Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/083f23-26ec-4031-853c-82f151b664c5/1/rS2L1OZ06M7VoJfUPepxhETnivU.mft
File:                     rS2L1OZ06M7VoJfUPepxhETnivU.mft (raw, json)
Hash identifier:          3CdOHgQXoRQTFAF39aUiivxikFENbeti55tPJG6bydE=
Subject key identifier:   F7:99:14:35:B1:1B:18:36:F9:10:F5:CA:3B:B0:76:A5:D9:20:FB:AF
Authority key identifier: AD:2D:8B:D4:E6:74:E8:CE:D5:A0:97:D4:3D:EA:71:84:44:E7:8A:F5
Certificate issuer:       /CN=ad2d8bd4e674e8ced5a097d43dea718444e78af5
Certificate serial:       019EB80E91335F042E46F4F22EDE3DB3687C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rS2L1OZ06M7VoJfUPepxhETnivU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6c/083f23-26ec-4031-853c-82f151b664c5/1/rS2L1OZ06M7VoJfUPepxhETnivU.mft
Manifest number:          1626
Signing time:             Thu 11 Jun 2026 19:00:22 +0000
Manifest this update:     Thu 11 Jun 2026 19:00:22 +0000
Manifest next update:     Fri 12 Jun 2026 19:00:22 +0000
Files and hashes:         1: rS2L1OZ06M7VoJfUPepxhETnivU.crl (hash: TzBY1aCvc8U+LfpkH9mPRUoZOgi3LzphQmn8R3xxC8c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6c/083f23-26ec-4031-853c-82f151b664c5/1/rS2L1OZ06M7VoJfUPepxhETnivU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6c/083f23-26ec-4031-853c-82f151b664c5/1/rS2L1OZ06M7VoJfUPepxhETnivU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rS2L1OZ06M7VoJfUPepxhETnivU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 12 Jun 2026 19:00:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:b8:0e:91:33:5f:04:2e:46:f4:f2:2e:de:3d:b3:68:7c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ad2d8bd4e674e8ced5a097d43dea718444e78af5
        Validity
            Not Before: Jun 11 19:00:22 2026 GMT
            Not After : Jun 12 19:00:22 2026 GMT
        Subject: CN=f7991435b11b1836f910f5ca3bb076a5d920fbaf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:1a:27:d8:0c:d3:7a:57:ab:3f:5e:f2:c2:0c:
                    af:fe:4e:63:ca:d2:ca:46:f0:22:32:80:60:d1:30:
                    26:5b:53:d0:65:01:88:69:99:5f:0e:aa:3a:3b:de:
                    f8:01:f5:75:54:7a:0b:c6:53:40:3b:50:6c:f6:68:
                    fe:df:c4:11:30:25:96:8e:7b:19:5b:30:c5:db:02:
                    f4:f1:31:1f:8f:20:ff:06:b9:91:b4:54:b0:c4:cd:
                    73:b5:8d:18:3a:1d:ea:ed:fd:cf:74:5c:ba:65:96:
                    1a:52:f3:67:c4:7c:42:6f:d4:21:67:4e:99:04:b9:
                    20:8a:63:b8:13:b2:51:86:1d:58:5c:1e:6c:f0:a9:
                    eb:c2:46:39:23:c4:36:79:25:b3:e3:cf:f5:14:e6:
                    34:7b:6c:1f:46:75:50:26:3c:9c:af:13:01:96:d8:
                    9c:1a:ac:42:db:ef:dd:25:0d:be:ed:82:83:e0:c4:
                    8f:b4:05:fd:09:e9:da:7d:4d:3b:3f:8c:ca:04:e0:
                    21:ee:8d:0e:47:8b:69:10:48:ea:a5:4a:59:df:6f:
                    fb:74:a1:c9:ec:fb:92:42:ed:53:b1:7e:47:de:03:
                    46:e1:4b:36:21:1d:e6:3b:c9:6f:72:02:f5:a1:a1:
                    5b:47:86:45:bc:31:c6:4d:3f:13:e7:2c:fa:81:11:
                    1d:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:99:14:35:B1:1B:18:36:F9:10:F5:CA:3B:B0:76:A5:D9:20:FB:AF
            X509v3 Authority Key Identifier:
                keyid:AD:2D:8B:D4:E6:74:E8:CE:D5:A0:97:D4:3D:EA:71:84:44:E7:8A:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rS2L1OZ06M7VoJfUPepxhETnivU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/083f23-26ec-4031-853c-82f151b664c5/1/rS2L1OZ06M7VoJfUPepxhETnivU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/083f23-26ec-4031-853c-82f151b664c5/1/rS2L1OZ06M7VoJfUPepxhETnivU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         94:18:b2:86:4e:34:03:7a:f8:8e:83:c0:e4:14:68:98:77:0e:
         25:8d:c6:f8:53:74:53:72:92:0c:ae:08:46:7b:cb:84:34:40:
         8a:9d:9b:ca:4d:c8:57:77:30:58:d7:bf:6d:b7:af:57:84:81:
         15:8c:1c:c8:09:4a:f4:40:e7:1c:97:9c:83:58:a8:6d:1c:22:
         fc:b5:59:d3:46:d0:95:85:ee:54:06:42:dd:39:ff:e3:ee:a1:
         0f:f0:bd:52:ad:c8:83:a0:26:bb:24:98:80:45:4e:87:3e:ea:
         d9:d9:b2:b8:94:d4:25:3a:1c:3f:06:6d:92:59:89:c9:fe:5a:
         9a:e3:e8:a2:fb:cf:ec:9f:22:83:51:67:d1:4b:fb:2a:80:ce:
         d3:d3:ab:06:ae:f1:89:d1:73:f4:79:65:51:3e:90:c8:39:52:
         fb:6e:d3:0b:1b:76:36:6e:65:44:4d:fe:76:5f:d3:96:4e:cb:
         ea:26:40:88:83:91:bc:0f:d7:ce:51:94:24:21:84:bd:09:46:
         f8:9e:5d:31:64:54:ca:e1:af:e6:d3:6d:7b:be:7f:13:63:6e:
         ae:2d:54:f8:53:62:0b:99:19:58:63:e6:22:a2:4f:4b:a6:13:
         e5:a4:e2:78:ea:7f:92:87:60:fb:98:3c:bd:8f:a6:47:eb:92:
         fd:45:86:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----