Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft
File:                     5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft (raw, json)
Hash identifier:          CBth2nalWOQtu+o+dhFn4v1VZVGZMKetrACOQTp+db0=
Subject key identifier:   6C:A3:FE:D1:8D:53:A2:46:E3:63:E6:68:A5:A2:2D:69:60:AD:F0:C8
Authority key identifier: E5:77:31:EA:85:7B:90:3A:A4:0A:8E:5F:D8:D8:84:46:50:5B:52:33
Certificate issuer:       /CN=e57731ea857b903aa40a8e5fd8d88446505b5233
Certificate serial:       019E303BF1AE6B7C42F17FF691B0D57AEC0F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft
Manifest number:          1911
Signing time:             Sat 16 May 2026 10:01:35 +0000
Manifest this update:     Sat 16 May 2026 10:01:35 +0000
Manifest next update:     Sun 17 May 2026 10:01:35 +0000
Files and hashes:         1: 5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl (hash: DR7xBwa+dzgxDwavNAvmLvbzsoku6b3UmJWLdq3kUXg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 10:01:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:3b:f1:ae:6b:7c:42:f1:7f:f6:91:b0:d5:7a:ec:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e57731ea857b903aa40a8e5fd8d88446505b5233
        Validity
            Not Before: May 16 10:01:35 2026 GMT
            Not After : May 17 10:01:35 2026 GMT
        Subject: CN=6ca3fed18d53a246e363e668a5a22d6960adf0c8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:8a:88:ea:38:21:eb:80:b4:86:8f:5c:9c:23:
                    ef:19:29:4f:fa:80:6e:1b:6a:0c:24:5d:40:3f:80:
                    49:f8:3e:84:37:24:b5:dd:ca:d8:32:43:50:cf:68:
                    3d:c0:b2:7d:dd:e3:7e:f8:e0:5f:24:ff:a2:fc:31:
                    b1:6f:40:9d:4d:4a:9f:ec:77:df:be:0a:98:f1:c4:
                    6b:b0:7e:03:61:3f:6b:72:c3:23:03:90:da:75:66:
                    77:87:f0:f4:61:9a:2e:11:a2:8e:cd:de:d0:d7:3d:
                    dc:ca:ef:f5:21:70:9a:87:3c:6a:ec:2e:01:fe:84:
                    e5:ba:81:cc:5c:49:51:27:6d:e3:13:dd:d1:99:f4:
                    b5:a4:3a:17:29:a7:6c:f6:1b:05:a3:56:f4:c5:b0:
                    97:70:44:3c:f2:d9:95:98:23:57:d2:4a:d4:5d:99:
                    c9:f6:8c:cb:fc:71:eb:c9:0f:59:a5:cc:86:79:d6:
                    44:f0:eb:57:9f:16:02:94:49:d9:05:69:a9:86:44:
                    ff:02:61:4d:25:95:d6:21:e0:a7:a2:e3:3d:22:48:
                    93:55:cb:31:0f:2c:10:33:95:2a:66:a2:c1:06:a5:
                    ea:2d:38:5f:5b:64:1d:9f:63:e1:be:3d:94:bc:1e:
                    2a:44:46:9a:53:63:27:e6:d6:fb:7c:ea:b5:63:ca:
                    04:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:A3:FE:D1:8D:53:A2:46:E3:63:E6:68:A5:A2:2D:69:60:AD:F0:C8
            X509v3 Authority Key Identifier:
                keyid:E5:77:31:EA:85:7B:90:3A:A4:0A:8E:5F:D8:D8:84:46:50:5B:52:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:2b:11:c4:e1:b8:be:b7:09:14:49:1e:8e:6b:bf:44:ec:10:
         e5:d2:31:e8:d4:ea:07:01:c4:c3:49:06:34:f0:5a:59:b7:af:
         7b:62:35:0f:87:03:94:94:50:c8:dc:d9:20:ff:51:13:cc:32:
         55:c1:11:7a:19:b1:71:05:d1:aa:70:92:23:2b:14:be:ae:82:
         11:53:3d:ca:e4:ea:e3:d2:2c:c3:4f:85:0f:a0:dc:94:a5:c9:
         a6:b4:84:f9:5e:e7:a6:70:43:b7:53:9a:11:9d:6b:22:74:b0:
         af:b9:31:3a:f7:49:31:87:74:77:86:73:b5:af:5a:2e:ce:7c:
         3a:7f:57:d3:1f:8b:fe:01:e6:ad:f1:15:31:09:07:4f:4d:e5:
         c8:79:8b:68:36:b4:b3:04:32:14:15:08:39:cc:8c:e0:ac:32:
         c3:63:b1:5f:9b:98:20:2f:f0:44:ba:9e:fa:5b:c6:0c:cf:80:
         c7:6b:e4:31:73:93:58:3c:6e:e2:2f:87:52:0b:55:39:81:86:
         b0:b8:2d:b7:89:01:ee:38:5d:87:8c:ed:57:b1:2c:a3:a9:e1:
         a2:09:a1:d2:4d:bf:7c:00:cb:70:56:77:25:b3:1b:a8:40:28:
         ed:22:9a:25:38:e6:50:49:ac:50:9a:4b:9d:13:4f:79:b4:ae:
         af:62:f6:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----