Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft
File:                     BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft (raw, json)
Hash identifier:          LNrp9ouu2pgVXA1T47WezJOUysrBhDmwbvI2uN8j9XU=
Subject key identifier:   A7:B4:02:4A:D4:8A:45:BD:EF:00:94:3C:36:F7:8E:45:63:3C:18:B4
Authority key identifier: 05:87:C8:49:0B:37:20:45:66:9F:45:F1:83:19:3E:ED:46:F9:91:F5
Certificate issuer:       /CN=0587c8490b372045669f45f183193eed46f991f5
Certificate serial:       019E2F96B6FBD9F7336CCA476AC8419383F3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft
Manifest number:          0C6E
Signing time:             Sat 16 May 2026 07:01:06 +0000
Manifest this update:     Sat 16 May 2026 07:01:06 +0000
Manifest next update:     Sun 17 May 2026 07:01:06 +0000
Files and hashes:         1: BYfISQs3IEVmn0Xxgxk-7Ub5kfU.crl (hash: GUvwrjF4LYpDUbLn0k+M9QsQjtSqxZPbtAhrlC8J/zM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:01:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:96:b6:fb:d9:f7:33:6c:ca:47:6a:c8:41:93:83:f3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0587c8490b372045669f45f183193eed46f991f5
        Validity
            Not Before: May 16 07:01:06 2026 GMT
            Not After : May 17 07:01:06 2026 GMT
        Subject: CN=a7b4024ad48a45bdef00943c36f78e45633c18b4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:de:00:f3:54:98:72:2c:90:85:e5:85:30:f2:
                    ec:a5:21:b1:88:f6:e7:7d:62:f0:e2:e0:45:8c:86:
                    30:d5:b9:a8:e0:8d:61:47:b9:9a:e0:2f:14:c3:91:
                    19:ae:f0:93:c8:d2:ff:83:eb:fb:5d:15:8e:82:d8:
                    f0:fc:bc:57:38:46:67:5d:d8:6e:d5:ea:86:5a:70:
                    d0:0e:2f:ff:34:0f:7b:95:0f:d7:55:8f:47:63:c5:
                    de:55:cb:30:81:cd:6f:0c:5c:05:fe:36:ef:cc:c9:
                    e2:f6:da:4a:c0:36:76:58:f1:6b:e4:34:d2:74:76:
                    e9:41:8b:44:0e:ad:fc:33:3e:2a:e9:21:d1:9c:5e:
                    b8:c8:32:82:c1:d8:b9:1e:92:20:c1:a3:5f:4a:44:
                    1b:ee:28:b3:84:84:a1:4e:a7:db:d8:cb:34:dc:f0:
                    10:0d:68:68:44:63:16:c4:43:13:3a:b6:b1:c5:c1:
                    f6:14:cd:06:43:d0:eb:ec:fc:c7:28:56:f4:18:35:
                    42:84:84:81:07:b6:a6:26:df:12:a9:88:53:49:ae:
                    e4:1b:d5:6b:7a:69:c5:df:8f:0b:10:75:49:ef:f9:
                    c8:13:c7:48:e6:81:40:0c:b3:e2:3c:e7:1e:e6:96:
                    17:91:11:81:44:e8:de:0f:ff:5b:00:55:16:6a:49:
                    c8:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A7:B4:02:4A:D4:8A:45:BD:EF:00:94:3C:36:F7:8E:45:63:3C:18:B4
            X509v3 Authority Key Identifier:
                keyid:05:87:C8:49:0B:37:20:45:66:9F:45:F1:83:19:3E:ED:46:F9:91:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cd0169-ffc1-401a-abbd-ba033f907d91/1/BYfISQs3IEVmn0Xxgxk-7Ub5kfU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:26:2d:18:fd:3d:a1:16:21:1b:eb:a1:bd:2b:47:0d:a1:de:
         14:3d:9c:59:56:1f:63:00:44:56:a1:32:ff:9a:e3:c3:6a:eb:
         bd:63:64:24:1a:74:e0:53:23:aa:fd:6f:e7:0c:5d:02:83:13:
         5d:b8:53:3b:80:a0:0e:0e:e9:0e:dd:a1:9a:4b:b8:0f:9e:ae:
         82:fc:d9:16:8c:b9:0c:7f:54:85:b4:2e:20:5b:26:d3:8a:54:
         9e:23:37:79:45:a4:4d:2b:cf:2a:2a:d6:84:16:0b:33:e2:31:
         ae:56:4c:a7:a1:9c:a8:3e:c6:3e:e3:d5:11:82:25:5c:25:f5:
         dd:85:13:c3:9e:fe:95:95:25:53:6c:ce:44:c2:ce:92:6b:97:
         03:ca:6e:7f:46:68:4f:2b:4c:1c:77:9f:0a:ae:31:5b:99:e9:
         11:ce:29:9e:c6:89:c6:77:0c:14:94:c8:7a:50:fd:f8:cb:65:
         c1:2d:77:9f:e0:69:83:80:03:21:8d:b9:5b:43:51:32:82:6c:
         c3:50:9c:98:03:a3:75:23:9e:84:e9:7a:a4:08:8f:0b:8d:19:
         d8:5d:16:bc:4e:a9:30:92:13:cb:2c:56:fe:bf:38:79:bb:51:
         ed:3d:fd:94:20:71:26:83:a7:fa:17:42:c3:36:c2:84:fd:20:
         18:ff:bb:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----