:EA:91
Certificate issuer:       /CN=d8b971a1a20b64f14251801f8f434a4075f7ea91
Certificate serial:       019E31BBC807D028F82FEA628AF628A1038E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
Manifest number:          05BF
Signing time:             Sat 16 May 2026 17:00:50 +0000
Manifest this update:     Sat 16 May 2026 17:00:50 +0000
Manifest next update:     Sun 17 May 2026 17:00:50 +0000
Files and hashes:         1: 2LlxoaILZPFCUYAfj0NKQHX36pE.crl (hash: cXDotj7r71ob9yL6BNIC6rxRoukmWF4jCij552mFU0E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:31:bb:c8:07:d0:28:f8:2f:ea:62:8a:f6:28:a1:03:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d8b971a1a20b64f14251801f8f434a4075f7ea91
        Validity
            Not Before: May 16 17:00:50 2026 GMT
            Not After : May 17 17:00:50 2026 GMT
        Subject: CN=f59f9299347f7326bb0986a8b11789fd53b8c4e6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:40:70:6f:b7:4d:ab:b8:6e:7f:6f:10:cf:49:
                    45:23:11:ff:52:e6:f9:0d:13:dc:fd:71:38:a7:43:
                    6d:5a:0e:40:61:d5:89:ac:3f:5b:71:5d:c4:a0:01:
                    e4:51:b1:74:88:84:0a:0f:e8:7b:8b:f5:6c:bb:0e:
                    65:66:21:b9:0b:ff:17:a2:01:37:dc:b0:29:cd:5e:
                    d7:64:ff:da:4b:ed:3e:1a:81:06:da:4e:10:36:d0:
                    b2:ac:df:f0:9e:02:a9:d7:d5:56:f8:8a:a5:f5:6e:
                    95:c4:7a:2e:ab:03:d2:6f:6e:ca:b5:d6:d9:80:3d:
                    6c:2e:82:6a:a6:42:5b:3a:6c:2d:e5:1f:38:3a:99:
                    c6:27:fb:98:ff:47:ca:39:66:69:44:22:22:1b:d2:
                    b8:05:3b:fc:49:a0:90:b9:33:a8:91:01:db:8c:5e:
                    4e:7c:1f:27:0d:0a:0c:d3:db:4a:90:9e:61:10:bf:
                    c7:f9:d0:0d:8d:a7:f6:91:2c:22:2f:a9:2a:ae:6a:
                    9d:dd:94:d3:25:fe:4f:23:86:60:06:5e:42:16:b8:
                    1f:2c:ec:e1:1a:98:56:60:0a:c2:5c:18:5c:8a:d3:
                    c0:c1:19:17:14:fe:68:43:ee:f9:e7:61:da:d4:df:
                    bf:60:13:a2:37:ba:c2:0d:6a:9f:11:8e:2b:7d:f5:
                    74:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:9F:92:99:34:7F:73:26:BB:09:86:A8:B1:17:89:FD:53:B8:C4:E6
            X509v3 Authority Key Identifier:
                keyid:D8:B9:71:A1:A2:0B:64:F1:42:51:80:1F:8F:43:4A:40:75:F7:EA:91

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2LlxoaILZPFCUYAfj0NKQHX36pE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9bd669-2abb-499b-a91f-4445a4d786d4/1/2LlxoaILZPFCUYAfj0NKQHX36pE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:84:b9:74:ac:63:5f:f4:79:6e:fa:0a:c8:7f:66:51:13:6b:
         d6:49:a0:6c:99:23:20:73:df:80:df:77:68:04:82:41:03:ef:
         cb:c9:d5:c9:b3:fc:aa:4d:07:f7:8c:9a:fe:6a:17:c9:5c:12:
         04:f2:d8:39:ec:e3:ae:30:e6:e3:b2:1e:e5:db:e4:fc:06:8b:
         dc:1f:d9:66:b6:8f:f6:43:22:83:60:4e:bb:f6:44:fc:f7:81:
         dd:b1:fc:6a:42:7d:f7:a3:67:56:2c:3a:e7:db:2f:21:eb:d7:
         fb:ed:de:b2:79:71:e0:75:ab:8d:e8:76:bb:c8:d6:48:40:2e:
         76:26:bd:3e:ce:a5:19:dd:82:26:53:fb:66:f1:a2:32:17:09:
         a4:04:79:87:f9:43:f3:51:a8:2f:2b:3d:59:48:43:03:2c:52:
         40:43:3e:b9:5b:41:69:b9:36:e7:14:70:38:ae:b3:00:ee:72:
         29:09:26:be:70:6b:aa:2c:e4:ed:2a:97:4e:26:48:42:6e:66:
         30:b0:29:f0:ce:14:ff:8a:5f:88:a5:71:e5:6c:5f:5c:f8:66:
         c1:bf:bd:b6:03:3d:e8:6f:2b:11:d2:4c:b4:64:22:a5:57:c0:
         f2:ab:91:f3:f4:db:91:e2:b7:12:db:19:8e:ee:d8:ac:32:1d:
         64:57:76:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----