Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.mft
File:                     9XGHM6rUPvapm9jZUEog3YkCLo8.mft (raw, json)
Hash identifier:          UMX8vFfCic0bZYNmS9nzpKPG5pMtaG8HjvXRQN4GzvY=
Subject key identifier:   B0:6A:60:2B:B3:84:AE:53:5B:A9:93:70:90:BF:51:C3:1B:14:2B:58
Authority key identifier: F5:71:87:33:AA:D4:3E:F6:A9:9B:D8:D9:50:4A:20:DD:89:02:2E:8F
Certificate issuer:       /CN=f5718733aad43ef6a99bd8d9504a20dd89022e8f
Certificate serial:       019E30E0E6AD45F3025F767A37F59A06E885
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9XGHM6rUPvapm9jZUEog3YkCLo8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.mft
Manifest number:          160F
Signing time:             Sat 16 May 2026 13:01:45 +0000
Manifest this update:     Sat 16 May 2026 13:01:45 +0000
Manifest next update:     Sun 17 May 2026 13:01:45 +0000
Files and hashes:         1: 9XGHM6rUPvapm9jZUEog3YkCLo8.crl (hash: WCV1VjZKMGQdZ9q1vA4ppI4amGweQJclMB66XV92P8U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9XGHM6rUPvapm9jZUEog3YkCLo8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:e0:e6:ad:45:f3:02:5f:76:7a:37:f5:9a:06:e8:85
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f5718733aad43ef6a99bd8d9504a20dd89022e8f
        Validity
            Not Before: May 16 13:01:45 2026 GMT
            Not After : May 17 13:01:45 2026 GMT
        Subject: CN=b06a602bb384ae535ba9937090bf51c31b142b58
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:18:78:1d:a7:8b:e8:95:e5:03:c8:58:6a:00:
                    50:d3:13:6c:3d:de:ff:73:02:e2:c0:85:d8:bc:71:
                    5c:bb:58:45:a6:f3:0d:91:e4:3a:90:8e:4f:31:ff:
                    cf:57:04:6c:f0:cf:44:be:77:c1:c3:8e:ba:2d:bf:
                    30:96:6b:69:18:63:13:b8:fe:ca:59:c2:20:16:e6:
                    c1:9d:19:b1:42:36:1a:b3:f0:3c:2a:fc:a7:a9:82:
                    ea:1e:da:74:1d:40:46:29:6a:ab:3a:80:6a:14:b0:
                    0a:b4:30:22:b3:99:bb:2f:97:10:25:4e:a0:dc:f6:
                    09:ed:1c:1f:0e:3a:56:8a:49:96:96:9e:94:31:15:
                    35:e5:21:a0:f4:e0:f7:d2:bd:4b:87:64:13:07:b6:
                    73:cc:64:27:81:16:20:73:19:e2:9c:57:b9:0e:69:
                    bc:91:31:40:fd:87:87:c4:a1:64:2d:05:17:85:ee:
                    4f:22:72:36:8f:28:56:b5:13:e5:2a:3c:89:1d:6d:
                    99:ec:48:28:d5:62:10:63:7c:28:ae:de:3e:68:c4:
                    11:53:76:f6:75:34:c8:ff:fe:a9:71:02:7d:9d:bc:
                    b9:55:03:ed:d8:46:fd:3e:1f:33:9b:de:b2:9c:0a:
                    29:be:7c:43:7e:3e:33:73:a7:2e:b8:dd:6e:87:d3:
                    c3:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:6A:60:2B:B3:84:AE:53:5B:A9:93:70:90:BF:51:C3:1B:14:2B:58
            X509v3 Authority Key Identifier:
                keyid:F5:71:87:33:AA:D4:3E:F6:A9:9B:D8:D9:50:4A:20:DD:89:02:2E:8F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XGHM6rUPvapm9jZUEog3YkCLo8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/23337c-3758-40b6-a9c8-d725fa6732b6/1/9XGHM6rUPvapm9jZUEog3YkCLo8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b8:23:6c:8f:a8:89:d5:1c:86:cf:ee:8e:c9:c3:ad:7c:1a:dc:
         07:5c:61:d4:14:85:b1:00:3d:14:06:af:ce:b9:f0:68:95:ba:
         36:29:e2:d2:bd:65:30:70:f8:3d:ea:e4:aa:a6:42:7c:3c:df:
         a9:e0:45:7d:9a:c0:7d:19:00:c3:ec:1d:ed:0f:84:04:ad:61:
         53:74:55:e6:cb:2b:47:29:0b:2a:b4:58:0a:2c:ca:c8:bf:a3:
         0a:fc:21:95:cf:4b:d8:85:98:18:ec:c9:bc:ee:04:79:a9:ff:
         7d:bf:4f:03:79:02:e0:fe:e1:f4:e9:18:10:98:8c:16:0f:eb:
         88:e0:59:21:12:b8:60:76:a3:e5:57:51:56:f8:35:6c:30:9b:
         26:3b:c5:87:30:fb:45:7d:de:72:2e:f7:e0:f8:a7:12:6f:54:
         8b:55:bc:94:01:19:a0:f9:3a:31:f8:6c:74:18:c4:52:c7:9f:
         93:71:f9:16:7a:b3:6f:f9:70:39:4c:9f:27:88:3e:a2:24:26:
         89:9e:6f:1c:e1:90:dc:33:ca:0d:57:85:14:b7:fe:bb:d0:fd:
         7f:e3:df:d2:ab:6d:8c:82:78:16:88:ce:a8:8d:8d:66:cd:54:
         8a:ca:e6:b9:52:09:54:43:40:d7:81:3e:5a:f9:91:b7:b5:ed:
         c1:08:1a:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----