Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft
File:                     EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft (raw, json)
Hash identifier:          e1HrUR7zM/MntVIpsLCgM1zx+jKSVu+8ZVGDcw76lv8=
Subject key identifier:   A7:71:8C:CF:0D:D2:56:4D:B7:79:6D:AF:33:33:1B:B3:2D:0E:B2:4F
Authority key identifier: 10:79:7E:B5:F9:AA:9A:BE:52:00:8C:E7:F2:1A:B4:4A:FD:EE:A0:D0
Certificate issuer:       /CN=10797eb5f9aa9abe52008ce7f21ab44afdeea0d0
Certificate serial:       019F17C2564599148EF58A2FA0CB738330AB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft
Manifest number:          1983
Signing time:             Tue 30 Jun 2026 09:00:39 +0000
Manifest this update:     Tue 30 Jun 2026 09:00:39 +0000
Manifest next update:     Wed 01 Jul 2026 09:00:39 +0000
Files and hashes:         1: EHl-tfmqmr5SAIzn8hq0Sv3uoNA.crl (hash: SwSy0ErFqpifLbJ+plZjC9vkPHVEJ9aOWNxFu0OpK8E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 09:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:c2:56:45:99:14:8e:f5:8a:2f:a0:cb:73:83:30:ab
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=10797eb5f9aa9abe52008ce7f21ab44afdeea0d0
        Validity
            Not Before: Jun 30 09:00:39 2026 GMT
            Not After : Jul  1 09:00:39 2026 GMT
        Subject: CN=a7718ccf0dd2564db7796daf33331bb32d0eb24f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:2f:c3:93:7d:64:2c:cc:90:2d:01:b8:b1:ec:
                    eb:98:2f:66:37:4e:a9:12:24:5a:ca:d0:35:51:e3:
                    b8:c0:8e:32:24:2b:3e:04:c7:62:c9:97:ec:83:c0:
                    b4:f0:0f:80:2d:f3:87:6b:b6:fc:94:dd:28:41:a0:
                    64:ab:1c:23:25:60:63:ed:c8:58:24:6d:ef:ee:5f:
                    b2:d2:1e:b1:ee:35:a0:fb:1d:38:ef:90:02:02:dc:
                    c0:44:70:a7:11:0b:3a:e5:37:d1:c0:17:b6:f5:ee:
                    ec:6c:3f:6f:db:86:79:c7:79:c6:59:1d:4b:d5:04:
                    19:ef:44:b3:fe:7d:5d:bc:5f:6b:13:85:fb:4e:e1:
                    17:7e:48:26:54:b4:05:e6:c6:f0:a8:f4:da:87:7d:
                    56:68:d1:14:af:49:e5:1a:65:57:bf:df:38:87:70:
                    32:c4:1b:89:f6:75:60:36:2b:96:f4:e1:91:f4:2c:
                    31:65:bf:2e:ad:ec:60:f7:88:8f:5d:2a:e7:c1:7e:
                    97:19:24:dd:22:a2:ab:0f:9f:2c:91:27:fc:1b:d3:
                    e4:80:f9:4c:65:eb:a8:ea:f5:69:b4:9c:cb:72:ca:
                    30:ad:ae:2f:70:12:60:4d:54:bc:f8:81:b9:2b:a1:
                    75:40:0f:ca:05:2f:e8:a3:8e:0b:c9:9b:4c:47:24:
                    43:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A7:71:8C:CF:0D:D2:56:4D:B7:79:6D:AF:33:33:1B:B3:2D:0E:B2:4F
            X509v3 Authority Key Identifier:
                keyid:10:79:7E:B5:F9:AA:9A:BE:52:00:8C:E7:F2:1A:B4:4A:FD:EE:A0:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f5c8a3-e5ca-41ae-af8a-8db708347438/1/EHl-tfmqmr5SAIzn8hq0Sv3uoNA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a6:3e:70:79:e3:10:e5:a7:46:99:07:36:a4:a5:bb:73:ac:70:
         b8:a3:0d:d5:ef:c2:c7:a6:44:15:44:88:99:2c:47:4f:63:c0:
         15:45:63:9b:1e:53:65:72:35:dd:e0:9a:e4:bd:35:8d:f2:06:
         98:cf:8a:0f:b1:14:9a:54:61:87:28:8e:8a:f8:33:30:8a:c7:
         99:0a:b0:d0:5f:05:47:a9:5e:3e:23:05:63:59:a3:36:7c:8a:
         00:4d:c3:b0:ad:f5:8b:13:30:7c:e6:ff:54:bf:2b:a2:67:75:
         69:7b:be:82:ac:42:95:55:1c:fc:b2:c2:e3:fb:66:08:98:f4:
         68:94:d3:ad:88:e8:d6:3b:40:6d:3e:2a:3a:38:41:98:8f:13:
         60:be:59:7f:48:39:9f:a1:80:77:3d:fd:59:92:c6:00:ef:01:
         82:5b:e8:e9:40:f7:cd:1a:01:20:b4:61:b5:78:7a:7c:b8:01:
         e1:f9:f3:2c:da:54:d5:10:d8:36:0e:c1:88:de:f2:85:40:21:
         90:f5:26:34:9b:84:fc:90:b8:d5:27:92:ef:23:a1:f7:a8:67:
         cb:8d:7f:6c:76:53:c4:54:f3:61:96:21:76:1e:28:ab:0c:cd:
         6f:fa:9f:dc:a9:01:36:b9:45:98:33:89:4d:74:99:6f:d3:74:
         34:d3:ff:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----