Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft
File:                     Ad0iu63J75fJwaOGG21rTE3dhoc.mft (raw, json)
Hash identifier:          na0YMwmSF5fhMdH8aZzcJyRfaVf0eOsUy9Mi5uJksf0=
Subject key identifier:   EA:3C:44:ED:BC:D5:6C:B6:43:8E:3B:AE:7A:F2:66:B5:AD:BB:30:3B
Authority key identifier: 01:DD:22:BB:AD:C9:EF:97:C9:C1:A3:86:1B:6D:6B:4C:4D:DD:86:87
Certificate issuer:       /CN=01dd22bbadc9ef97c9c1a3861b6d6b4c4ddd8687
Certificate serial:       019F1943860D394E52F49CD9CAA5999CCF87
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft
Manifest number:          1379
Signing time:             Tue 30 Jun 2026 16:01:23 +0000
Manifest this update:     Tue 30 Jun 2026 16:01:23 +0000
Manifest next update:     Wed 01 Jul 2026 16:01:23 +0000
Files and hashes:         1: Ad0iu63J75fJwaOGG21rTE3dhoc.crl (hash: zCSXhuk6untrGto6KdemhCXg42SZ/JDQrOG4dgE4C5k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:43:86:0d:39:4e:52:f4:9c:d9:ca:a5:99:9c:cf:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=01dd22bbadc9ef97c9c1a3861b6d6b4c4ddd8687
        Validity
            Not Before: Jun 30 16:01:23 2026 GMT
            Not After : Jul  1 16:01:23 2026 GMT
        Subject: CN=ea3c44edbcd56cb6438e3bae7af266b5adbb303b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:34:aa:e4:f6:f9:04:69:a0:a7:d3:28:71:60:
                    18:5a:b0:2a:21:ef:e9:e1:70:5e:fb:9c:9f:05:ef:
                    b9:da:39:94:18:8b:b7:a7:1f:df:e0:d1:cb:e0:f3:
                    a9:c8:21:f2:26:32:e6:b4:44:61:71:58:c8:96:57:
                    ce:19:e2:86:b2:b1:b2:ec:8b:4e:a1:82:a6:2e:de:
                    3c:5f:51:b9:4b:07:48:3a:a1:98:00:e2:b6:32:9e:
                    1e:71:43:7b:da:49:06:fd:f0:13:09:e2:bb:fa:8f:
                    75:22:f0:32:91:96:fc:05:46:7c:3c:34:c1:53:a9:
                    50:1e:fd:ee:37:0c:cf:b7:18:29:aa:05:c1:d4:41:
                    c9:8c:1f:88:fd:46:ab:78:3f:e1:44:79:8a:21:8b:
                    85:f2:f9:d9:2b:bc:8d:9e:c7:5c:65:bb:0c:71:25:
                    73:ac:a3:56:ea:ef:e6:5b:9f:3b:ea:b0:ec:e8:75:
                    08:3c:32:76:57:cf:9f:8b:1d:26:03:ed:41:79:a7:
                    9c:9c:a5:1c:54:38:4a:df:f1:4d:b6:84:e6:af:ac:
                    c2:de:14:35:1d:6e:a0:c3:b7:7a:51:50:29:ca:c2:
                    4f:b7:bb:09:10:b4:41:94:7f:4a:bb:0c:63:0b:f9:
                    7b:21:08:7c:5a:cc:a6:7f:08:e1:47:a4:04:3d:98:
                    e3:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:3C:44:ED:BC:D5:6C:B6:43:8E:3B:AE:7A:F2:66:B5:AD:BB:30:3B
            X509v3 Authority Key Identifier:
                keyid:01:DD:22:BB:AD:C9:EF:97:C9:C1:A3:86:1B:6D:6B:4C:4D:DD:86:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:60:42:0b:ee:79:0d:68:d7:d4:a3:00:1a:82:cc:0c:4f:ea:
         04:6b:89:1b:ed:26:1c:22:47:ef:ad:1d:b1:ef:05:fc:4b:76:
         21:dd:1b:80:4f:bf:01:f7:7a:bb:cb:32:1d:e1:6a:55:1c:59:
         3c:15:ee:55:01:05:23:44:ed:55:41:78:93:df:bb:3f:65:04:
         2d:09:03:56:86:85:ad:dc:21:bd:db:2d:74:d8:2e:ae:30:8c:
         86:8f:5f:86:c9:a5:20:78:bf:f1:55:36:d4:c0:2e:f6:ee:c4:
         0e:af:96:b4:8d:95:73:8b:d1:1f:b3:e5:b4:27:2d:81:99:16:
         b7:aa:8d:48:08:dd:86:ef:44:22:35:14:60:40:1e:a1:bd:c5:
         b7:06:d5:e8:61:84:3f:2d:cb:33:bd:09:44:3f:28:26:8c:92:
         8f:01:15:96:36:0b:57:d3:4b:c8:fb:b6:f7:23:1c:03:35:02:
         7a:fa:d5:68:3c:4f:cb:a2:62:b2:fc:97:8f:b0:75:d5:04:cf:
         e3:ff:14:e7:29:a7:b3:54:93:30:fa:ad:eb:f8:1e:b8:4a:2b:
         7f:d4:d0:f1:a9:5b:30:52:b5:32:39:f1:bb:b2:18:b7:64:b0:
         f4:b2:69:43:ec:87:95:c9:55:e9:02:2a:cc:6e:b1:5c:96:49:
         6c:d3:65:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----