Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft
File:                     Ad0iu63J75fJwaOGG21rTE3dhoc.mft (raw, json)
Hash identifier:          92hmY6BZueK0f+gXhfpC74F/DzLxrDOiRxCLXKrKRG4=
Subject key identifier:   3E:19:B2:87:12:5D:45:C2:D8:23:40:3A:0F:11:A5:A8:79:30:1B:43
Authority key identifier: 01:DD:22:BB:AD:C9:EF:97:C9:C1:A3:86:1B:6D:6B:4C:4D:DD:86:87
Certificate issuer:       /CN=01dd22bbadc9ef97c9c1a3861b6d6b4c4ddd8687
Certificate serial:       019E2F965D105549FF825D09FCB4DF1FD57C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft
Manifest number:          1300
Signing time:             Sat 16 May 2026 07:00:43 +0000
Manifest this update:     Sat 16 May 2026 07:00:43 +0000
Manifest next update:     Sun 17 May 2026 07:00:43 +0000
Files and hashes:         1: Ad0iu63J75fJwaOGG21rTE3dhoc.crl (hash: aJnBew0VP9DM8SDJCIgo8XHTumKT7GTTl+StTUuVKUo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:96:5d:10:55:49:ff:82:5d:09:fc:b4:df:1f:d5:7c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=01dd22bbadc9ef97c9c1a3861b6d6b4c4ddd8687
        Validity
            Not Before: May 16 07:00:43 2026 GMT
            Not After : May 17 07:00:43 2026 GMT
        Subject: CN=3e19b287125d45c2d823403a0f11a5a879301b43
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:21:b8:c9:89:1e:e6:f1:a5:a9:f8:d5:fb:58:
                    63:2e:7b:5e:d5:cc:77:3c:8c:00:4b:e8:18:02:df:
                    25:02:ee:81:a5:13:02:9d:3c:66:e4:5b:b7:5f:eb:
                    07:98:75:63:68:d3:ab:77:2c:9a:67:d1:fd:31:15:
                    a2:0e:08:4f:c2:51:40:e3:92:e0:0f:9f:cc:45:ce:
                    0d:4e:19:7e:a0:0e:64:1b:70:bf:5a:70:de:50:bf:
                    52:8d:d2:4f:f8:0f:59:3e:56:73:14:9d:f1:be:44:
                    c2:d3:95:45:83:71:c0:80:81:34:65:70:53:e5:db:
                    14:82:31:99:34:09:6f:d0:39:95:c8:f6:20:cb:8a:
                    37:29:01:48:eb:b7:51:2a:e1:60:27:8f:ac:85:d3:
                    f8:07:eb:73:76:36:93:af:09:28:35:54:29:78:a7:
                    af:cb:f0:90:63:3c:ea:de:36:58:fc:b8:ce:02:bf:
                    fc:be:82:89:80:b5:3c:53:4f:f7:45:fb:24:6e:a9:
                    88:6c:73:c5:1b:96:7c:75:91:a0:2a:97:9e:aa:16:
                    75:0a:a0:af:19:c4:0f:eb:07:64:0b:19:b0:db:be:
                    59:4d:ee:c2:6f:49:50:b3:79:6f:00:50:eb:bc:a1:
                    0b:3d:d3:96:70:12:3f:e8:24:09:bc:a2:3f:62:a4:
                    d3:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3E:19:B2:87:12:5D:45:C2:D8:23:40:3A:0F:11:A5:A8:79:30:1B:43
            X509v3 Authority Key Identifier:
                keyid:01:DD:22:BB:AD:C9:EF:97:C9:C1:A3:86:1B:6D:6B:4C:4D:DD:86:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:c1:42:0d:ac:e4:0e:e3:af:70:75:0e:7c:d7:0f:f0:fb:81:
         83:1f:2c:b9:ce:97:dc:7b:a9:35:ec:69:ce:c9:63:fa:9a:35:
         84:9c:d0:2c:64:fb:17:6f:41:fb:dc:dd:0f:a9:a7:ba:60:49:
         9f:54:7a:d3:80:e8:33:ab:55:79:09:ac:50:d0:95:18:26:d2:
         b7:1c:6c:22:c3:d5:2a:95:5c:e7:c0:11:91:a1:40:46:c0:85:
         46:05:83:ad:44:2a:7a:ee:21:98:d4:91:f3:e4:6a:f3:7b:d3:
         bb:ba:7b:fd:e4:4d:ca:47:ae:9d:1a:5c:42:5a:e5:17:7a:cc:
         1a:db:bd:f3:23:20:7b:be:dd:7d:4a:25:da:29:b4:ac:16:5e:
         e9:82:27:3d:5c:63:8e:45:dd:72:fe:ab:6e:86:3b:40:11:e1:
         11:b2:0c:2c:bf:f4:e6:0d:cc:99:81:df:db:0c:c8:fe:ad:c0:
         93:9e:c5:a1:e7:ed:6d:49:de:5c:b8:9e:c7:b7:2c:24:a7:32:
         98:09:b3:4a:05:aa:37:42:0b:ed:ac:d8:ce:be:b0:d9:39:30:
         48:dd:1a:34:37:71:32:57:e8:8a:c0:2b:62:38:d5:86:3d:79:
         8c:e8:29:00:f9:bd:e6:05:32:47:a4:d0:dd:62:70:ab:83:15:
         dc:8b:3b:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----