Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft
File:                     Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft (raw, json)
Hash identifier:          l5raA7CZgnp3TmdX1FQRau9WH4RBEgDtaSjhLc78ObI=
Subject key identifier:   9A:E4:79:78:C3:7C:0D:09:38:8A:9E:DE:2E:66:34:3B:2A:03:65:98
Authority key identifier: 0E:29:A4:82:DE:0D:56:74:6C:30:45:26:9F:99:20:52:04:F9:54:84
Certificate issuer:       /CN=0e29a482de0d56746c3045269f99205204f95484
Certificate serial:       019E3184FD43405DC92562E0FACCA4E54B82
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft
Manifest number:          14B6
Signing time:             Sat 16 May 2026 16:00:59 +0000
Manifest this update:     Sat 16 May 2026 16:00:59 +0000
Manifest next update:     Sun 17 May 2026 16:00:59 +0000
Files and hashes:         1: Dimkgt4NVnRsMEUmn5kgUgT5VIQ.crl (hash: Q37WEe3+Zws+I8oNWjjyUaM/namVfBH+IKvXWs0gh+U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:31:84:fd:43:40:5d:c9:25:62:e0:fa:cc:a4:e5:4b:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0e29a482de0d56746c3045269f99205204f95484
        Validity
            Not Before: May 16 16:00:59 2026 GMT
            Not After : May 17 16:00:59 2026 GMT
        Subject: CN=9ae47978c37c0d09388a9ede2e66343b2a036598
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:ac:71:c9:02:02:2c:27:38:65:9e:35:03:4e:
                    76:74:f3:c3:19:d8:1c:01:e2:0b:6b:73:2f:ef:e7:
                    7d:91:ef:81:b1:92:02:a2:1f:60:36:ee:a8:e8:91:
                    d1:dd:59:ac:85:0b:56:5b:5b:01:0d:54:7f:56:f5:
                    c3:87:cf:84:99:b5:83:6b:ac:73:89:50:53:1f:d6:
                    5e:15:d9:a6:58:08:24:96:f3:7b:52:9d:c6:08:ed:
                    1a:c5:5a:f1:ec:f8:ad:1c:91:ec:df:51:0f:02:91:
                    41:58:b4:99:0d:94:50:a2:85:7f:ec:f7:7b:86:e8:
                    e5:7b:5f:ce:78:f3:1c:2c:fe:fa:72:40:fd:d3:5a:
                    ac:00:54:3a:d9:56:9e:8f:29:8c:03:a0:af:98:e8:
                    7f:e9:8b:6b:0f:d4:ba:57:47:76:9e:98:17:a8:52:
                    3a:4c:e0:f8:12:41:b9:29:87:a3:05:3d:05:85:0d:
                    33:e8:f4:a0:ef:e1:8b:c7:bb:e3:fe:9d:df:bd:e4:
                    df:f8:a0:5f:0b:52:8f:69:6e:98:49:22:c6:5f:cd:
                    90:fc:d5:22:6c:97:ec:31:1f:8e:fe:95:72:6e:38:
                    a9:85:c4:46:3d:20:9a:f1:97:e5:0f:0e:ed:a0:8b:
                    90:4f:96:d6:37:bf:c6:08:05:03:bf:de:39:9b:3c:
                    55:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9A:E4:79:78:C3:7C:0D:09:38:8A:9E:DE:2E:66:34:3B:2A:03:65:98
            X509v3 Authority Key Identifier:
                keyid:0E:29:A4:82:DE:0D:56:74:6C:30:45:26:9F:99:20:52:04:F9:54:84

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:87:27:aa:db:ef:49:df:18:e1:13:c8:d8:97:9d:e4:a7:90:
         8c:3a:31:9f:c3:18:d3:07:df:05:cf:37:70:1a:1e:29:f1:24:
         06:47:2e:16:0f:a1:69:34:6f:49:c2:0f:55:a0:cf:98:d9:48:
         bf:ad:f5:37:0d:87:35:38:50:d1:09:c8:f7:fa:8d:ef:10:0e:
         7c:39:8b:75:df:f6:64:89:de:f2:8c:ee:f3:3a:33:4b:22:ac:
         95:08:f5:1a:12:31:99:72:af:0c:53:49:64:8c:d9:1f:d0:a6:
         d7:69:06:f4:8e:57:17:ab:00:47:1a:aa:ee:0a:00:e1:ba:13:
         bb:dc:72:8a:8d:ea:83:4a:80:9f:ea:f8:7d:f8:81:5f:7c:09:
         a6:1f:75:83:7b:1f:07:75:3c:bb:af:a3:a5:8a:0c:39:02:2e:
         7d:28:93:03:5b:d5:75:f6:42:8f:ac:5d:d1:92:42:4d:3f:93:
         bb:70:9d:77:7d:03:71:d8:5c:60:d1:2a:a3:16:3f:cf:7c:76:
         3d:6f:38:a1:9a:2d:07:7f:ac:00:17:17:44:56:91:93:66:cb:
         82:39:08:5c:f7:38:a6:21:07:d2:b0:a4:87:b9:ca:90:af:05:
         2b:16:f9:e6:51:99:30:af:00:e5:18:81:ea:aa:6c:ec:fe:8f:
         e2:c5:85:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----