Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
File:                     d11030Q8uAUXzkFQ3OImYpQPHXw.mft (raw, json)
Hash identifier:          Od+ZUpFCQHx8hayDQLMgvUYZNOS6Fp4OCzxf3ijR4qs=
Subject key identifier:   D5:1A:63:6D:D0:53:12:A1:52:97:C7:31:FB:60:3B:7D:DB:0C:4E:13
Authority key identifier: 77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C
Certificate issuer:       /CN=775d74df443cb80517ce4150dce22662940f1d7c
Certificate serial:       019EB733F3E643C077AD1511F4C4CA050794
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
Manifest number:          0D90
Signing time:             Thu 11 Jun 2026 15:01:35 +0000
Manifest this update:     Thu 11 Jun 2026 15:01:35 +0000
Manifest next update:     Fri 12 Jun 2026 15:01:35 +0000
Files and hashes:         1: d11030Q8uAUXzkFQ3OImYpQPHXw.crl (hash: E44+tr32Eb171wLlXmwb4ZxXdsnw4fpHblEliwILYj4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 12 Jun 2026 15:01:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:b7:33:f3:e6:43:c0:77:ad:15:11:f4:c4:ca:05:07:94
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=775d74df443cb80517ce4150dce22662940f1d7c
        Validity
            Not Before: Jun 11 15:01:35 2026 GMT
            Not After : Jun 12 15:01:35 2026 GMT
        Subject: CN=d51a636dd05312a15297c731fb603b7ddb0c4e13
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:3f:84:f8:ee:7e:4c:8f:d1:4d:1a:69:b6:f7:
                    d3:1a:f6:ff:da:80:68:c8:10:b3:5b:44:92:82:10:
                    c0:32:67:7b:3f:fc:5b:66:9e:6f:79:a9:31:cd:73:
                    98:4b:ab:6d:61:0e:2d:c3:27:09:c3:ec:4c:1a:82:
                    14:d2:8a:5e:b8:2f:86:a3:a8:b0:06:7b:e8:f9:ae:
                    1b:73:61:92:a9:e4:50:cb:87:b3:b5:99:86:c0:86:
                    5a:84:2e:37:4c:71:93:74:ad:36:1b:98:2f:ba:6b:
                    42:36:5d:99:ce:8d:32:b1:96:55:82:1e:53:f2:b8:
                    9e:42:20:7a:74:29:ab:25:81:c1:d1:e4:b6:cc:91:
                    72:b0:e9:d1:43:35:db:db:56:2a:ce:bb:aa:ea:9c:
                    b2:59:c0:89:d3:30:0b:21:10:09:11:95:9b:97:57:
                    05:16:20:7d:72:79:dd:c5:2e:5e:84:be:2b:1f:90:
                    34:7e:35:b1:be:86:d5:9d:6c:51:8e:b0:70:5c:6f:
                    e8:85:0f:86:3b:e8:d2:64:23:dc:ce:2e:47:73:58:
                    e5:ab:b7:1d:81:09:dc:a5:d3:98:1d:44:ae:44:21:
                    83:9d:a8:77:20:5f:80:ce:0c:a4:03:d6:f2:15:53:
                    a3:88:d2:ca:46:52:77:30:ab:9f:63:d5:a8:cc:8e:
                    05:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:1A:63:6D:D0:53:12:A1:52:97:C7:31:FB:60:3B:7D:DB:0C:4E:13
            X509v3 Authority Key Identifier:
                keyid:77:5D:74:DF:44:3C:B8:05:17:CE:41:50:DC:E2:26:62:94:0F:1D:7C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d11030Q8uAUXzkFQ3OImYpQPHXw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1c77b7-b82a-4dfd-b6b5-6f758619837f/1/d11030Q8uAUXzkFQ3OImYpQPHXw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:b3:ce:5b:32:ef:58:13:be:74:de:96:98:ee:a5:a4:03:73:
         bc:02:2e:86:ca:84:5b:d3:38:f7:47:9e:41:96:4b:0d:43:a8:
         18:c9:d2:ac:87:68:2e:41:39:40:25:48:59:cf:19:8a:48:06:
         e7:d0:cf:bb:cf:58:42:f1:0a:47:02:71:8e:ee:4b:5d:65:9f:
         79:22:2a:26:45:da:74:34:b6:1d:ff:39:a4:72:f9:89:b0:56:
         00:52:cf:b0:7b:a6:3d:33:5a:93:99:24:8d:4d:47:98:a4:bf:
         76:86:4c:31:42:fa:d8:72:f1:b5:c8:d2:83:f9:89:39:df:56:
         d5:86:d2:be:19:f5:dc:e6:fd:4a:e2:f9:e6:eb:14:50:48:ee:
         97:dc:7a:b5:af:3b:46:4f:81:18:a0:d0:61:17:ff:c4:3b:12:
         b4:c3:28:86:ff:88:11:4d:eb:e2:89:f1:59:12:b4:ec:f0:0f:
         f2:c8:3b:8b:80:e8:6f:3a:43:1a:05:6b:f3:67:38:78:3a:a9:
         c3:2f:01:86:4d:22:2a:73:db:4d:09:03:51:f5:e2:5c:82:0b:
         90:fc:66:80:50:3d:80:6a:3c:54:f4:6b:a5:16:7e:0c:40:9d:
         a2:39:c7:a6:4e:6f:e3:e6:48:90:86:92:37:f8:86:c9:f4:62:
         f1:18:6e:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----