Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
File:                     2QrRERMYMAumeOiOBQKx_FHjU3k.mft (raw, json)
Hash identifier:          FuVacS1hJLV5CVxuYmkGcfGgz5re7JXQYwSI4hGt1eU=
Subject key identifier:   37:7B:FD:B2:C1:79:78:43:5F:AC:17:19:A5:47:26:16:EC:3D:E9:2C
Authority key identifier: D9:0A:D1:11:13:18:30:0B:A6:78:E8:8E:05:02:B1:FC:51:E3:53:79
Certificate issuer:       /CN=d90ad1111318300ba678e88e0502b1fc51e35379
Certificate serial:       019F197A75072C24046E5FDBDE56E6A37C80
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
Manifest number:          0592
Signing time:             Tue 30 Jun 2026 17:01:23 +0000
Manifest this update:     Tue 30 Jun 2026 17:01:23 +0000
Manifest next update:     Wed 01 Jul 2026 17:01:23 +0000
Files and hashes:         1: 2QrRERMYMAumeOiOBQKx_FHjU3k.crl (hash: 0xPv4jqXqSmRBHW22XkZzf/t+xa0EeHBqTYOPdap//4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:7a:75:07:2c:24:04:6e:5f:db:de:56:e6:a3:7c:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d90ad1111318300ba678e88e0502b1fc51e35379
        Validity
            Not Before: Jun 30 17:01:23 2026 GMT
            Not After : Jul  1 17:01:23 2026 GMT
        Subject: CN=377bfdb2c17978435fac1719a5472616ec3de92c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:03:5d:5c:b8:1e:2a:f6:e8:52:57:43:cf:8f:
                    27:9c:85:73:2c:51:15:01:24:b7:d9:96:59:95:d0:
                    97:a2:de:c8:66:46:97:49:20:41:08:82:3a:55:6e:
                    74:6c:2b:b1:d9:f1:a9:50:e6:2a:c8:78:28:b1:94:
                    e3:1e:33:c0:c2:e3:66:be:62:84:67:f8:78:98:46:
                    bc:fd:9e:8b:53:30:1d:b4:3c:0b:f9:ab:2a:87:5d:
                    2a:a1:a8:12:af:b2:c6:bf:a3:93:31:7b:37:fa:97:
                    58:56:c2:88:ff:9a:b5:1f:6c:e6:c2:42:9c:dd:a8:
                    d0:c9:22:18:e3:96:7b:4c:81:6e:73:cf:a8:d2:97:
                    7d:00:b4:71:62:28:03:54:14:9c:97:b7:45:c3:22:
                    7d:af:a7:12:2d:92:d7:b7:7f:0f:2c:06:e8:6d:96:
                    5c:69:d4:0b:64:55:ff:6e:0c:1c:f3:fb:e3:d5:40:
                    b0:3c:8b:33:f1:26:f6:a9:1c:5a:72:47:f8:a0:d1:
                    c7:6a:49:59:59:1b:b0:7e:e2:f9:09:dc:ec:b2:3e:
                    b2:88:df:a7:8b:cf:56:cd:46:0c:5a:18:b5:82:82:
                    0d:de:53:5d:5e:a7:94:be:bc:b5:ab:a7:08:f1:dc:
                    0c:e6:ce:10:6c:7f:51:8e:ae:e4:2f:a3:9c:67:43:
                    55:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:7B:FD:B2:C1:79:78:43:5F:AC:17:19:A5:47:26:16:EC:3D:E9:2C
            X509v3 Authority Key Identifier:
                keyid:D9:0A:D1:11:13:18:30:0B:A6:78:E8:8E:05:02:B1:FC:51:E3:53:79

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2QrRERMYMAumeOiOBQKx_FHjU3k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/758a0f-3c4c-4310-9a72-5a27b8af28a5/1/2QrRERMYMAumeOiOBQKx_FHjU3k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:b1:3c:d8:b6:22:03:e9:71:20:7b:d4:18:e7:b0:51:87:03:
         7c:3c:ce:27:df:c9:a4:dd:9b:b3:3c:9f:71:6d:4f:35:2f:86:
         6d:9b:a9:b0:b4:d5:f2:a9:48:06:2a:d3:8a:60:f3:bd:55:2a:
         ed:ec:c5:08:33:f4:16:a9:5d:a1:30:27:99:4a:8f:4b:ef:9c:
         dc:22:a7:46:8f:12:f6:1d:d3:57:20:16:e5:db:1e:a6:f0:74:
         70:d6:9a:39:3f:85:76:a5:c2:49:ab:1b:73:99:4f:59:10:6f:
         cb:eb:a9:f9:8e:ec:85:e5:ab:48:0b:e7:08:56:38:ad:2f:e2:
         ad:5c:86:84:b8:b0:88:ac:df:6a:74:e1:fb:9e:39:7e:0a:a1:
         3a:d4:b3:35:23:8f:00:3b:55:4e:f0:6f:bf:b0:90:bc:d2:67:
         b1:2e:7e:f0:f3:d1:cb:98:79:3c:80:84:ec:91:76:19:18:44:
         0f:38:3e:f4:f1:93:58:25:02:98:30:7b:55:a4:8e:21:5a:00:
         5f:bb:31:12:c4:ae:b2:e7:b1:cf:ef:c2:fe:c4:b4:74:8d:32:
         13:9d:37:dd:18:07:9c:39:59:b9:c0:c4:4e:70:6d:e9:7a:df:
         e2:45:17:be:20:49:88:b5:b5:a1:0b:37:a1:d0:8f:8c:61:c8:
         73:82:24:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----