Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
File:                     9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft (raw, json)
Hash identifier:          WzbPSah3hYAY//0xAUvBnGXR1MPar5rTD84ePGOUjrI=
Subject key identifier:   66:30:F3:C2:72:E1:D9:AF:33:D0:D2:27:10:CD:8F:0C:C0:23:D2:6E
Authority key identifier: F6:56:FA:18:B1:19:C3:A4:9C:BB:CC:56:A6:04:57:43:9A:44:92:CE
Certificate issuer:       /CN=f656fa18b119c3a49cbbcc56a60457439a4492ce
Certificate serial:       019F17C29F61F43032B51DDA8F4996327757
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
Manifest number:          1913
Signing time:             Tue 30 Jun 2026 09:00:58 +0000
Manifest this update:     Tue 30 Jun 2026 09:00:58 +0000
Manifest next update:     Wed 01 Jul 2026 09:00:58 +0000
Files and hashes:         1: 9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl (hash: mYYDZZzgcHjjWMXYMBJJwDmvAhDFL/zn5VPMR4GvRdA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 09:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:c2:9f:61:f4:30:32:b5:1d:da:8f:49:96:32:77:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f656fa18b119c3a49cbbcc56a60457439a4492ce
        Validity
            Not Before: Jun 30 09:00:58 2026 GMT
            Not After : Jul  1 09:00:58 2026 GMT
        Subject: CN=6630f3c272e1d9af33d0d22710cd8f0cc023d26e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:c1:df:28:73:f6:73:72:a9:2a:04:a9:d9:b4:
                    95:23:0c:cf:dc:9c:3e:a2:95:25:6c:8d:b6:c3:8b:
                    dd:44:d8:b1:ad:55:6a:8c:cd:20:3c:e4:08:91:a0:
                    14:c8:19:30:c3:e9:b4:f3:02:48:95:0e:f8:50:44:
                    d0:a6:2e:de:0b:b6:80:95:b6:3b:dd:01:d3:7f:10:
                    dc:a3:14:10:33:64:ea:24:ca:ad:9a:a0:a4:d5:f6:
                    5c:2d:70:d3:02:f4:44:ec:0f:6b:cd:4b:85:09:01:
                    01:a2:e8:f5:a4:a2:ee:32:ab:86:59:30:00:b5:5e:
                    d0:de:59:0c:b4:74:d3:81:d4:55:a0:a9:d2:e0:ab:
                    c1:e9:56:9e:9e:3e:36:50:25:66:16:ee:a2:a8:5d:
                    98:63:d1:97:e7:50:6c:fd:39:f3:1a:64:f1:84:d3:
                    ea:3a:51:bb:83:16:3f:3d:ad:2c:d2:67:d3:cb:87:
                    1b:0a:45:ca:bf:8a:c2:09:39:6a:50:69:c2:87:0d:
                    e8:c6:64:1a:8b:e8:cc:b4:c9:3d:dc:c3:b5:1a:6d:
                    09:03:7e:e4:4f:6f:15:02:2a:5f:f7:35:fd:28:c7:
                    d5:d2:71:1d:66:90:a7:26:12:e4:5f:4c:8f:09:39:
                    48:76:04:04:e8:01:a4:09:8b:5f:16:0f:1e:59:f2:
                    97:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                66:30:F3:C2:72:E1:D9:AF:33:D0:D2:27:10:CD:8F:0C:C0:23:D2:6E
            X509v3 Authority Key Identifier:
                keyid:F6:56:FA:18:B1:19:C3:A4:9C:BB:CC:56:A6:04:57:43:9A:44:92:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lb6GLEZw6Scu8xWpgRXQ5pEks4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f2d3a2-b14a-411a-8629-c920f1646c9c/1/9lb6GLEZw6Scu8xWpgRXQ5pEks4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:cb:75:41:73:1a:8f:04:07:28:24:f1:6b:20:69:2d:f1:62:
         6b:1c:cc:24:c2:18:14:c9:83:cd:57:3d:c9:e8:3b:fd:b5:01:
         79:9b:6f:e1:d3:4a:8d:59:5e:9d:b5:ab:f9:d2:dc:29:f1:28:
         d8:42:8a:24:33:1d:78:25:c9:01:8c:88:76:06:6a:fd:20:6f:
         12:72:67:49:63:28:f5:27:43:df:4f:5d:1a:de:f7:ad:9d:39:
         27:e4:96:d2:48:92:6c:4f:ca:cb:d6:82:40:77:69:7b:bd:7a:
         82:f5:35:3e:95:14:31:33:20:63:b0:92:89:cc:e1:3e:96:a1:
         53:dd:0c:68:a1:01:24:26:8a:17:db:42:a9:fa:61:f6:41:ce:
         e2:61:df:47:d5:26:82:e1:3c:fb:7e:6c:4a:63:fe:62:8b:f2:
         c4:ab:c2:67:72:2a:9d:c9:fa:ad:f3:c4:71:2a:1a:e3:d7:77:
         fd:f5:68:de:0d:5d:3c:48:67:32:bd:e3:d8:0e:de:ff:27:24:
         c9:3c:42:9c:0a:b6:5e:93:bd:3c:66:25:6e:a2:ed:db:c0:4b:
         4a:7d:a5:6f:63:0b:a0:67:cc:65:41:d9:22:9f:4f:21:00:31:
         a9:06:69:97:b4:74:b5:61:bd:41:86:c4:3f:ff:2d:51:51:ae:
         86:f0:e1:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----