Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
File:                     1bFX6mgu908PHvZ_oekWDRfNLpM.mft (raw, json)
Hash identifier:          d4qce6WlO5yvvhniDnBBVD1AQKf4CYMBVupjLY8HBjA=
Subject key identifier:   46:C6:94:24:F6:B5:9E:FE:CD:D2:D9:71:71:28:89:E7:7C:12:71:7C
Authority key identifier: D5:B1:57:EA:68:2E:F7:4F:0F:1E:F6:7F:A1:E9:16:0D:17:CD:2E:93
Certificate issuer:       /CN=d5b157ea682ef74f0f1ef67fa1e9160d17cd2e93
Certificate serial:       019E2F970C836CECF7E22C8BCD050F7CBB51
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
Manifest number:          1911
Signing time:             Sat 16 May 2026 07:01:28 +0000
Manifest this update:     Sat 16 May 2026 07:01:28 +0000
Manifest next update:     Sun 17 May 2026 07:01:28 +0000
Files and hashes:         1: 1bFX6mgu908PHvZ_oekWDRfNLpM.crl (hash: abWDqjYEqkGfYGGPzS6UpShvA3zngFoxEgIaZHs5oBY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:01:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:97:0c:83:6c:ec:f7:e2:2c:8b:cd:05:0f:7c:bb:51
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d5b157ea682ef74f0f1ef67fa1e9160d17cd2e93
        Validity
            Not Before: May 16 07:01:28 2026 GMT
            Not After : May 17 07:01:28 2026 GMT
        Subject: CN=46c69424f6b59efecdd2d971712889e77c12717c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:07:33:43:08:11:a6:59:ab:e4:bd:92:f8:10:
                    d2:b8:bf:6b:56:97:b7:84:c8:e9:0a:e7:f4:1f:d7:
                    b8:0c:f3:44:15:19:29:ca:98:e3:c2:32:6f:92:48:
                    3c:bc:00:79:00:d6:9c:da:96:cf:8c:3b:af:d4:fb:
                    45:22:2a:fc:98:4e:fe:ef:50:32:b2:96:8a:fa:fb:
                    2c:16:ce:25:36:f9:a8:1f:9d:bc:72:c0:dd:da:3c:
                    2f:2b:0d:5b:36:be:bd:18:c7:51:bc:89:f2:34:59:
                    e2:49:67:69:29:a2:93:52:dc:1f:66:83:48:06:cf:
                    c1:9b:e9:75:3a:5b:6c:2a:63:2a:a3:47:33:d2:28:
                    fd:64:48:e4:fa:4a:a0:19:4a:ae:e9:0b:4d:91:ac:
                    37:5f:3d:aa:de:8f:69:4b:63:b1:db:79:bf:ec:67:
                    f7:15:ac:d0:74:f5:4c:8e:0f:59:66:78:95:7d:72:
                    98:4c:e5:4f:3b:53:a6:4f:52:c4:1a:dc:f7:05:69:
                    bf:2e:6d:f2:05:a1:75:f4:5c:d5:68:b3:b9:76:55:
                    43:bb:fc:63:e3:9c:46:f4:18:78:bb:cb:2e:61:0e:
                    72:cb:ce:9b:19:ad:d4:fc:ca:34:c4:bc:73:29:83:
                    c0:b0:10:96:a8:02:80:75:98:75:ac:80:19:b3:07:
                    94:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:C6:94:24:F6:B5:9E:FE:CD:D2:D9:71:71:28:89:E7:7C:12:71:7C
            X509v3 Authority Key Identifier:
                keyid:D5:B1:57:EA:68:2E:F7:4F:0F:1E:F6:7F:A1:E9:16:0D:17:CD:2E:93

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:4b:07:49:e4:64:58:4b:09:46:52:5a:23:63:57:74:30:65:
         b7:b1:dc:f8:bd:92:ff:93:2d:79:31:21:ea:d9:66:1c:1f:dd:
         80:ff:07:47:38:c7:1b:d7:58:1a:1a:96:b2:8d:cf:f8:1a:2f:
         40:80:a3:42:08:9c:c0:55:7d:30:9a:19:09:1f:d1:c1:ed:26:
         6c:54:9e:6a:97:1d:03:c6:7f:b7:16:3b:46:b8:13:0a:c4:17:
         a0:80:cc:dd:07:fb:3d:b6:c0:85:e8:e8:db:d0:cb:05:ed:79:
         c1:7f:c3:24:34:c5:b2:af:77:f1:fd:52:30:72:fd:69:f6:bf:
         33:3e:5e:2f:15:f2:7d:12:75:00:b8:a4:b1:a7:48:97:ad:fc:
         75:f2:c6:33:92:dc:8d:f2:20:a4:ce:d6:7d:2f:43:48:54:d5:
         6b:6c:36:ed:26:14:1f:c6:45:76:07:c2:d0:c5:da:e6:e9:60:
         d5:ac:96:b4:af:f3:e0:ab:4c:50:5b:fe:8f:2b:e1:4e:f3:28:
         d0:7c:f9:6b:ca:51:42:f2:fd:5d:f7:e3:bc:54:5e:7d:96:ed:
         03:21:6c:0c:ed:23:c6:40:ea:d3:16:2d:fd:d7:9c:a8:2a:3f:
         17:52:0f:94:f7:5b:4c:97:17:2c:22:eb:ca:31:a4:41:9b:c9:
         c1:49:ab:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----