Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
File:                     5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft (raw, json)
Hash identifier:          /IyQ1/oipI6l3+XZzHFiy1tdhzv53LVsZw4RF9u9xAc=
Subject key identifier:   B8:8B:8C:52:C3:42:36:86:39:1E:EB:85:A9:E7:EA:71:60:56:A3:DB
Authority key identifier: E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9
Certificate issuer:       /CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
Certificate serial:       019E2F977F0ABF0EF4B3024F5F578138A1B6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
Manifest number:          06F3
Signing time:             Sat 16 May 2026 07:01:57 +0000
Manifest this update:     Sat 16 May 2026 07:01:57 +0000
Manifest next update:     Sun 17 May 2026 07:01:57 +0000
Files and hashes:         1: 5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl (hash: pfB0bXWCYUy+6E97XU0C22BbRFY1Yepws/p0xCtjpOs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 05:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:97:7f:0a:bf:0e:f4:b3:02:4f:5f:57:81:38:a1:b6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
        Validity
            Not Before: May 16 07:01:57 2026 GMT
            Not After : May 17 07:01:57 2026 GMT
        Subject: CN=b88b8c52c3423686391eeb85a9e7ea716056a3db
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:ba:84:9c:62:2c:ea:60:0c:4e:2c:eb:74:c4:
                    c8:ba:89:d0:7c:10:c6:5d:ce:ea:76:19:13:9a:fb:
                    e1:ed:4c:e1:1d:45:6d:02:60:1a:62:84:37:6d:35:
                    b0:40:88:76:09:93:e8:5e:3b:20:c7:09:b0:ec:0d:
                    50:4c:e4:87:ed:1e:0c:0a:bf:da:e4:5f:e5:02:35:
                    da:1e:20:e1:7a:e9:2b:2f:b8:62:9d:48:6b:e4:b8:
                    d8:84:31:3d:79:20:20:ba:eb:0a:86:80:d5:c5:ce:
                    7b:1d:96:ed:0c:2b:9b:ff:01:19:39:27:db:f2:97:
                    5a:db:82:6e:1a:07:a1:e4:2c:21:7b:66:29:69:97:
                    99:48:0f:31:01:bf:c5:6b:75:60:de:d4:a4:65:02:
                    f0:b8:0f:26:ed:dd:5a:3c:34:06:9c:84:06:cb:74:
                    8f:8a:fa:a6:79:a0:ea:3f:31:64:a0:c0:d0:78:ca:
                    8f:1b:89:ae:1a:72:d1:4f:90:39:7a:a2:46:9d:91:
                    ef:23:eb:02:dc:33:db:5e:fb:06:9e:6e:65:bc:79:
                    d6:c3:b4:3e:dc:5d:a1:8a:88:04:a6:71:46:15:28:
                    4a:23:d7:45:02:8a:39:e9:d2:10:ac:60:77:94:a7:
                    26:1a:55:5b:cf:b0:a2:81:99:28:e1:8d:d9:62:bf:
                    66:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B8:8B:8C:52:C3:42:36:86:39:1E:EB:85:A9:E7:EA:71:60:56:A3:DB
            X509v3 Authority Key Identifier:
                keyid:E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         af:83:29:93:11:d0:66:ab:37:ca:25:23:a5:c6:6e:3e:16:51:
         90:a5:19:a9:8b:fb:c7:fd:72:0b:31:68:cd:26:9d:eb:5c:94:
         60:e5:30:14:36:32:24:9c:8c:76:30:1f:51:2f:2c:33:1a:bd:
         1f:69:12:b9:b9:9e:06:5e:52:8b:02:a5:be:29:4b:20:9f:22:
         7c:05:80:2c:97:c8:ed:8e:8b:53:b4:75:e5:b9:4d:66:bf:fa:
         9e:6e:5a:1b:ad:3f:29:cf:64:f5:45:55:35:4c:84:ec:34:49:
         ae:c2:1a:da:91:6d:8e:dc:af:76:4c:81:1a:11:e2:1b:e5:79:
         23:43:50:de:f9:3a:6c:eb:82:0a:75:93:e8:87:59:da:b6:47:
         b0:99:72:2c:b5:96:43:d4:cd:f0:16:e3:21:6b:f9:c3:1d:1b:
         d6:c6:69:75:39:4a:6f:ec:24:89:f0:52:d7:f3:c0:73:48:c5:
         37:62:01:23:78:e8:60:48:b5:b0:1e:1d:79:0f:fe:8d:7d:a0:
         b9:38:bc:f0:8b:56:a9:24:85:ff:f9:fe:9e:f9:3e:53:54:f2:
         2f:02:fb:d9:8a:17:f0:dc:58:df:37:72:7f:c5:9f:c0:9c:76:
         5d:96:de:ec:b7:ef:c5:62:ee:a2:ef:c1:24:e5:b9:81:9f:6d:
         2a:b6:6a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----