Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft
File:                     29B3gCIiIDwWzo6v1Z8LCsHb58M.mft (raw, json)
Hash identifier:          QcjpX0h7VgDJJ00aKDZEBfA4cd+GDp1fc/yJqme67vU=
Subject key identifier:   74:6F:9C:01:91:0F:8F:23:73:D1:79:DC:E4:A5:87:2C:58:27:AD:6F
Authority key identifier: DB:D0:77:80:22:22:20:3C:16:CE:8E:AF:D5:9F:0B:0A:C1:DB:E7:C3
Certificate issuer:       /CN=dbd077802222203c16ce8eafd59f0b0ac1dbe7c3
Certificate serial:       019E3185627B4574873836914FEAEC821B31
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/29B3gCIiIDwWzo6v1Z8LCsHb58M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft
Manifest number:          11C5
Signing time:             Sat 16 May 2026 16:01:25 +0000
Manifest this update:     Sat 16 May 2026 16:01:25 +0000
Manifest next update:     Sun 17 May 2026 16:01:25 +0000
Files and hashes:         1: 29B3gCIiIDwWzo6v1Z8LCsHb58M.crl (hash: Z4bRvP0lowuqCw/lGBNzGlPdpbXsW75+2IWdxa64aZg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/29B3gCIiIDwWzo6v1Z8LCsHb58M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 12:40:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:31:85:62:7b:45:74:87:38:36:91:4f:ea:ec:82:1b:31
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dbd077802222203c16ce8eafd59f0b0ac1dbe7c3
        Validity
            Not Before: May 16 16:01:25 2026 GMT
            Not After : May 17 16:01:25 2026 GMT
        Subject: CN=746f9c01910f8f2373d179dce4a5872c5827ad6f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:7f:92:b9:6e:7d:c9:df:37:ee:8c:e4:41:bf:
                    09:15:2e:92:7d:14:ef:a2:0a:67:53:81:32:15:d4:
                    ec:03:6e:de:d2:ce:87:eb:fe:79:95:2d:dc:cb:e4:
                    92:c3:78:02:60:06:91:aa:30:ea:e2:2e:40:ab:97:
                    75:3e:b8:6a:46:40:e6:7b:34:9f:96:86:fc:14:54:
                    dc:b6:91:0c:da:9b:9a:d0:42:dd:ec:10:1f:fa:e3:
                    5a:24:f7:a3:fe:cf:3c:c8:4f:9b:51:76:ab:c1:5b:
                    74:33:38:99:d4:7b:ce:01:1a:3f:ba:9e:bc:53:26:
                    ce:95:76:e1:bb:29:d0:87:f9:74:e7:08:ac:7b:03:
                    58:ba:1f:d4:46:66:95:dc:a7:62:d1:58:61:11:bd:
                    76:4c:40:ed:f8:b0:3f:0a:e6:d9:90:cf:5f:e7:a8:
                    7d:d2:fb:a3:26:22:2f:6c:cb:8e:0a:75:04:33:b0:
                    14:c7:69:80:ce:4f:55:08:41:f6:8f:dd:b6:5a:9a:
                    44:9f:e3:45:4e:6c:93:39:24:0c:e4:9c:90:e1:56:
                    36:70:05:e7:fd:3d:1c:ad:a6:d2:da:a0:39:c5:76:
                    88:e3:b1:e8:8b:c2:b9:3d:e9:ca:3d:5f:8a:cc:bc:
                    9e:2c:ce:ba:ff:a1:8f:c4:a7:6d:8d:77:52:df:b6:
                    c9:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:6F:9C:01:91:0F:8F:23:73:D1:79:DC:E4:A5:87:2C:58:27:AD:6F
            X509v3 Authority Key Identifier:
                keyid:DB:D0:77:80:22:22:20:3C:16:CE:8E:AF:D5:9F:0B:0A:C1:DB:E7:C3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29B3gCIiIDwWzo6v1Z8LCsHb58M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/5fa094-efa5-4cf7-86b0-5dd94529eeea/1/29B3gCIiIDwWzo6v1Z8LCsHb58M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:96:f4:04:3a:08:72:c0:32:b2:df:66:75:f4:a2:91:80:91:
         50:61:28:66:a4:43:2d:20:fc:c4:4a:f2:98:67:d8:75:17:ad:
         6f:d9:cd:bb:44:51:06:5c:84:9b:b7:8c:d4:43:92:01:81:03:
         e5:4c:94:f3:24:66:8b:7c:ec:b8:e9:42:af:98:38:79:3b:86:
         26:ff:50:94:b8:10:34:98:80:3d:33:03:53:d8:9d:22:2b:c3:
         ee:7f:60:54:23:48:b8:f2:bd:fe:6d:36:15:a7:87:35:ea:e2:
         90:89:79:20:ee:7e:fd:3e:c0:06:8f:d0:c3:83:d5:e6:dc:e1:
         e3:01:4a:55:23:a8:a0:8e:1f:5d:ab:cf:39:d1:6c:69:f9:46:
         f4:55:4b:9a:45:af:66:18:40:a5:0a:8f:05:07:03:7f:1d:c7:
         77:0f:94:09:77:ab:d4:a4:4f:ad:25:6d:7d:58:b5:f9:a8:a0:
         08:6b:a5:e6:05:6d:1c:5d:e6:05:e2:d4:1c:70:a3:d9:0c:b6:
         f1:05:be:75:b0:00:b7:7b:24:63:6a:93:39:83:b6:2f:5f:0d:
         b1:fb:34:47:a8:0c:08:4e:7b:55:33:cc:07:92:be:fe:5c:46:
         81:3b:3f:9a:bf:e2:46:9c:46:d2:2a:82:c4:02:b4:b8:34:a7:
         76:ac:f3:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4xhWJ7RXSHODaRT+rsghsxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiZDA3NzgwMjIyMjIwM2MxNmNlOGVhZmQ1OWYwYjBhYzFk
YmU3YzMwHhcNMjYwNTE2MTYwMTI1WhcNMjYwNTE3MTYwMTI1WjAzMTEwLwYDVQQD
Eyg3NDZmOWMwMTkxMGY4ZjIzNzNkMTc5ZGNlNGE1ODcyYzU4MjdhZDZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsX+SuW59yd837ozkQb8JFS6SfRTv
ogpnU4EyFdTsA27e0s6H6/55lS3cy+SSw3gCYAaRqjDq4i5Aq5d1PrhqRkDmezSf
lob8FFTctpEM2pua0ELd7BAf+uNaJPej/s88yE+bUXarwVt0MziZ1HvOARo/up68
UybOlXbhuynQh/l05wisewNYuh/URmaV3Kdi0VhhEb12TEDt+LA/CubZkM9f56h9
0vujJiIvbMuOCnUEM7AUx2mAzk9VCEH2j922WppEn+NFTmyTOSQM5JyQ4VY2cAXn
/T0crabS2qA5xXaI47Hoi8K5PenKPV+KzLyeLM66/6GPxKdtjXdS37bJLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHRvnAGRD48jc9F53OSlhyxYJ61vMB8GA1UdIwQY
MBaAFNvQd4AiIiA8Fs6Or9WfCwrB2+fDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjlCM2dDSWlJRHdXem82djFaOExDc0hiNThNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS81ZmEwOTQtZWZhNS00Y2Y3LTg2YjAt
NWRkOTQ1MjllZWVhLzEvMjlCM2dDSWlJRHdXem82djFaOExDc0hiNThNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS81ZmEwOTQtZWZhNS00Y2Y3LTg2YjAtNWRkOTQ1MjllZWVh
LzEvMjlCM2dDSWlJRHdXem82djFaOExDc0hiNThNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATpb0BDoI
csAyst9mdfSikYCRUGEoZqRDLSD8xErymGfYdRetb9nNu0RRBlyEm7eM1EOSAYED
5UyU8yRmi3zsuOlCr5g4eTuGJv9QlLgQNJiAPTMDU9idIivD7n9gVCNIuPK9/m02
FaeHNerikIl5IO5+/T7ABo/Qw4PV5tzh4wFKVSOooI4fXavPOdFsaflG9FVLmkWv
ZhhApQqPBQcDfx3Hdw+UCXer1KRPrSVtfVi1+aigCGul5gVtHF3mBeLUHHCj2Qy2
8QW+dbAAt3skY2qTOYO2L18Nsfs0R6gMCE57VTPMB5K+/lxGgTs/mr/iRpxG0iqC
xAK0uDSndqzzwA==
-----END CERTIFICATE-----