Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft
File:                     02jCohY2GiT97Jfx838uHRIHEIc.mft (raw, json)
Hash identifier:          EWsOid4wDUwIcHZJ7KBwSzBplhOR9liQb9Sb9ufOkTo=
Subject key identifier:   06:21:6F:A1:8A:3A:61:17:6F:09:3E:98:10:AA:28:20:46:51:20:E2
Authority key identifier: D3:68:C2:A2:16:36:1A:24:FD:EC:97:F1:F3:7F:2E:1D:12:07:10:87
Certificate issuer:       /CN=d368c2a216361a24fdec97f1f37f2e1d12071087
Certificate serial:       019F189DDB26E8F1F0DC832DC980E9CCDEAE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft
Manifest number:          1984
Signing time:             Tue 30 Jun 2026 13:00:26 +0000
Manifest this update:     Tue 30 Jun 2026 13:00:26 +0000
Manifest next update:     Wed 01 Jul 2026 13:00:26 +0000
Files and hashes:         1: 02jCohY2GiT97Jfx838uHRIHEIc.crl (hash: kH1jOXjfT8eNBNQgH85HXrgNlUEtNV0ndv4xtaRhR5Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 13:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:18:9d:db:26:e8:f1:f0:dc:83:2d:c9:80:e9:cc:de:ae
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d368c2a216361a24fdec97f1f37f2e1d12071087
        Validity
            Not Before: Jun 30 13:00:26 2026 GMT
            Not After : Jul  1 13:00:26 2026 GMT
        Subject: CN=06216fa18a3a61176f093e9810aa2820465120e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:7c:2e:0a:4d:3f:fb:d7:f3:14:42:ea:55:5a:
                    22:0d:e3:f8:fc:fc:5c:70:2e:44:85:07:e9:36:7b:
                    46:8b:f3:63:07:13:33:1c:02:26:2e:34:ab:bd:1a:
                    69:68:60:5a:cd:36:da:dc:03:64:25:e0:29:77:1e:
                    10:fd:6c:65:3a:88:4c:57:bb:5c:8b:00:57:16:b0:
                    26:bc:86:ff:57:d9:d9:63:af:4a:f7:91:8d:67:a0:
                    f9:1c:c3:4d:0b:51:d9:1c:32:64:2c:66:1a:d9:42:
                    cd:eb:a6:70:1a:4c:9c:c1:73:46:fc:18:ca:73:5e:
                    3d:e5:9c:d1:7a:cd:e1:3c:e7:72:18:d5:f2:a3:a7:
                    7c:a5:5e:cb:16:e6:d8:ec:1f:92:ab:06:e1:d5:5c:
                    4b:a9:75:13:18:1c:63:79:92:81:77:d2:0c:4f:07:
                    f8:73:96:20:f1:17:48:6e:49:b8:da:1a:96:ad:1c:
                    97:f7:11:bc:cd:fe:cf:dd:f9:11:93:40:eb:d3:83:
                    52:f1:f0:be:3b:b2:8a:72:af:ac:f1:77:14:9d:0e:
                    81:5b:8b:f2:17:f4:a9:be:77:dc:b3:aa:28:ad:9a:
                    a7:b7:f3:2e:75:ac:84:2c:ec:a1:bd:c9:1c:55:5b:
                    4b:d2:83:50:84:03:01:e4:b4:79:c1:5b:0a:9b:79:
                    5d:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:21:6F:A1:8A:3A:61:17:6F:09:3E:98:10:AA:28:20:46:51:20:E2
            X509v3 Authority Key Identifier:
                keyid:D3:68:C2:A2:16:36:1A:24:FD:EC:97:F1:F3:7F:2E:1D:12:07:10:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02jCohY2GiT97Jfx838uHRIHEIc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/db/d22edf-fb49-4e01-8fd4-90208e1f3de6/1/02jCohY2GiT97Jfx838uHRIHEIc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:75:64:10:67:e0:d2:ea:e2:52:b5:95:3f:7f:c2:f7:d6:15:
         f9:d1:29:f3:95:20:00:fb:fc:91:fa:dc:5c:67:3b:9b:c6:0a:
         96:86:21:75:a2:54:f4:7a:8b:f9:85:25:c6:6b:dc:74:9a:98:
         2f:0b:69:d0:34:ca:a9:c2:4e:25:95:fd:80:96:3b:f1:70:7e:
         7f:c6:ec:20:dd:56:42:80:ef:e6:f7:27:f2:ff:ed:5e:5c:f7:
         11:6b:7e:74:fb:53:fb:76:9e:02:c7:8d:d9:08:1f:c1:66:9e:
         20:fc:a5:13:e3:a6:a8:96:45:fe:3d:65:09:7d:9e:10:24:0f:
         3f:4c:99:4e:b2:3e:e3:bd:b4:4d:1f:2b:de:54:d4:95:f6:5c:
         8d:d3:cb:08:0b:5c:81:2c:9a:00:e8:2c:90:75:e6:5e:93:32:
         43:4c:73:be:7a:e9:f9:ee:18:c8:23:9b:31:71:4a:db:80:c6:
         44:f8:51:2a:3d:e0:77:36:92:75:7d:6d:7c:4b:83:94:b9:54:
         28:fa:dd:fd:4b:7d:7d:26:cf:d1:1e:fa:32:72:ed:cc:10:b8:
         38:12:5e:4a:7c:36:02:55:0f:14:22:e8:f2:3f:31:b9:7d:ca:
         e3:5f:34:24:28:b7:49:58:4e:ee:83:99:fe:78:3d:04:76:fa:
         6e:d2:f3:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----