Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
File:                     1bFX6mgu908PHvZ_oekWDRfNLpM.mft (raw, json)
Hash identifier:          ibTPTrQrn9vGzD2of19lOHdbfAUqlR6lXyHd8qavGdY=
Subject key identifier:   F5:6B:32:0A:04:FD:81:DA:C4:70:42:6B:2E:7F:CF:59:92:E1:2B:1D
Authority key identifier: D5:B1:57:EA:68:2E:F7:4F:0F:1E:F6:7F:A1:E9:16:0D:17:CD:2E:93
Certificate issuer:       /CN=d5b157ea682ef74f0f1ef67fa1e9160d17cd2e93
Certificate serial:       019F17550E1A0193944AF75244F48421EF0F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
Manifest number:          1989
Signing time:             Tue 30 Jun 2026 07:01:17 +0000
Manifest this update:     Tue 30 Jun 2026 07:01:17 +0000
Manifest next update:     Wed 01 Jul 2026 07:01:17 +0000
Files and hashes:         1: 1bFX6mgu908PHvZ_oekWDRfNLpM.crl (hash: Q+YZeQeVheMCaXrjTduXtRw4qbM6nztPEt9ssHHLNw8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 07:01:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:55:0e:1a:01:93:94:4a:f7:52:44:f4:84:21:ef:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d5b157ea682ef74f0f1ef67fa1e9160d17cd2e93
        Validity
            Not Before: Jun 30 07:01:17 2026 GMT
            Not After : Jul  1 07:01:17 2026 GMT
        Subject: CN=f56b320a04fd81dac470426b2e7fcf5992e12b1d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:94:f4:c4:e6:39:c3:2b:77:b0:43:96:87:0a:
                    fc:cc:73:65:5a:96:5f:de:59:4c:9a:18:d2:c9:23:
                    76:1a:52:ef:41:60:2b:18:78:22:d8:99:c3:76:4e:
                    71:23:fa:df:e9:1c:d7:57:06:5d:cd:33:06:ee:78:
                    de:6e:24:b4:b8:ed:f5:67:9e:77:3f:6f:6f:24:b1:
                    d3:e2:d9:38:00:1f:cc:14:29:b0:ef:61:01:df:c5:
                    de:85:9f:20:ed:57:28:e5:5d:73:db:10:97:01:48:
                    2a:04:49:db:64:55:16:22:e6:5a:4a:ed:a6:1c:32:
                    60:00:90:03:b2:9a:92:90:87:cb:21:ff:18:c9:87:
                    9f:05:0d:08:63:68:7e:23:94:f5:e6:55:4f:bf:d6:
                    1a:be:20:db:b5:c1:1d:f3:94:17:0d:91:06:a3:f6:
                    39:59:c5:2d:56:aa:d3:b4:93:30:8e:2e:9e:7d:45:
                    1d:db:4a:f3:ed:67:5e:68:2c:51:1e:84:35:d3:05:
                    68:c6:97:98:58:18:60:e6:dd:08:57:e2:9d:a1:8c:
                    67:6a:ef:09:86:a2:fc:af:a5:94:ff:b7:c9:f5:b0:
                    5f:d1:b1:6e:a8:5c:cd:de:07:2f:58:86:fd:db:c8:
                    2d:b4:a6:23:02:4d:01:c6:d6:49:d6:c4:b9:e9:d4:
                    d9:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:6B:32:0A:04:FD:81:DA:C4:70:42:6B:2E:7F:CF:59:92:E1:2B:1D
            X509v3 Authority Key Identifier:
                keyid:D5:B1:57:EA:68:2E:F7:4F:0F:1E:F6:7F:A1:E9:16:0D:17:CD:2E:93

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1b:86:11:59:cf:c4:01:a6:57:3c:74:92:2b:2e:d2:af:79:9a:
         a5:35:db:65:de:9e:30:5c:c6:b6:94:b7:64:39:c1:67:18:b6:
         13:48:d2:2d:97:80:38:09:05:02:ce:59:8d:09:d5:50:43:9d:
         8c:79:16:2a:0f:d0:3d:e2:4e:3c:f0:6f:b8:f3:27:66:24:7c:
         fb:c6:ae:85:8b:1c:2f:ef:b3:b4:a8:1a:4e:86:18:6e:ad:db:
         b0:fb:e2:8a:58:93:39:37:e2:a4:c2:2e:f6:3f:93:12:25:cd:
         6a:1c:27:b5:42:bd:d8:aa:fb:f3:43:20:3b:f0:d6:59:6e:de:
         e6:cc:b4:74:d4:62:88:0f:59:40:a6:69:f7:14:3c:52:1e:86:
         3b:1c:6d:05:7d:3e:92:17:b3:54:eb:37:a6:be:59:1c:84:22:
         fd:f1:b6:ee:89:96:9a:43:b2:60:a2:05:63:62:22:18:ac:95:
         eb:4a:e1:1c:bb:13:a1:b4:9d:6a:4a:f3:a3:d2:53:be:b2:97:
         0b:8c:7d:a6:0e:66:b0:52:80:b1:ec:8b:d5:a5:dd:0f:7f:69:
         3b:29:4d:a5:65:e2:15:a0:7a:19:f2:3a:4a:b6:99:ec:ed:6e:
         a2:1c:0f:a4:56:77:e9:1f:5c:7e:49:78:f2:50:b7:b7:23:5c:
         14:d8:78:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8XVQ4aAZOUSvdSRPSEIe8PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1YjE1N2VhNjgyZWY3NGYwZjFlZjY3ZmExZTkxNjBkMTdj
ZDJlOTMwHhcNMjYwNjMwMDcwMTE3WhcNMjYwNzAxMDcwMTE3WjAzMTEwLwYDVQQD
EyhmNTZiMzIwYTA0ZmQ4MWRhYzQ3MDQyNmIyZTdmY2Y1OTkyZTEyYjFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJT0xOY5wyt3sEOWhwr8zHNlWpZf
3llMmhjSySN2GlLvQWArGHgi2JnDdk5xI/rf6RzXVwZdzTMG7njebiS0uO31Z553
P29vJLHT4tk4AB/MFCmw72EB38XehZ8g7Vco5V1z2xCXAUgqBEnbZFUWIuZaSu2m
HDJgAJADspqSkIfLIf8YyYefBQ0IY2h+I5T15lVPv9YaviDbtcEd85QXDZEGo/Y5
WcUtVqrTtJMwji6efUUd20rz7WdeaCxRHoQ10wVoxpeYWBhg5t0IV+KdoYxnau8J
hqL8r6WU/7fJ9bBf0bFuqFzN3gcvWIb928gttKYjAk0BxtZJ1sS56dTZPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPVrMgoE/YHaxHBCay5/z1mS4SsdMB8GA1UdIwQY
MBaAFNWxV+poLvdPDx72f6HpFg0XzS6TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWJGWDZtZ3U5MDhQSHZaX29la1dEUmZOTHBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS9mNzZlOGMtODJiMy00N2Q0LWI0YjYt
MDIxYzllZWMwMDc3LzEvMWJGWDZtZ3U5MDhQSHZaX29la1dEUmZOTHBNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS9mNzZlOGMtODJiMy00N2Q0LWI0YjYtMDIxYzllZWMwMDc3
LzEvMWJGWDZtZ3U5MDhQSHZaX29la1dEUmZOTHBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG4YRWc/E
AaZXPHSSKy7Sr3mapTXbZd6eMFzGtpS3ZDnBZxi2E0jSLZeAOAkFAs5ZjQnVUEOd
jHkWKg/QPeJOPPBvuPMnZiR8+8auhYscL++ztKgaToYYbq3bsPviiliTOTfipMIu
9j+TEiXNahwntUK92Kr780MgO/DWWW7e5sy0dNRiiA9ZQKZp9xQ8Uh6GOxxtBX0+
khezVOs3pr5ZHIQi/fG27omWmkOyYKIFY2IiGKyV60rhHLsTobSdakrzo9JTvrKX
C4x9pg5msFKAseyL1aXdD39pOylNpWXiFaB6GfI6SraZ7O1uohwPpFZ36R9cfkl4
8lC3tyNcFNh4fA==
-----END CERTIFICATE-----