Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
File:                     79XDTJ_TJEnLwIirENkbWkq1Nho.mft (raw, json)
Hash identifier:          Nue+co6yyQiUtGf4orDdBjMEpz1e1YLEi9/7B86GCdE=
Subject key identifier:   1E:05:B2:A4:02:CE:FA:A3:55:3A:E9:86:A6:BA:E8:10:3F:03:E7:0D
Authority key identifier: EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A
Certificate issuer:       /CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a
Certificate serial:       019F1867EC7B11D75FDE613770D243238B83
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
Manifest number:          095F
Signing time:             Tue 30 Jun 2026 12:01:31 +0000
Manifest this update:     Tue 30 Jun 2026 12:01:31 +0000
Manifest next update:     Wed 01 Jul 2026 12:01:31 +0000
Files and hashes:         1: 79XDTJ_TJEnLwIirENkbWkq1Nho.crl (hash: I5PpPXq1RMzZnZJw62qWZnNYu9M2d5ox5GmpB+wszv8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 12:01:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:18:67:ec:7b:11:d7:5f:de:61:37:70:d2:43:23:8b:83
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=efd5c34c9fd32449cbc088ab10d91b5a4ab5361a
        Validity
            Not Before: Jun 30 12:01:31 2026 GMT
            Not After : Jul  1 12:01:31 2026 GMT
        Subject: CN=1e05b2a402cefaa3553ae986a6bae8103f03e70d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:14:cd:62:b8:19:11:27:f9:ed:94:c9:19:32:
                    b0:d4:02:c6:08:85:e3:fd:55:23:0d:53:a3:3a:13:
                    00:9a:59:e6:93:29:a2:d1:92:3c:ca:90:bd:0a:e6:
                    c1:cc:ca:2e:7b:45:61:3c:cd:52:72:a6:ac:6f:82:
                    2b:30:b2:7c:0d:60:28:14:23:6a:78:a7:59:42:cd:
                    b4:fc:22:bd:28:19:c7:9e:dc:f9:89:04:75:81:2b:
                    a6:80:0f:81:45:2f:ed:79:76:03:3a:97:fb:26:b8:
                    cb:4a:59:2e:50:36:6d:5a:c7:0d:9f:49:c5:77:ff:
                    c2:e7:3c:55:b5:4f:f6:ec:49:b4:a9:7c:5f:f5:33:
                    43:49:0b:03:a1:cc:9c:d7:af:68:10:38:ca:78:0e:
                    ad:d6:50:00:c6:aa:4b:b2:f3:0d:01:9d:b5:03:42:
                    6b:33:69:55:78:59:08:75:8e:e9:f7:3f:94:3f:42:
                    a7:53:fd:90:91:82:4d:95:55:7d:b1:72:27:4a:07:
                    a3:fd:4a:15:bb:17:f6:9e:4d:08:21:b7:d1:74:bb:
                    b4:e3:b3:62:f1:53:5e:0a:89:7f:66:3c:14:58:7f:
                    dd:93:44:ff:ef:3b:3f:e1:b8:68:d3:f8:e0:3f:5a:
                    2e:ff:13:38:3d:a5:94:60:19:5b:e3:ca:d9:68:0d:
                    e6:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:05:B2:A4:02:CE:FA:A3:55:3A:E9:86:A6:BA:E8:10:3F:03:E7:0D
            X509v3 Authority Key Identifier:
                keyid:EF:D5:C3:4C:9F:D3:24:49:CB:C0:88:AB:10:D9:1B:5A:4A:B5:36:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/79XDTJ_TJEnLwIirENkbWkq1Nho.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/15a057-4427-4b9d-ab75-5b7aba0f258c/1/79XDTJ_TJEnLwIirENkbWkq1Nho.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:80:d7:4f:6d:be:67:42:62:5f:e5:fc:8c:6b:64:27:de:95:
         84:20:8f:7a:a5:d1:37:bd:4f:13:22:39:36:9d:15:d6:66:39:
         a8:ab:b9:da:47:02:83:21:e0:83:af:99:d4:55:63:28:81:68:
         be:f7:6d:8c:df:82:66:e7:98:81:45:23:37:55:f3:8a:76:17:
         74:45:8e:ec:24:ff:10:7e:aa:ed:ca:be:d7:c4:fe:fe:43:93:
         9c:f6:4a:e9:7c:d2:ca:37:85:b4:bc:3e:f7:a8:f1:84:07:e5:
         41:7f:98:12:78:0b:9c:28:5b:ba:05:f3:ef:13:d9:06:70:7f:
         8d:8c:23:28:61:fc:8e:f4:2f:72:e7:72:04:78:e1:98:e0:48:
         e6:cd:97:48:ff:3b:86:b6:c8:6e:69:71:21:fe:e1:6b:52:5e:
         15:ae:90:0b:9f:fe:fb:a9:da:7d:bd:98:bb:ee:df:94:53:c9:
         9f:ba:ae:64:02:6a:39:53:b5:3d:13:13:99:d6:6e:39:7c:cf:
         37:25:0e:08:a3:73:18:f9:4d:9b:36:45:de:32:75:fe:a9:63:
         dc:e6:00:c6:23:e6:00:4f:04:15:e3:26:6c:66:ec:fc:b7:75:
         c3:28:9f:b0:d6:3f:d9:ad:fe:74:46:48:b9:0e:28:8e:8f:04:
         2c:25:c5:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----