Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft
File:                     5-aiybui7N1AdLMVN1mDXoI6uOQ.mft (raw, json)
Hash identifier:          RUGptVm8rPpX8A/ufIvL8Mpzi1VCwKN6GpJDqbVKKb0=
Subject key identifier:   B9:AB:1C:3D:CE:25:7F:BD:29:A7:2F:D0:1E:BD:5D:8A:29:7D:D5:CA
Authority key identifier: E7:E6:A2:C9:BB:A2:EC:DD:40:74:B3:15:37:59:83:5E:82:3A:B8:E4
Certificate issuer:       /CN=e7e6a2c9bba2ecdd4074b3153759835e823ab8e4
Certificate serial:       019E2F96663DCEFB1A49CCD8E87CFDE50481
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft
Manifest number:          0FEF
Signing time:             Sat 16 May 2026 07:00:46 +0000
Manifest this update:     Sat 16 May 2026 07:00:46 +0000
Manifest next update:     Sun 17 May 2026 07:00:46 +0000
Files and hashes:         1: 5-aiybui7N1AdLMVN1mDXoI6uOQ.crl (hash: LQsBSH8ZoH85Pwd0jU/9rAoPVd4a/VucGx3KhI4eVyM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:96:66:3d:ce:fb:1a:49:cc:d8:e8:7c:fd:e5:04:81
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7e6a2c9bba2ecdd4074b3153759835e823ab8e4
        Validity
            Not Before: May 16 07:00:46 2026 GMT
            Not After : May 17 07:00:46 2026 GMT
        Subject: CN=b9ab1c3dce257fbd29a72fd01ebd5d8a297dd5ca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:1e:23:eb:79:af:95:0c:8d:09:bd:f1:dc:fc:
                    44:e9:fa:9f:ac:35:e0:f9:a9:ab:03:60:4c:cf:cd:
                    ec:90:41:d6:13:90:09:ab:f9:4d:ac:a3:ff:77:cd:
                    a4:ab:22:92:a3:d9:3c:67:ce:40:4f:f0:72:e4:cb:
                    19:50:fe:a4:db:c4:46:71:18:59:78:eb:83:1c:61:
                    a5:38:8f:35:83:66:0b:47:f6:5e:23:a7:1d:ef:09:
                    9b:dd:1c:f9:24:63:9f:db:1d:aa:f7:85:e9:8e:72:
                    d0:77:4f:3a:20:b5:2b:e8:28:a9:7f:33:44:90:9d:
                    1b:04:74:98:48:01:08:54:bf:20:6a:a6:e0:c0:92:
                    d0:1b:5b:28:09:2b:8f:6a:81:42:82:9a:5b:c0:5d:
                    32:aa:c6:7d:14:6c:1a:39:19:80:e0:cb:5d:52:e3:
                    3d:ba:4d:a8:98:41:b7:ca:93:be:c4:cc:93:2f:b2:
                    da:a3:66:98:18:71:6f:4c:b0:2d:29:20:05:d3:74:
                    01:6a:4b:d3:69:fc:87:30:3d:71:dc:bd:3c:59:bc:
                    19:e9:75:7f:27:7d:28:77:f3:8f:4b:08:72:6d:bb:
                    b1:ad:90:44:db:2a:5e:08:38:bf:ef:96:f7:2e:a8:
                    72:ff:04:86:f2:9b:87:91:c2:a9:2f:fa:a8:7d:49:
                    9a:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:AB:1C:3D:CE:25:7F:BD:29:A7:2F:D0:1E:BD:5D:8A:29:7D:D5:CA
            X509v3 Authority Key Identifier:
                keyid:E7:E6:A2:C9:BB:A2:EC:DD:40:74:B3:15:37:59:83:5E:82:3A:B8:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:e3:c3:99:6b:25:f2:89:71:69:5d:67:d8:e5:a6:51:b2:bb:
         14:ba:81:44:96:c9:68:79:0c:3f:e4:f3:9e:bc:f3:86:48:4b:
         af:75:8d:61:ac:50:eb:0d:71:2d:31:cf:25:b1:c0:a9:70:e8:
         88:41:f0:59:3c:30:a6:8f:d8:e9:fe:fc:4c:14:35:2a:4f:93:
         70:27:44:3e:ae:ca:08:f9:27:3f:75:30:ce:68:1e:37:3b:36:
         f2:5e:0a:28:bd:f3:9a:49:5a:07:45:aa:74:2c:06:e4:03:af:
         df:74:10:94:05:02:9a:35:14:22:e9:5e:68:09:bc:ea:34:ed:
         9c:5c:12:b5:62:fe:77:6d:2b:2f:67:78:c3:cf:c4:35:41:a1:
         a3:c7:ea:5b:53:a8:08:89:48:f5:8b:bf:bb:87:f6:85:d0:fa:
         2f:c9:49:68:5a:7a:1c:2b:d2:0c:f8:dd:98:d7:b0:c9:4d:42:
         f5:ff:15:fc:1a:4d:43:ce:49:63:9a:11:38:53:ae:1e:71:7a:
         0c:57:76:f3:7c:f8:cc:95:10:84:0b:b4:be:5b:56:2f:52:ce:
         cb:3b:a4:c0:74:3f:bc:5a:0c:77:ec:58:a8:45:e5:b1:47:c6:
         43:a8:e9:07:9e:91:4f:5b:74:f1:b7:7d:f5:76:27:2c:42:aa:
         ac:0b:34:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----