Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft
File:                     A2loTGfKqZ_8AYS-rMrw6oipISk.mft (raw, json)
Hash identifier:          PgoDtB/20EnKunR1VG0DAwEs0tD77y3F28K/0rNAFcY=
Subject key identifier:   FE:9A:B2:BB:C4:98:5A:A7:01:F0:9C:37:CF:14:CA:04:BB:DC:6A:40
Authority key identifier: 03:69:68:4C:67:CA:A9:9F:FC:01:84:BE:AC:CA:F0:EA:88:A9:21:29
Certificate issuer:       /CN=0369684c67caa99ffc0184beaccaf0ea88a92129
Certificate serial:       019E31F2C2FE0790C99699D3921C489A75F5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A2loTGfKqZ_8AYS-rMrw6oipISk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft
Manifest number:          0BE7
Signing time:             Sat 16 May 2026 18:00:53 +0000
Manifest this update:     Sat 16 May 2026 18:00:53 +0000
Manifest next update:     Sun 17 May 2026 18:00:53 +0000
Files and hashes:         1: A2loTGfKqZ_8AYS-rMrw6oipISk.crl (hash: YR2sL/GKedNY1r1lI+605MJn/bl6Djvax5eIKdK9pl8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A2loTGfKqZ_8AYS-rMrw6oipISk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:31:f2:c2:fe:07:90:c9:96:99:d3:92:1c:48:9a:75:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0369684c67caa99ffc0184beaccaf0ea88a92129
        Validity
            Not Before: May 16 18:00:53 2026 GMT
            Not After : May 17 18:00:53 2026 GMT
        Subject: CN=fe9ab2bbc4985aa701f09c37cf14ca04bbdc6a40
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:a9:23:56:e8:f0:86:b6:37:60:fc:54:71:ea:
                    f3:95:4a:1a:d5:b8:4a:15:8d:17:f5:1a:b6:37:d8:
                    df:7c:8c:b1:af:b4:e7:af:ee:ef:73:1b:5a:fd:7f:
                    c6:a6:de:e6:bd:43:bc:a2:5d:8b:3c:8c:05:06:7b:
                    f2:d3:64:a8:d0:78:b4:7b:30:c5:78:e9:45:96:49:
                    03:aa:c8:48:1c:d1:56:37:9e:62:fd:c4:92:8b:08:
                    1b:3f:ed:91:9e:10:53:43:88:6d:1d:9d:8f:3b:01:
                    3e:cd:03:1f:2d:fb:cf:e7:45:18:df:9d:99:d3:ab:
                    f9:61:d1:f7:d2:6a:f6:3a:63:b3:7b:00:77:c9:45:
                    d9:9f:8a:8f:58:73:4e:e3:05:89:d9:da:46:6d:f1:
                    94:a8:ac:9e:04:cc:de:3f:eb:dc:54:b7:94:72:da:
                    82:ee:4c:6b:37:73:d0:7d:ce:2c:5f:a7:c3:b1:4b:
                    3c:2a:71:12:82:e9:5e:3e:8b:fc:69:e8:05:b4:b8:
                    a8:86:ee:2a:84:da:96:e2:dc:6a:10:05:62:12:ff:
                    e2:89:18:33:dd:57:7a:2c:13:cb:2a:47:2f:a7:54:
                    1a:f6:69:ec:8f:f2:9a:0b:6c:9d:43:bb:a9:3d:83:
                    31:08:2e:8a:38:33:a5:fd:13:dc:03:17:9e:18:8b:
                    a8:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:9A:B2:BB:C4:98:5A:A7:01:F0:9C:37:CF:14:CA:04:BB:DC:6A:40
            X509v3 Authority Key Identifier:
                keyid:03:69:68:4C:67:CA:A9:9F:FC:01:84:BE:AC:CA:F0:EA:88:A9:21:29

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2loTGfKqZ_8AYS-rMrw6oipISk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0b3621-80d3-4796-8735-157562499908/1/A2loTGfKqZ_8AYS-rMrw6oipISk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:08:d0:f6:9e:81:9f:b2:d4:67:d1:40:47:70:6b:36:8e:66:
         1b:e7:3a:14:58:81:e9:07:26:71:a9:e6:b1:f7:a9:24:f2:92:
         83:cd:f8:29:75:d5:f7:99:a7:91:84:5b:ba:e8:86:0a:a2:40:
         11:aa:23:7b:74:3a:6d:da:5e:02:3c:74:73:b1:10:c5:c1:91:
         a4:db:c2:c2:f1:36:31:fc:e2:fb:e0:44:8c:5d:6b:68:2f:44:
         20:2e:87:fa:a2:dd:dd:60:1e:c5:e0:23:61:92:f1:6b:05:96:
         10:55:9f:0e:61:bf:d9:9a:48:f5:1b:72:26:d8:07:94:03:f3:
         d0:b3:bb:ee:92:8e:bd:b1:c5:8e:54:9e:2b:18:8f:22:d5:e8:
         d4:be:cd:90:df:70:3c:03:0e:3f:a5:77:37:ff:01:76:b0:d9:
         ac:fd:8e:3e:1f:3e:35:82:af:e6:ea:c3:4a:9b:a0:cf:d6:f1:
         a8:16:cc:49:a0:61:b3:93:19:fe:87:23:c4:d9:22:5d:26:a2:
         38:a6:a1:7f:18:bc:8e:76:ad:dc:e4:e4:34:a2:65:f3:52:83:
         81:aa:0b:80:c4:44:e2:ef:7c:a5:36:5f:01:36:b2:85:05:8b:
         58:05:24:2e:d1:55:b2:f0:0b:07:0c:90:19:1c:18:e1:55:42:
         2f:fb:d7:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----