Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
File:                     2lTIIO5UFUMsaLATYZJ1_0xubqU.mft (raw, json)
Hash identifier:          B7ZAxtGXA+lm2yCBdd9fLBSugLoDsz77v/HUz5ZwLZo=
Subject key identifier:   AB:F7:0B:03:EE:A5:91:15:28:88:A4:EC:1F:B8:B2:20:DE:88:DA:E0
Authority key identifier: DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5
Certificate issuer:       /CN=da54c820ee5415432c68b013619275ff4c6e6ea5
Certificate serial:       019E2F968006108027915DF1437031588EFB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
Manifest number:          0993
Signing time:             Sat 16 May 2026 07:00:52 +0000
Manifest this update:     Sat 16 May 2026 07:00:52 +0000
Manifest next update:     Sun 17 May 2026 07:00:52 +0000
Files and hashes:         1: 2lTIIO5UFUMsaLATYZJ1_0xubqU.crl (hash: ILWJCU2bo/QlCSuInWAwimOHUKbhAhNM/TRhsBNKKPg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:00:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:96:80:06:10:80:27:91:5d:f1:43:70:31:58:8e:fb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da54c820ee5415432c68b013619275ff4c6e6ea5
        Validity
            Not Before: May 16 07:00:52 2026 GMT
            Not After : May 17 07:00:52 2026 GMT
        Subject: CN=abf70b03eea591152888a4ec1fb8b220de88dae0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:22:02:c1:72:ec:06:e7:ee:3b:4c:23:cf:39:
                    16:3c:b8:97:5d:11:a3:e1:0d:bc:10:19:0a:69:82:
                    63:1b:ea:09:e0:bf:df:eb:2a:25:5d:77:62:26:a9:
                    3e:9c:9d:d0:f7:49:99:79:07:8a:2f:8a:fb:09:e0:
                    85:a5:65:c8:64:af:59:8f:aa:06:45:29:4d:9d:7a:
                    13:46:62:01:5d:a0:a0:76:ea:52:e8:7c:4b:b8:18:
                    70:a9:6a:2d:a5:9c:86:e1:22:2b:b0:2e:bb:2a:bc:
                    e4:be:b9:b1:53:11:79:9b:2a:ae:53:f8:f1:eb:60:
                    46:55:de:3f:f5:61:44:c4:29:92:9c:a3:50:31:fb:
                    1e:32:ee:b3:ba:c2:8d:a0:ff:ea:da:13:c1:4f:99:
                    27:e8:3a:f7:e6:2b:df:0c:42:7d:c2:ad:ba:dc:65:
                    3a:87:ad:fa:60:f0:27:57:ac:3a:bc:a4:36:05:78:
                    91:c8:e2:16:1d:d0:21:e0:2a:c7:43:2c:4a:ab:95:
                    f6:84:4c:94:b1:97:34:2a:61:fd:96:24:2f:ee:6d:
                    6d:84:32:4c:20:9a:f1:be:5a:92:03:3f:f4:27:c5:
                    cc:d5:44:8c:57:13:0e:bc:99:d5:75:a4:fd:00:86:
                    dc:bb:ad:54:9b:1b:1b:1c:68:fc:51:2d:75:18:b5:
                    85:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:F7:0B:03:EE:A5:91:15:28:88:A4:EC:1F:B8:B2:20:DE:88:DA:E0
            X509v3 Authority Key Identifier:
                keyid:DA:54:C8:20:EE:54:15:43:2C:68:B0:13:61:92:75:FF:4C:6E:6E:A5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2lTIIO5UFUMsaLATYZJ1_0xubqU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/87a9d9-667f-41f3-aec9-8098205f872e/1/2lTIIO5UFUMsaLATYZJ1_0xubqU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:6c:dc:99:06:fb:da:19:cb:34:e5:4b:92:5c:1b:bc:f2:73:
         4d:7e:87:33:07:11:26:19:73:7f:ac:72:9c:b1:36:1d:80:3f:
         ff:84:ba:26:38:b9:f5:1b:52:46:37:e3:d7:c1:69:34:7b:66:
         c6:31:18:3b:5e:41:b4:25:cb:49:73:34:af:75:97:9c:ad:92:
         04:0d:20:e3:79:a9:bb:ea:df:06:9d:52:18:f1:95:6d:23:f5:
         68:97:88:8a:fe:e3:6a:7b:71:79:59:d2:56:19:38:02:d7:e8:
         86:1d:43:06:ba:ba:be:62:e0:e9:ae:ef:fb:5c:5a:1b:8b:cd:
         bb:c3:f7:76:6a:cd:7e:c9:26:c4:f2:80:39:73:7f:df:79:ba:
         c8:66:48:99:fa:78:5a:13:35:34:2e:63:15:f5:51:1c:2e:c8:
         2b:e0:42:6e:ee:02:62:fa:45:0e:ca:ee:e1:97:da:f4:b0:11:
         a2:dd:bb:21:79:ae:2b:a4:49:69:ca:f6:ef:ff:9a:9d:94:84:
         0a:3a:c9:cb:3f:8c:46:e2:8a:4c:08:b1:3b:43:75:40:d5:6f:
         f7:9b:2a:08:a0:f4:79:4c:9e:aa:0c:c5:38:d1:20:e6:b2:5e:
         9c:b4:a5:0f:2b:ed:f4:15:ad:69:a9:19:4c:a2:54:c4:95:5c:
         7d:01:98:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----