Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
File:                     6kHoOY_3zvtSIWNusighJuv-O3g.mft (raw, json)
Hash identifier:          Jwh/jlU3NFN0ycN7F0VSHdJ5ecgyevIEbKmMB3eHwWs=
Subject key identifier:   C4:DF:60:B9:88:E2:48:D2:1F:D7:3C:84:D0:3D:09:4E:F9:A9:01:AB
Authority key identifier: EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78
Certificate issuer:       /CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
Certificate serial:       019E2F96687280CE861B6917EACBA64DC376
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
Manifest number:          055E
Signing time:             Sat 16 May 2026 07:00:46 +0000
Manifest this update:     Sat 16 May 2026 07:00:46 +0000
Manifest next update:     Sun 17 May 2026 07:00:46 +0000
Files and hashes:         1: 6kHoOY_3zvtSIWNusighJuv-O3g.crl (hash: D+WkuhhUH7r8IGFT49ZisZ7tkFlICEq8eZx0GyOfymw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:96:68:72:80:ce:86:1b:69:17:ea:cb:a6:4d:c3:76
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
        Validity
            Not Before: May 16 07:00:46 2026 GMT
            Not After : May 17 07:00:46 2026 GMT
        Subject: CN=c4df60b988e248d21fd73c84d03d094ef9a901ab
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:dc:d9:bd:6b:68:b5:d1:91:58:55:af:b5:75:
                    fe:68:b3:28:70:3a:63:71:15:9b:76:77:b4:a8:02:
                    5c:33:2d:74:71:7d:72:11:92:a6:91:6f:7b:0c:24:
                    d3:e9:a9:3c:0a:7a:9a:7d:cc:c9:a0:cf:ff:c8:5c:
                    9c:42:29:76:a9:cd:28:40:f9:40:3d:ad:cb:04:31:
                    ac:53:98:ec:2e:21:e5:fb:f8:12:1f:22:dc:f3:ab:
                    83:f2:1c:5d:83:ec:bb:bc:fe:63:98:d5:2f:8c:58:
                    57:69:82:04:54:09:42:32:ed:51:3e:c1:eb:d1:e5:
                    b6:ce:fe:6c:d4:ac:3a:f6:91:62:56:8f:cc:7a:0f:
                    17:60:8b:44:eb:19:80:7c:03:bd:95:f4:89:73:ae:
                    0f:38:6b:77:42:40:37:cd:4d:77:30:29:9e:2a:e6:
                    17:2f:ec:23:a6:df:c8:6c:2b:3b:35:eb:63:d4:08:
                    72:35:75:a9:36:cc:2c:c4:6f:75:3f:06:b6:43:0e:
                    7a:b1:b4:f5:30:b3:c3:25:5b:46:78:79:0d:a8:c6:
                    fd:d5:f1:49:48:a6:1e:6b:2d:28:b3:75:f3:c8:fc:
                    82:d9:54:b5:73:c3:a4:af:6d:f5:b0:f1:04:ee:c6:
                    f0:46:ee:aa:78:55:2f:97:67:0c:c9:18:3e:b1:af:
                    b2:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:DF:60:B9:88:E2:48:D2:1F:D7:3C:84:D0:3D:09:4E:F9:A9:01:AB
            X509v3 Authority Key Identifier:
                keyid:EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:c4:36:b7:cc:f3:c1:13:c4:4a:19:fe:a9:3d:bc:6b:fc:d3:
         21:59:22:a5:ff:c9:e2:e5:e3:c7:15:a7:04:a6:31:3a:54:c5:
         c8:0f:3f:80:e2:d8:f9:98:b6:97:1c:c3:85:6d:1b:03:33:f7:
         94:2c:32:29:12:1f:7c:10:11:0b:94:02:69:fb:d1:a6:a6:e6:
         ee:c2:59:73:5e:ab:85:50:21:32:f0:0c:15:fa:92:17:92:f6:
         97:25:ba:4b:b7:82:18:e6:10:cc:3b:e3:4b:01:6d:be:01:10:
         a5:3e:f2:1d:37:d2:50:1f:aa:cb:ba:fe:82:f2:42:b2:90:90:
         2d:04:46:49:13:cc:70:92:c7:93:fb:7f:f9:48:c7:d9:0e:67:
         62:32:83:ac:e8:9d:99:79:9e:9e:b5:7a:54:52:29:4f:ae:4c:
         49:7d:31:9c:bc:46:4e:1a:8e:09:6e:22:b7:a3:3f:cb:e4:31:
         71:7a:0f:60:35:f4:02:d3:7b:16:f6:02:62:b3:46:f7:d7:98:
         c1:cd:75:3e:21:89:2b:ff:92:f1:6e:df:cd:8d:ca:2f:0b:c8:
         69:68:3a:34:35:5a:79:85:a2:05:92:8b:9c:73:e3:1b:0d:cb:
         1c:62:c6:92:0c:e9:3e:ee:17:2e:72:4a:5f:9b:58:ae:65:4b:
         fc:c4:52:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vlmhygM6GG2kX6sumTcN2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhNDFlODM5OGZmN2NlZmI1MjIxNjM2ZWIyMjgyMTI2ZWJm
ZTNiNzgwHhcNMjYwNTE2MDcwMDQ2WhcNMjYwNTE3MDcwMDQ2WjAzMTEwLwYDVQQD
EyhjNGRmNjBiOTg4ZTI0OGQyMWZkNzNjODRkMDNkMDk0ZWY5YTkwMWFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu9zZvWtotdGRWFWvtXX+aLMocDpj
cRWbdne0qAJcMy10cX1yEZKmkW97DCTT6ak8CnqafczJoM//yFycQil2qc0oQPlA
Pa3LBDGsU5jsLiHl+/gSHyLc86uD8hxdg+y7vP5jmNUvjFhXaYIEVAlCMu1RPsHr
0eW2zv5s1Kw69pFiVo/Meg8XYItE6xmAfAO9lfSJc64POGt3QkA3zU13MCmeKuYX
L+wjpt/IbCs7Netj1AhyNXWpNswsxG91Pwa2Qw56sbT1MLPDJVtGeHkNqMb91fFJ
SKYeay0os3XzyPyC2VS1c8Okr231sPEE7sbwRu6qeFUvl2cMyRg+sa+yzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMTfYLmI4kjSH9c8hNA9CU75qQGrMB8GA1UdIwQY
MBaAFOpB6DmP9877UiFjbrIoISbr/jt4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy81M2NiZTgtZjVhNy00MDdkLTg0Y2Ut
NjI4YjQzOTRiODIyLzEvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy81M2NiZTgtZjVhNy00MDdkLTg0Y2UtNjI4YjQzOTRiODIy
LzEvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEMQ2t8zz
wRPEShn+qT28a/zTIVkipf/J4uXjxxWnBKYxOlTFyA8/gOLY+Zi2lxzDhW0bAzP3
lCwyKRIffBARC5QCafvRpqbm7sJZc16rhVAhMvAMFfqSF5L2lyW6S7eCGOYQzDvj
SwFtvgEQpT7yHTfSUB+qy7r+gvJCspCQLQRGSRPMcJLHk/t/+UjH2Q5nYjKDrOid
mXmenrV6VFIpT65MSX0xnLxGThqOCW4it6M/y+QxcXoPYDX0AtN7FvYCYrNG99eY
wc11PiGJK/+S8W7fzY3KLwvIaWg6NDVaeYWiBZKLnHPjGw3LHGLGkgzpPu4XLnJK
X5tYrmVL/MRS/w==
-----END CERTIFICATE-----