Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
File:                     9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft (raw, json)
Hash identifier:          i8+n0EZ+x7ftWjP2hWorK4/bHQ6pLMH6qWPC84oPbxY=
Subject key identifier:   59:3E:7E:5E:7B:A0:41:8A:D6:14:B7:BC:8E:E0:76:DB:7C:09:DD:6F
Authority key identifier: F6:56:FA:18:B1:19:C3:A4:9C:BB:CC:56:A6:04:57:43:9A:44:92:CE
Certificate issuer:       /CN=f656fa18b119c3a49cbbcc56a60457439a4492ce
Certificate serial:       019E3005783B58274B68A59C3BEE9D04D60E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
Manifest number:          189B
Signing time:             Sat 16 May 2026 09:02:05 +0000
Manifest this update:     Sat 16 May 2026 09:02:05 +0000
Manifest next update:     Sun 17 May 2026 09:02:05 +0000
Files and hashes:         1: 9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl (hash: ySQN1G754W5zPCh+F5F1GWa3VEMYB+Ug/+yL8MDCuoY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 09:02:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:05:78:3b:58:27:4b:68:a5:9c:3b:ee:9d:04:d6:0e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f656fa18b119c3a49cbbcc56a60457439a4492ce
        Validity
            Not Before: May 16 09:02:05 2026 GMT
            Not After : May 17 09:02:05 2026 GMT
        Subject: CN=593e7e5e7ba0418ad614b7bc8ee076db7c09dd6f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:f2:54:5f:dc:b2:e8:56:52:67:ec:02:33:6a:
                    c1:50:56:bd:64:c9:d0:63:c2:c8:cd:58:8e:13:54:
                    9e:a9:39:80:de:52:c5:9b:0b:94:61:3f:69:4e:a4:
                    96:b2:c1:9c:0c:56:01:e6:9b:ab:1d:8d:f5:c7:7e:
                    83:3c:0a:ea:3b:de:e3:33:45:f9:7a:92:9c:71:a0:
                    57:4b:ed:b1:ca:d6:ca:90:c3:91:8c:23:e8:9a:82:
                    da:9b:32:ca:b7:fd:6d:87:40:d6:15:ff:41:5d:47:
                    62:6d:76:bc:29:aa:ed:87:1f:b3:a6:01:2f:40:fc:
                    7a:aa:6c:9d:6d:19:33:19:0b:53:48:27:44:43:a3:
                    f7:e8:f6:08:fd:1e:a2:0f:a4:e9:ed:ad:7b:0f:b5:
                    43:a2:29:ab:77:72:68:b8:71:34:37:6b:d4:9f:14:
                    9b:30:9f:05:1a:0e:30:86:7c:b5:e5:98:ae:94:24:
                    d8:43:5c:f7:9f:59:37:5c:97:34:b4:f3:9c:c4:55:
                    8f:ae:e9:71:d9:f0:d7:3f:c1:5e:13:4c:55:c0:0b:
                    53:1b:5d:a7:b8:96:da:0e:5b:4f:bc:2e:a7:01:e3:
                    4b:bb:8b:a0:d4:14:4f:27:23:32:36:bb:cc:a8:4f:
                    b9:0f:5e:41:e0:66:b7:83:b1:9d:30:45:3b:3c:75:
                    1d:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:3E:7E:5E:7B:A0:41:8A:D6:14:B7:BC:8E:E0:76:DB:7C:09:DD:6F
            X509v3 Authority Key Identifier:
                keyid:F6:56:FA:18:B1:19:C3:A4:9C:BB:CC:56:A6:04:57:43:9A:44:92:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:34:03:95:06:9b:dc:29:84:fe:28:87:03:ad:11:d4:dd:20:
         fa:21:f1:59:0a:a5:73:79:07:9e:94:0c:f6:b9:da:32:7f:55:
         1e:33:8c:8f:24:06:e8:b8:1e:4a:22:5b:bc:63:6c:83:16:f1:
         f5:ba:cd:56:0e:de:7b:17:06:5e:ee:31:b4:dd:50:0b:a9:e3:
         f0:56:ea:48:b1:7b:72:25:eb:02:f6:00:7d:e3:4b:56:5a:1d:
         a7:be:ca:55:fb:c3:40:02:78:e6:d2:8a:57:9f:c4:0a:2e:5d:
         45:53:41:cf:2e:79:44:f0:2f:9c:b9:9d:89:91:a5:57:20:ab:
         ac:7b:b7:f9:f3:3a:09:6a:21:b9:a2:7d:05:1e:0a:d5:63:e7:
         44:5f:09:4e:5e:c9:06:53:33:4c:d2:53:05:55:6f:29:96:c8:
         2e:6a:e4:f8:ec:bd:72:45:8e:67:01:91:0b:fd:6e:fa:e4:94:
         2e:f7:02:2a:4f:26:89:6a:c9:19:e8:2f:a9:4e:a0:b7:4c:3f:
         28:62:d8:55:98:c5:d7:63:53:9f:7f:60:83:ac:7f:af:7f:ac:
         68:25:8d:5b:67:91:d5:6d:06:99:71:63:bd:ca:22:36:1d:55:
         5a:0c:de:e2:a5:15:6c:b9:ac:08:65:07:f0:1c:f8:ba:54:47:
         1a:36:84:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4wBXg7WCdLaKWcO+6dBNYOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2NTZmYTE4YjExOWMzYTQ5Y2JiY2M1NmE2MDQ1NzQzOWE0
NDkyY2UwHhcNMjYwNTE2MDkwMjA1WhcNMjYwNTE3MDkwMjA1WjAzMTEwLwYDVQQD
Eyg1OTNlN2U1ZTdiYTA0MThhZDYxNGI3YmM4ZWUwNzZkYjdjMDlkZDZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPJUX9yy6FZSZ+wCM2rBUFa9ZMnQ
Y8LIzViOE1SeqTmA3lLFmwuUYT9pTqSWssGcDFYB5purHY31x36DPArqO97jM0X5
epKccaBXS+2xytbKkMORjCPomoLamzLKt/1th0DWFf9BXUdibXa8Karthx+zpgEv
QPx6qmydbRkzGQtTSCdEQ6P36PYI/R6iD6Tp7a17D7VDoimrd3JouHE0N2vUnxSb
MJ8FGg4whny15ZiulCTYQ1z3n1k3XJc0tPOcxFWPrulx2fDXP8FeE0xVwAtTG12n
uJbaDltPvC6nAeNLu4ug1BRPJyMyNrvMqE+5D15B4Ga3g7GdMEU7PHUdEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFk+fl57oEGK1hS3vI7gdtt8Cd1vMB8GA1UdIwQY
MBaAFPZW+hixGcOknLvMVqYEV0OaRJLOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWxiNkdMRVp3NlNjdTh4V3BnUlhRNXBFa3M0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9mMmQzYTItYjE0YS00MTFhLTg2Mjkt
YzkyMGYxNjQ2YzljLzEvOWxiNkdMRVp3NlNjdTh4V3BnUlhRNXBFa3M0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC9mMmQzYTItYjE0YS00MTFhLTg2MjktYzkyMGYxNjQ2Yzlj
LzEvOWxiNkdMRVp3NlNjdTh4V3BnUlhRNXBFa3M0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQjQDlQab
3CmE/iiHA60R1N0g+iHxWQqlc3kHnpQM9rnaMn9VHjOMjyQG6LgeSiJbvGNsgxbx
9brNVg7eexcGXu4xtN1QC6nj8FbqSLF7ciXrAvYAfeNLVlodp77KVfvDQAJ45tKK
V5/ECi5dRVNBzy55RPAvnLmdiZGlVyCrrHu3+fM6CWohuaJ9BR4K1WPnRF8JTl7J
BlMzTNJTBVVvKZbILmrk+Oy9ckWOZwGRC/1u+uSULvcCKk8miWrJGegvqU6gt0w/
KGLYVZjF12NTn39gg6x/r3+saCWNW2eR1W0GmXFjvcoiNh1VWgze4qUVbLmsCGUH
8Bz4ulRHGjaEWQ==
-----END CERTIFICATE-----