Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
File:                     ELZc9vpeH8roz4TJcB44vftjqrM.mft (raw, json)
Hash identifier:          uShAGw8GcbAAsRTuEsJ+Y21/Za/Sm3DVovvrBKIGXUk=
Subject key identifier:   2D:78:63:6F:3A:94:3A:54:19:0B:A4:4B:CB:BE:4E:6B:46:17:8D:85
Authority key identifier: 10:B6:5C:F6:FA:5E:1F:CA:E8:CF:84:C9:70:1E:38:BD:FB:63:AA:B3
Certificate issuer:       /CN=10b65cf6fa5e1fcae8cf84c9701e38bdfb63aab3
Certificate serial:       019E30E0F988D09414AB24635F5A36470F01
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
Manifest number:          11BC
Signing time:             Sat 16 May 2026 13:01:50 +0000
Manifest this update:     Sat 16 May 2026 13:01:50 +0000
Manifest next update:     Sun 17 May 2026 13:01:50 +0000
Files and hashes:         1: ELZc9vpeH8roz4TJcB44vftjqrM.crl (hash: LHxHi4EbWJwjR0zLNfxGGWEJFhpVwSGi+FOuENNUn60=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:e0:f9:88:d0:94:14:ab:24:63:5f:5a:36:47:0f:01
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=10b65cf6fa5e1fcae8cf84c9701e38bdfb63aab3
        Validity
            Not Before: May 16 13:01:50 2026 GMT
            Not After : May 17 13:01:50 2026 GMT
        Subject: CN=2d78636f3a943a54190ba44bcbbe4e6b46178d85
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:d7:c1:33:56:eb:e7:19:25:e2:c4:e4:85:67:
                    dd:99:0f:c1:d9:fc:c6:65:6e:2d:b9:94:73:d1:f5:
                    b3:94:6f:da:c5:f9:ef:90:c2:62:20:15:a1:c9:66:
                    71:7a:7c:09:6f:c3:6f:69:9c:ab:a0:07:8b:af:22:
                    56:ce:a5:e0:b1:8a:6e:02:37:d3:eb:61:52:e1:99:
                    81:a2:90:82:44:74:2d:f8:ac:80:1f:99:61:42:f4:
                    1e:30:b2:fa:06:12:2b:74:ea:9e:f7:a6:f6:8d:ec:
                    14:62:b2:a8:a6:92:7c:6b:aa:ea:b5:60:75:57:a0:
                    d7:41:2f:ac:32:2e:25:a8:81:6f:e1:7d:70:b2:21:
                    ba:3e:3e:ca:2a:ce:82:a0:c4:30:d1:29:ef:e0:0b:
                    1a:60:5c:09:ce:bb:50:17:49:ed:e6:c5:aa:3f:49:
                    dd:0c:84:9e:ef:a6:63:47:0f:8c:88:bc:47:4e:02:
                    f5:4f:df:90:b2:c2:c5:6f:4f:71:69:15:25:d0:6d:
                    3e:15:ec:8f:2f:8f:fc:d8:88:10:4c:d1:73:c5:4b:
                    6e:6d:72:5f:21:f7:19:9e:0d:03:07:ce:27:2b:8d:
                    96:6d:7f:17:d1:50:4f:89:ff:66:3a:60:58:a2:d5:
                    f2:fa:27:c4:b3:74:2c:f3:84:2e:4f:72:df:70:8d:
                    19:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:78:63:6F:3A:94:3A:54:19:0B:A4:4B:CB:BE:4E:6B:46:17:8D:85
            X509v3 Authority Key Identifier:
                keyid:10:B6:5C:F6:FA:5E:1F:CA:E8:CF:84:C9:70:1E:38:BD:FB:63:AA:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:55:96:89:bf:d3:06:e7:91:34:da:34:d8:05:2b:ef:f5:0c:
         e0:16:65:92:1a:16:71:a5:4c:93:5b:80:07:1d:be:24:ce:1e:
         80:43:99:68:37:a5:c8:dd:f7:ce:7f:59:a9:d2:04:9a:87:37:
         e4:bf:40:59:58:93:65:e2:04:7c:91:40:7c:8b:6a:63:ec:bd:
         85:26:ac:80:0a:79:94:26:af:c7:e1:3b:0e:a7:44:44:aa:7f:
         8b:63:58:ef:2c:c0:4e:72:d9:ce:c8:bf:f7:df:83:eb:e4:f9:
         77:6c:6b:05:8b:7b:39:1f:a9:23:48:75:0d:9f:2f:7b:04:7a:
         5f:02:06:5e:99:54:d4:0f:2f:97:b1:21:e8:96:54:9c:d0:92:
         a6:0c:b5:e8:01:68:7c:1d:f6:a5:0b:37:2d:eb:66:e8:a1:e2:
         c2:24:ec:21:40:f6:6e:7b:9c:c9:20:23:97:20:a1:c1:bb:84:
         df:a1:b1:04:41:5a:14:0b:9e:a8:a0:ea:20:bd:5d:22:b6:5f:
         a3:ab:be:23:75:05:19:66:8a:f0:46:ba:78:5d:3b:de:30:4a:
         8b:a8:8a:47:6f:a1:06:f6:0f:90:37:ff:10:20:2c:51:23:61:
         9a:d6:b0:0f:6c:9a:ad:75:16:3b:6f:6c:fc:0c:db:72:ce:65:
         b4:6f:83:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4w4PmI0JQUqyRjX1o2Rw8BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwYjY1Y2Y2ZmE1ZTFmY2FlOGNmODRjOTcwMWUzOGJkZmI2
M2FhYjMwHhcNMjYwNTE2MTMwMTUwWhcNMjYwNTE3MTMwMTUwWjAzMTEwLwYDVQQD
EygyZDc4NjM2ZjNhOTQzYTU0MTkwYmE0NGJjYmJlNGU2YjQ2MTc4ZDg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqdfBM1br5xkl4sTkhWfdmQ/B2fzG
ZW4tuZRz0fWzlG/axfnvkMJiIBWhyWZxenwJb8NvaZyroAeLryJWzqXgsYpuAjfT
62FS4ZmBopCCRHQt+KyAH5lhQvQeMLL6BhIrdOqe96b2jewUYrKoppJ8a6rqtWB1
V6DXQS+sMi4lqIFv4X1wsiG6Pj7KKs6CoMQw0Snv4AsaYFwJzrtQF0nt5sWqP0nd
DISe76ZjRw+MiLxHTgL1T9+QssLFb09xaRUl0G0+FeyPL4/82IgQTNFzxUtubXJf
IfcZng0DB84nK42WbX8X0VBPif9mOmBYotXy+ifEs3Qs84QuT3LfcI0Z4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC14Y286lDpUGQukS8u+TmtGF42FMB8GA1UdIwQY
MBaAFBC2XPb6Xh/K6M+EyXAeOL37Y6qzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRUxaYzl2cGVIOHJvejRUSmNCNDR2ZnRqcXJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS84MDkwYzItODE4MC00ZjNmLTgxNDIt
YTIzODU1ODcyYjg2LzEvRUxaYzl2cGVIOHJvejRUSmNCNDR2ZnRqcXJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS84MDkwYzItODE4MC00ZjNmLTgxNDItYTIzODU1ODcyYjg2
LzEvRUxaYzl2cGVIOHJvejRUSmNCNDR2ZnRqcXJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADFWWib/T
BueRNNo02AUr7/UM4BZlkhoWcaVMk1uABx2+JM4egEOZaDelyN33zn9ZqdIEmoc3
5L9AWViTZeIEfJFAfItqY+y9hSasgAp5lCavx+E7DqdERKp/i2NY7yzATnLZzsi/
99+D6+T5d2xrBYt7OR+pI0h1DZ8vewR6XwIGXplU1A8vl7Eh6JZUnNCSpgy16AFo
fB32pQs3Letm6KHiwiTsIUD2bnucySAjlyChwbuE36GxBEFaFAueqKDqIL1dIrZf
o6u+I3UFGWaK8Ea6eF073jBKi6iKR2+hBvYPkDf/ECAsUSNhmtawD2yarXUWO29s
/Azbcs5ltG+Dog==
-----END CERTIFICATE-----