Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
File:                     5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft (raw, json)
Hash identifier:          Tm7hiUbx84BzYejY4mcQ5fxJKjdXWIJqicP9mJ4D/Qs=
Subject key identifier:   5A:34:16:97:A6:85:05:4B:C7:64:50:D2:F7:75:CD:5B:0A:7E:33:2F
Authority key identifier: E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9
Certificate issuer:       /CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
Certificate serial:       019F1943AD94F26A77665F57084240DF41CD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
Manifest number:          076C
Signing time:             Tue 30 Jun 2026 16:01:33 +0000
Manifest this update:     Tue 30 Jun 2026 16:01:33 +0000
Manifest next update:     Wed 01 Jul 2026 16:01:33 +0000
Files and hashes:         1: 5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl (hash: YtPt/mUygYcWH9AMEJG7cZHdQ2NPnq5GdFjYF3y7LmU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:43:ad:94:f2:6a:77:66:5f:57:08:42:40:df:41:cd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
        Validity
            Not Before: Jun 30 16:01:33 2026 GMT
            Not After : Jul  1 16:01:33 2026 GMT
        Subject: CN=5a341697a685054bc76450d2f775cd5b0a7e332f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:3e:9c:d9:4c:6f:de:bd:40:7a:c7:b3:1e:cc:
                    12:8d:41:b5:58:5e:33:49:f1:8c:8e:5e:5a:a0:e2:
                    71:a6:4e:65:4b:a3:86:7b:f2:32:56:ff:b3:58:83:
                    41:92:7b:03:0f:ac:95:31:a9:8b:20:67:85:f3:7e:
                    ad:91:04:d2:64:2e:64:39:1c:41:38:c1:25:28:0a:
                    10:ed:c6:ed:5d:d0:28:31:41:63:da:29:05:4b:e6:
                    a5:e3:f5:ff:2f:81:66:1e:6c:f0:d9:32:14:27:e5:
                    bb:fe:ab:63:9a:6d:18:93:3d:78:cb:64:d5:a1:3f:
                    68:a9:03:1e:47:82:38:e7:46:f5:10:84:90:e4:c2:
                    93:e5:fb:03:1e:ff:34:2c:bf:f3:74:fe:5e:e6:a6:
                    6d:16:2c:e7:4a:4b:90:18:4c:60:b0:c0:6f:1c:fa:
                    d3:1b:a1:11:bc:df:6c:6a:02:59:1c:8a:75:03:c2:
                    93:91:c5:7b:32:3f:dc:53:a0:cf:88:d8:03:46:82:
                    c7:cc:99:4e:17:33:50:0a:31:02:f9:72:7d:f6:b3:
                    b7:17:b1:d6:88:fa:31:00:46:a8:3c:22:f8:aa:af:
                    5a:2c:fd:1c:9d:18:3c:4d:5d:5a:58:07:29:30:b3:
                    1a:bc:d9:5d:63:42:13:f9:f5:a3:e7:a9:60:83:7c:
                    5b:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5A:34:16:97:A6:85:05:4B:C7:64:50:D2:F7:75:CD:5B:0A:7E:33:2F
            X509v3 Authority Key Identifier:
                keyid:E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:5d:e3:ef:21:98:b2:a9:e7:37:16:40:70:75:ce:e5:bb:11:
         66:9c:5f:19:35:bd:bb:49:a9:86:17:e9:b5:fe:c4:ac:6c:b0:
         0a:2f:74:bb:77:6f:8e:85:07:10:3c:86:97:36:cb:16:c0:bf:
         ba:4f:bf:39:5c:f2:5b:44:c2:1b:85:be:95:23:57:e5:d5:a9:
         f9:f6:cd:d4:fc:f7:c6:a3:6b:2a:1a:3e:df:4f:4b:e8:26:e1:
         b2:be:28:8d:0e:db:23:00:db:a7:31:91:2d:6a:ac:ff:63:b4:
         5d:5c:fc:e2:0e:a7:ae:f1:ba:88:4e:33:32:11:52:c4:af:23:
         fc:b7:bc:87:20:a2:48:eb:16:47:c9:08:27:7c:0b:03:1c:e9:
         a4:3e:9b:a5:7e:08:45:e9:8a:84:c5:94:6e:87:62:fe:a8:19:
         de:ff:c6:7c:1b:81:da:80:d2:40:1d:cb:33:ed:09:6d:73:58:
         3f:da:ed:de:80:1f:7f:c5:e0:ba:42:bf:0d:45:7c:67:17:79:
         58:10:20:dd:cc:6e:b7:f4:92:e6:34:1d:cc:fd:55:69:64:5d:
         af:20:f4:ff:78:ad:d7:23:1f:8e:20:af:64:0e:95:1d:65:d6:
         87:41:7c:ca:15:4b:21:e6:d8:d4:50:67:4e:08:63:bb:b4:65:
         73:4a:ec:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8ZQ62U8mp3Zl9XCEJA30HNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0MThjZGRjMzlkMzQ3NTYzYzZkYzFlNWVjNWU1OTYyMWU0
MGU0ZDkwHhcNMjYwNjMwMTYwMTMzWhcNMjYwNzAxMTYwMTMzWjAzMTEwLwYDVQQD
Eyg1YTM0MTY5N2E2ODUwNTRiYzc2NDUwZDJmNzc1Y2Q1YjBhN2UzMzJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjj6c2Uxv3r1AesezHswSjUG1WF4z
SfGMjl5aoOJxpk5lS6OGe/IyVv+zWINBknsDD6yVMamLIGeF836tkQTSZC5kORxB
OMElKAoQ7cbtXdAoMUFj2ikFS+al4/X/L4FmHmzw2TIUJ+W7/qtjmm0Ykz14y2TV
oT9oqQMeR4I450b1EISQ5MKT5fsDHv80LL/zdP5e5qZtFiznSkuQGExgsMBvHPrT
G6ERvN9sagJZHIp1A8KTkcV7Mj/cU6DPiNgDRoLHzJlOFzNQCjEC+XJ99rO3F7HW
iPoxAEaoPCL4qq9aLP0cnRg8TV1aWAcpMLMavNldY0IT+fWj56lgg3xbSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFo0FpemhQVLx2RQ0vd1zVsKfjMvMB8GA1UdIwQY
MBaAFOQYzdw500dWPG3B5exeWWIeQOTZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUJqTjNEblRSMVk4YmNIbDdGNVpZaDVBNU5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8zZWVkMjgtMjMwYy00YjlmLTkwNGMt
Nzc3ZTZjYTRlZmY2LzEvNUJqTjNEblRSMVk4YmNIbDdGNVpZaDVBNU5rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC8zZWVkMjgtMjMwYy00YjlmLTkwNGMtNzc3ZTZjYTRlZmY2
LzEvNUJqTjNEblRSMVk4YmNIbDdGNVpZaDVBNU5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdF3j7yGY
sqnnNxZAcHXO5bsRZpxfGTW9u0mphhfptf7ErGywCi90u3dvjoUHEDyGlzbLFsC/
uk+/OVzyW0TCG4W+lSNX5dWp+fbN1Pz3xqNrKho+309L6Cbhsr4ojQ7bIwDbpzGR
LWqs/2O0XVz84g6nrvG6iE4zMhFSxK8j/Le8hyCiSOsWR8kIJ3wLAxzppD6bpX4I
RemKhMWUbodi/qgZ3v/GfBuB2oDSQB3LM+0JbXNYP9rt3oAff8XgukK/DUV8Zxd5
WBAg3cxut/SS5jQdzP1VaWRdryD0/3it1yMfjiCvZA6VHWXWh0F8yhVLIebY1FBn
Tghju7Rlc0rsLQ==
-----END CERTIFICATE-----