Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft
File:                     EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft (raw, json)
Hash identifier:          DRN681LPuMCFLGhbvoXiTYjfXOpBG5wkDBXQKqn4oY4=
Subject key identifier:   B0:32:68:10:35:5C:27:08:3B:91:4E:66:C8:F5:0A:03:DE:D0:5D:F8
Authority key identifier: 10:79:7E:B5:F9:AA:9A:BE:52:00:8C:E7:F2:1A:B4:4A:FD:EE:A0:D0
Certificate issuer:       /CN=10797eb5f9aa9abe52008ce7f21ab44afdeea0d0
Certificate serial:       019E3004A3F859EE9E63419E3F4B802F94E2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft
Manifest number:          190B
Signing time:             Sat 16 May 2026 09:01:10 +0000
Manifest this update:     Sat 16 May 2026 09:01:10 +0000
Manifest next update:     Sun 17 May 2026 09:01:10 +0000
Files and hashes:         1: EHl-tfmqmr5SAIzn8hq0Sv3uoNA.crl (hash: GZa1lSkKS5ZQaa4BL3AaDvc5IDMuEOF3TAAiL6UXig8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 09:01:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:04:a3:f8:59:ee:9e:63:41:9e:3f:4b:80:2f:94:e2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=10797eb5f9aa9abe52008ce7f21ab44afdeea0d0
        Validity
            Not Before: May 16 09:01:10 2026 GMT
            Not After : May 17 09:01:10 2026 GMT
        Subject: CN=b0326810355c27083b914e66c8f50a03ded05df8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:e5:9d:d8:6c:73:bd:cd:3c:cf:53:98:f1:80:
                    30:2b:ed:1b:f3:a9:a2:63:f3:06:1d:c0:e5:33:3a:
                    53:a8:7e:60:08:a7:6a:48:52:51:63:95:19:25:73:
                    5f:4b:26:2e:45:4b:7a:80:5f:80:5a:c3:57:db:80:
                    31:31:d3:10:be:2a:f3:08:98:1f:6a:e7:b9:1a:f4:
                    18:67:0c:95:25:df:b7:51:f7:4b:53:8d:37:66:ce:
                    9e:d5:eb:7a:68:98:6e:c6:94:0c:d0:6e:1e:d4:c6:
                    33:b3:53:42:4e:48:57:9f:01:15:c4:65:1d:77:95:
                    af:84:48:86:62:4d:ae:44:27:2d:b0:03:57:9e:c0:
                    3f:66:e9:14:21:88:ef:5c:c0:36:1c:d2:af:c4:83:
                    e4:1a:92:8b:ae:26:93:df:7e:4e:3f:b4:da:dd:3d:
                    39:41:b2:dd:3c:4c:9d:9a:f2:99:cd:7b:d2:a3:e3:
                    66:ee:47:90:ae:0b:bc:da:60:7e:6b:c7:8d:c3:69:
                    ba:2b:8c:cc:59:8c:b8:28:ba:41:5f:df:8a:49:9f:
                    6c:bf:0a:a6:96:ba:9f:4b:13:5f:24:bb:82:a4:e8:
                    f3:01:0f:f3:ca:d2:27:8d:49:be:ca:5c:62:00:06:
                    bd:8e:f5:a4:94:4f:ed:59:c2:23:17:9f:2a:28:8b:
                    98:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:32:68:10:35:5C:27:08:3B:91:4E:66:C8:F5:0A:03:DE:D0:5D:F8
            X509v3 Authority Key Identifier:
                keyid:10:79:7E:B5:F9:AA:9A:BE:52:00:8C:E7:F2:1A:B4:4A:FD:EE:A0:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:e9:d4:ab:d4:f9:30:c6:54:af:16:1a:d7:29:62:8a:2b:fa:
         9d:eb:a0:29:f2:b0:f0:c3:ee:c8:9a:9b:55:84:ac:d8:66:10:
         89:19:e5:2c:b8:4b:fd:d0:83:3d:7f:7a:fc:3b:43:bc:fe:c9:
         4b:a4:4f:6a:cb:55:11:1b:44:17:f5:f5:e7:0a:bc:fa:b3:f3:
         34:ab:a9:60:51:0a:cd:a4:d2:08:2b:db:8c:29:19:1b:1b:60:
         ea:5f:05:cb:6a:f3:67:55:5b:9f:3f:9b:56:3a:78:a0:9e:e8:
         cf:f6:b0:5e:bf:a3:0a:7b:55:9b:f6:11:3f:7c:37:a2:f6:1b:
         57:04:cc:d7:f3:ba:f7:fc:55:ac:dd:89:5a:0d:98:71:d8:b8:
         dd:e2:cd:c2:e4:b7:50:ac:c8:78:7e:5b:cb:fd:17:64:af:2f:
         89:43:20:0b:ad:2e:fc:de:d4:79:c8:23:52:bf:c4:78:f9:c8:
         34:3a:42:de:59:0a:2e:58:24:0c:8a:5f:4d:a2:3d:cd:dc:80:
         a9:76:13:ba:20:c1:43:ee:e4:99:34:23:d1:2c:39:db:f6:ea:
         8f:2b:ca:65:1e:34:81:10:71:93:88:17:fd:4c:47:e4:d0:82:
         5f:6a:38:44:73:48:39:48:c6:bb:22:69:f0:8e:8d:d2:95:f8:
         ad:b6:31:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----