Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft
File:                     BsL3NfcUX3DScCYC7oyBVknrLkU.mft (raw, json)
Hash identifier:          i3bbHx9NsV4M2iRNgh/mXog9h5dWJhO2myVFUC5yn6s=
Subject key identifier:   10:7D:55:19:65:8D:E9:D5:D2:46:0D:49:5D:79:86:E8:F1:BA:5A:B7
Authority key identifier: 06:C2:F7:35:F7:14:5F:70:D2:70:26:02:EE:8C:81:56:49:EB:2E:45
Certificate issuer:       /CN=06c2f735f7145f70d2702602ee8c815649eb2e45
Certificate serial:       019E2F9783DF2A606FEDE32755D611505CC3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BsL3NfcUX3DScCYC7oyBVknrLkU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft
Manifest number:          1343
Signing time:             Sat 16 May 2026 07:01:59 +0000
Manifest this update:     Sat 16 May 2026 07:01:59 +0000
Manifest next update:     Sun 17 May 2026 07:01:59 +0000
Files and hashes:         1: BsL3NfcUX3DScCYC7oyBVknrLkU.crl (hash: XcZvr8khheQ6UtZcanj6jM7oywqMdm7FouNZebjLfX8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BsL3NfcUX3DScCYC7oyBVknrLkU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:01:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:97:83:df:2a:60:6f:ed:e3:27:55:d6:11:50:5c:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=06c2f735f7145f70d2702602ee8c815649eb2e45
        Validity
            Not Before: May 16 07:01:59 2026 GMT
            Not After : May 17 07:01:59 2026 GMT
        Subject: CN=107d5519658de9d5d2460d495d7986e8f1ba5ab7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:b0:94:9e:c6:77:15:b3:b5:3e:33:62:f0:c3:
                    97:0a:28:41:64:05:e4:46:d1:46:dd:73:31:34:d6:
                    bc:1a:39:dd:0d:c2:e6:82:d6:a0:a1:ec:79:9a:9b:
                    6c:27:10:94:62:0e:83:a4:75:ab:cc:6c:36:57:1b:
                    62:90:04:a3:08:b9:f6:1e:6b:08:bc:51:fe:bd:01:
                    98:6c:db:53:fc:cd:68:cf:cc:0b:2c:08:25:53:28:
                    b9:5b:43:ae:e5:82:34:d4:86:06:84:28:56:e0:79:
                    4c:62:36:cf:09:2d:d0:a2:cf:97:16:5d:23:16:59:
                    1c:6a:b2:d3:ab:78:f6:c9:b4:12:c6:51:f8:a3:ae:
                    c0:56:71:93:b3:f4:7d:de:4a:47:fd:64:c0:c2:35:
                    f3:ed:db:38:cd:76:97:76:03:d8:12:b1:34:c4:0c:
                    ec:c1:2c:f3:f4:ab:c8:36:bd:62:fa:5f:7f:46:5f:
                    17:4b:72:2f:1f:e9:76:55:e0:d6:27:02:f2:0f:f6:
                    76:6c:90:c7:e0:57:a4:87:76:35:2a:8a:ff:da:56:
                    88:3e:93:52:96:2d:13:d8:30:50:6a:c9:76:2c:bc:
                    ad:90:20:6a:9e:98:92:12:b3:03:04:df:9c:2b:c1:
                    2b:04:d7:29:b1:ee:d8:60:70:be:55:d2:ee:90:9b:
                    99:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:7D:55:19:65:8D:E9:D5:D2:46:0D:49:5D:79:86:E8:F1:BA:5A:B7
            X509v3 Authority Key Identifier:
                keyid:06:C2:F7:35:F7:14:5F:70:D2:70:26:02:EE:8C:81:56:49:EB:2E:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsL3NfcUX3DScCYC7oyBVknrLkU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:3e:85:dc:dc:66:2e:b7:b5:9b:34:92:1e:9a:55:e4:25:da:
         71:d7:ba:a5:17:48:3f:f5:a6:2f:49:ca:03:4c:90:f3:7e:af:
         aa:3e:05:4c:28:8d:e9:56:17:83:34:e8:5c:47:0a:4a:69:38:
         12:2c:80:21:d7:bb:0d:e1:63:c8:0b:37:f8:66:83:c3:60:63:
         d8:77:9d:4f:74:3c:ba:b7:ec:cf:f5:e2:89:0f:85:17:ad:af:
         5c:dc:e5:3f:a7:03:b6:4e:38:c7:25:06:54:f6:17:92:6b:1f:
         8a:66:e4:9a:f7:0e:68:ad:51:14:ac:0e:74:0b:7d:1d:cf:22:
         57:bd:93:fe:3e:0c:b4:1a:40:d4:59:4b:c3:6a:3d:39:06:0f:
         4d:35:36:f7:be:43:9a:4d:6c:76:05:a4:15:5f:9d:aa:8e:3c:
         7e:99:a8:8b:b8:bb:87:f1:e6:c7:c5:86:0f:ed:26:4f:5d:68:
         2e:19:bc:88:06:1e:16:15:6f:f5:88:fe:14:4a:7b:fe:83:9a:
         b2:a4:9a:ff:c9:5d:b9:fd:94:fe:bb:c0:28:18:a2:95:d6:56:
         b4:da:b4:55:99:56:49:f4:16:b0:a2:9a:e3:38:4d:dc:78:47:
         c2:71:94:d2:89:89:88:85:e7:78:b5:ea:f6:3e:af:10:ee:72:
         de:f2:0e:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----