Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
File:                     Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft (raw, json)
Hash identifier:          v/CdY9Y/Y/lA75urJ68IsbRTlx4qzzwExPwZb/XF20Y=
Subject key identifier:   E8:0D:A9:41:EE:C3:D7:1D:D1:03:B8:CB:0A:A9:AB:2C:C9:55:91:D8
Authority key identifier: 4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14
Certificate issuer:       /CN=4b177c450d2035067baa26920b8a4bd36c7b3314
Certificate serial:       019EB8B4472154CF53CF55D86D4B3673EDAC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
Manifest number:          1068
Signing time:             Thu 11 Jun 2026 22:01:22 +0000
Manifest this update:     Thu 11 Jun 2026 22:01:22 +0000
Manifest next update:     Fri 12 Jun 2026 22:01:22 +0000
Files and hashes:         1: Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl (hash: y0Hiw7Og562fOc3u/nRSnaiRMW9nY6MMeir1+Z6wjLY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 12 Jun 2026 20:26:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:b8:b4:47:21:54:cf:53:cf:55:d8:6d:4b:36:73:ed:ac
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b177c450d2035067baa26920b8a4bd36c7b3314
        Validity
            Not Before: Jun 11 22:01:22 2026 GMT
            Not After : Jun 12 22:01:22 2026 GMT
        Subject: CN=e80da941eec3d71dd103b8cb0aa9ab2cc95591d8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:36:dd:17:ab:ec:56:86:4e:1b:ed:78:0d:90:
                    82:8b:9e:41:4d:e4:45:46:d1:17:26:f9:89:b9:8d:
                    aa:e4:de:c4:b3:2d:69:76:29:9d:d8:5c:47:89:ce:
                    74:70:19:5b:0a:31:8e:c0:35:ee:26:5f:08:23:31:
                    c8:34:e6:76:0d:2a:90:d5:f4:51:e2:bd:4b:ee:d3:
                    58:fe:ec:17:75:99:97:cc:e2:f8:67:d2:b2:6e:51:
                    1d:bb:37:31:d2:2a:ed:11:f9:45:9f:3f:9f:f2:d6:
                    8b:a2:b2:56:33:c9:d9:79:47:03:15:85:6f:e3:6e:
                    b5:e4:f7:84:3e:e4:c7:15:4b:40:44:74:1f:5f:c4:
                    44:8b:41:0b:4e:be:e5:fb:cd:a3:b9:20:af:03:da:
                    eb:0e:f9:ee:18:28:38:b1:cb:c2:23:3f:35:4c:e7:
                    f4:65:8a:69:7b:64:c3:72:ed:1b:5f:0b:32:4d:bb:
                    77:c3:e1:48:fc:57:78:63:09:5c:11:05:aa:2c:39:
                    93:d6:cd:b5:75:b5:bd:4b:97:3b:44:90:39:1e:ff:
                    03:e4:6c:16:b0:92:2d:f1:b3:d6:70:97:98:04:9a:
                    1a:8a:ae:0c:30:99:1b:05:e3:79:bb:37:20:7e:9d:
                    2f:b9:ca:3a:87:d0:88:28:6c:ba:28:88:15:de:a2:
                    95:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:0D:A9:41:EE:C3:D7:1D:D1:03:B8:CB:0A:A9:AB:2C:C9:55:91:D8
            X509v3 Authority Key Identifier:
                keyid:4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:e2:d1:3a:b5:ac:32:7a:f7:71:da:cf:90:3a:da:d8:45:de:
         07:be:2e:df:a8:27:58:ae:41:ea:02:d8:53:87:f4:7d:55:57:
         93:c2:d5:67:b9:02:8b:9c:92:30:f8:b9:5b:48:21:35:84:31:
         f7:bc:b6:be:5e:45:98:d1:53:0e:4e:71:40:c4:57:91:76:81:
         3c:95:54:09:25:f8:10:f6:02:c6:bd:fb:8c:d5:1b:56:e3:7c:
         a4:a2:a6:b9:ba:e4:1d:94:9f:74:57:4f:4a:cc:98:66:ac:df:
         95:54:c1:39:da:a2:36:65:62:b3:7c:4e:ac:9a:5c:e0:06:74:
         c9:0b:20:ec:cd:8d:8c:2e:3f:44:2e:41:20:56:a8:cc:b0:4e:
         39:16:41:60:d7:ed:5f:62:dc:17:69:8b:ac:67:38:1e:1f:2f:
         72:d2:3f:97:be:6c:c6:df:1d:91:a2:a2:23:91:85:e3:55:4a:
         79:60:cb:dd:99:76:1a:df:a7:5a:e8:90:25:a8:50:a5:c5:84:
         1d:b8:d2:f5:68:22:84:11:71:26:95:3d:ba:bb:bd:1d:96:17:
         6f:c9:3c:ad:3a:66:fe:ff:13:4d:07:b6:d6:41:cb:b9:19:14:
         8d:1c:be:d3:b6:da:12:81:2d:9d:10:89:a5:7a:4d:8e:23:50:
         42:dc:04:3d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ64tEchVM9Tz1XYbUs2c+2sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiMTc3YzQ1MGQyMDM1MDY3YmFhMjY5MjBiOGE0YmQzNmM3
YjMzMTQwHhcNMjYwNjExMjIwMTIyWhcNMjYwNjEyMjIwMTIyWjAzMTEwLwYDVQQD
EyhlODBkYTk0MWVlYzNkNzFkZDEwM2I4Y2IwYWE5YWIyY2M5NTU5MWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTbdF6vsVoZOG+14DZCCi55BTeRF
RtEXJvmJuY2q5N7Esy1pdimd2FxHic50cBlbCjGOwDXuJl8IIzHINOZ2DSqQ1fRR
4r1L7tNY/uwXdZmXzOL4Z9KyblEduzcx0irtEflFnz+f8taLorJWM8nZeUcDFYVv
42615PeEPuTHFUtARHQfX8REi0ELTr7l+82juSCvA9rrDvnuGCg4scvCIz81TOf0
ZYppe2TDcu0bXwsyTbt3w+FI/Fd4YwlcEQWqLDmT1s21dbW9S5c7RJA5Hv8D5GwW
sJIt8bPWcJeYBJoaiq4MMJkbBeN5uzcgfp0vuco6h9CIKGy6KIgV3qKV9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOgNqUHuw9cd0QO4ywqpqyzJVZHYMB8GA1UdIwQY
MBaAFEsXfEUNIDUGe6omkguKS9NsezMUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS81YTZhYWQtYTRjNy00M2I5LThhOWUt
OGQ3YjczNmE2OTVjLzEvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS81YTZhYWQtYTRjNy00M2I5LThhOWUtOGQ3YjczNmE2OTVj
LzEvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ+LROrWs
Mnr3cdrPkDra2EXeB74u36gnWK5B6gLYU4f0fVVXk8LVZ7kCi5ySMPi5W0ghNYQx
97y2vl5FmNFTDk5xQMRXkXaBPJVUCSX4EPYCxr37jNUbVuN8pKKmubrkHZSfdFdP
SsyYZqzflVTBOdqiNmVis3xOrJpc4AZ0yQsg7M2NjC4/RC5BIFaozLBOORZBYNft
X2LcF2mLrGc4Hh8vctI/l75sxt8dkaKiI5GF41VKeWDL3Zl2Gt+nWuiQJahQpcWE
HbjS9WgihBFxJpU9uru9HZYXb8k8rTpm/v8TTQe21kHLuRkUjRy+07baEoEtnRCJ
pXpNjiNQQtwEPQ==
-----END CERTIFICATE-----