Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.mft
File:                     NB54rk8RnAGERACQzx2JrMiyLCQ.mft (raw, json)
Hash identifier:          JWcNL/JfVQ3GsZx3iRHJruYW29px3FQsJjkwCHYBvp4=
Subject key identifier:   DA:50:E1:E5:50:8E:1A:78:56:A9:C6:A9:E3:78:8B:AE:87:DB:A7:15
Authority key identifier: 34:1E:78:AE:4F:11:9C:01:84:44:00:90:CF:1D:89:AC:C8:B2:2C:24
Certificate issuer:       /CN=341e78ae4f119c0184440090cf1d89acc8b22c24
Certificate serial:       019EBA34A4206BE40B5EDE985997A09DC11A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NB54rk8RnAGERACQzx2JrMiyLCQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.mft
Manifest number:          0714
Signing time:             Fri 12 Jun 2026 05:01:12 +0000
Manifest this update:     Fri 12 Jun 2026 05:01:12 +0000
Manifest next update:     Sat 13 Jun 2026 05:01:12 +0000
Files and hashes:         1: NB54rk8RnAGERACQzx2JrMiyLCQ.crl (hash: J69Ry4Gmir9rKXaDYKbnSrEuEIB5H0aY0cZ3/ofxu0w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/NB54rk8RnAGERACQzx2JrMiyLCQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 12 Jun 2026 22:00:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:ba:34:a4:20:6b:e4:0b:5e:de:98:59:97:a0:9d:c1:1a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=341e78ae4f119c0184440090cf1d89acc8b22c24
        Validity
            Not Before: Jun 12 05:01:12 2026 GMT
            Not After : Jun 13 05:01:12 2026 GMT
        Subject: CN=da50e1e5508e1a7856a9c6a9e3788bae87dba715
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:dd:33:23:12:ae:c6:43:92:8c:fe:2f:e6:03:
                    2d:47:3b:1b:37:11:f7:b8:6b:21:75:21:45:56:c7:
                    35:e4:6a:62:a8:d9:17:1b:91:89:33:4b:5a:8f:5c:
                    b7:25:47:69:ce:0b:3f:82:5e:89:a6:26:f1:85:55:
                    68:cf:ce:86:91:b7:9e:02:37:ff:85:f8:f1:60:b9:
                    73:c2:10:1e:87:7b:92:17:3c:3a:58:a7:05:ee:ba:
                    37:2b:35:83:7e:97:38:a1:8c:bd:c6:0c:24:c3:86:
                    5d:4e:74:a2:78:ac:4c:8c:62:c8:b0:4d:e2:5e:c9:
                    59:b2:08:56:3b:a0:e6:1f:f3:de:50:da:75:1b:75:
                    42:9e:0b:e7:73:e6:e5:14:14:f7:26:a6:85:f8:60:
                    d9:cf:5f:48:8e:07:f5:60:4e:7a:ea:40:77:32:73:
                    86:45:32:1b:18:8e:05:2d:55:16:13:cb:d5:90:a4:
                    c1:10:34:1b:ac:81:38:ad:b9:9e:77:31:40:9a:b9:
                    ea:b7:87:39:ac:bb:a7:56:a2:c3:d5:12:9c:03:21:
                    70:e6:14:b1:ff:35:df:c0:e7:20:6a:e4:bb:41:1d:
                    86:6f:3a:23:0b:30:22:a4:38:90:1f:96:6b:5f:f8:
                    40:08:25:0d:90:4b:89:bb:a3:01:1c:f2:60:39:3d:
                    e8:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:50:E1:E5:50:8E:1A:78:56:A9:C6:A9:E3:78:8B:AE:87:DB:A7:15
            X509v3 Authority Key Identifier:
                keyid:34:1E:78:AE:4F:11:9C:01:84:44:00:90:CF:1D:89:AC:C8:B2:2C:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NB54rk8RnAGERACQzx2JrMiyLCQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2aeca7-0837-468d-bd62-03bb21aefba0/1/NB54rk8RnAGERACQzx2JrMiyLCQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:b3:fa:c6:23:be:c5:ad:6d:ee:b5:cd:93:01:55:e8:48:3f:
         ef:63:89:0b:7c:03:c8:1c:f9:d4:e6:14:04:1e:99:3b:65:15:
         7b:de:40:8b:ed:f5:0d:e7:fe:e3:c5:1e:34:83:fa:b6:32:b6:
         c2:28:11:88:a5:54:4b:2a:c8:67:64:cb:d5:62:33:cd:69:49:
         e9:ec:43:3c:5c:92:3e:8c:09:85:99:9d:d1:ea:5f:9b:ff:1e:
         5a:06:9e:7a:a5:47:03:36:fb:eb:cf:03:92:a9:6c:68:b1:63:
         37:69:e5:93:e0:54:b0:8a:46:99:59:1c:2c:1f:3c:35:34:4e:
         41:55:a6:3e:f5:ac:3f:71:44:88:1c:df:f1:23:10:bf:b7:e7:
         c4:c1:f0:32:10:dd:14:34:58:b0:93:be:47:87:00:02:d4:97:
         c8:71:04:9a:b9:b6:c5:df:7d:d5:84:b7:8d:62:2b:1a:1c:96:
         73:13:3b:db:a2:4d:ad:5e:4e:e7:cb:89:15:e5:2b:0c:92:11:
         2b:83:08:d8:ce:69:d9:0f:23:5e:76:bf:06:82:5e:61:37:a4:
         af:f9:47:7e:a6:bf:2e:3d:12:e4:7c:08:3d:db:b5:9b:87:aa:
         1b:e8:eb:41:28:35:8d:3f:f2:28:14:81:38:6d:9a:4f:e4:1c:
         48:fc:cb:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----