Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft
File:                     2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft (raw, json)
Hash identifier:          6ubi2fHpdExFLc70FLXsXcW+PqTrknB/6bQTk6ANDwg=
Subject key identifier:   B7:E8:00:66:85:94:FA:91:0A:E3:78:15:81:6F:AB:AB:EE:71:EF:7B
Authority key identifier: D9:D7:2B:03:3F:F6:FA:38:BF:23:61:39:AC:DB:77:A7:A0:A0:47:A3
Certificate issuer:       /CN=d9d72b033ff6fa38bf236139acdb77a7a0a047a3
Certificate serial:       019E2F97836CEB1F0E6C8C0AA17D59E9655B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2dcrAz_2-ji_I2E5rNt3p6CgR6M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft
Manifest number:          190C
Signing time:             Sat 16 May 2026 07:01:59 +0000
Manifest this update:     Sat 16 May 2026 07:01:59 +0000
Manifest next update:     Sun 17 May 2026 07:01:59 +0000
Files and hashes:         1: 2dcrAz_2-ji_I2E5rNt3p6CgR6M.crl (hash: 40E+CSvFpWcPU7gSZvDSucIcDOkL6jXaZMNlCIO11Uc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2dcrAz_2-ji_I2E5rNt3p6CgR6M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:01:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:97:83:6c:eb:1f:0e:6c:8c:0a:a1:7d:59:e9:65:5b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d9d72b033ff6fa38bf236139acdb77a7a0a047a3
        Validity
            Not Before: May 16 07:01:59 2026 GMT
            Not After : May 17 07:01:59 2026 GMT
        Subject: CN=b7e800668594fa910ae37815816fababee71ef7b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:cd:d7:6c:2e:7b:e3:32:a7:5b:d6:56:51:a1:
                    df:b1:c0:a3:52:49:80:4f:81:95:32:5a:52:4d:03:
                    1f:41:c1:40:16:20:d2:61:e4:31:26:69:46:9f:09:
                    9b:f5:d5:aa:81:4b:96:b5:6a:93:74:d1:90:b5:1f:
                    c6:b7:32:03:91:dd:7d:b8:06:61:14:cc:e0:53:21:
                    64:2b:9e:04:91:41:ca:35:f1:1a:b2:7a:ce:8c:c9:
                    85:09:08:cc:ae:5c:9d:74:07:46:b0:bc:95:5a:40:
                    4b:2a:5b:9e:1a:15:aa:44:ba:79:b0:81:21:ec:5f:
                    8f:50:6f:30:a2:5d:8c:c7:ed:2a:08:6e:05:ed:ba:
                    2c:03:0b:49:02:6f:9e:41:f2:73:bd:da:e1:3a:b9:
                    fd:67:d4:d2:54:47:f5:38:3d:f6:3f:53:ea:62:44:
                    6f:ed:ab:41:00:e0:d7:d9:47:a7:7c:ec:a1:5a:7c:
                    a4:c3:e9:c5:6c:27:82:42:3a:ec:9c:75:88:aa:9e:
                    5e:f0:2c:51:65:17:ec:57:b0:06:00:c9:cf:21:4e:
                    bb:4e:d2:cc:3d:8a:f5:03:5e:1a:17:e6:4e:5b:10:
                    bb:bf:16:fa:aa:8c:15:e8:3d:c2:37:a4:dc:aa:db:
                    0a:f9:2a:c4:44:c0:1a:48:8d:da:aa:5e:42:ff:2c:
                    e6:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:E8:00:66:85:94:FA:91:0A:E3:78:15:81:6F:AB:AB:EE:71:EF:7B
            X509v3 Authority Key Identifier:
                keyid:D9:D7:2B:03:3F:F6:FA:38:BF:23:61:39:AC:DB:77:A7:A0:A0:47:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dcrAz_2-ji_I2E5rNt3p6CgR6M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4cbaf7-b83b-4798-ab36-f821a5a5cf6a/1/2dcrAz_2-ji_I2E5rNt3p6CgR6M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:a0:38:a3:53:9a:04:36:91:63:f0:95:e8:a4:b0:b1:8c:c7:
         32:36:de:27:6c:2e:2f:bf:80:e6:a8:28:38:cf:93:07:d8:1f:
         39:e4:f2:95:05:6e:e7:c4:bf:44:97:73:79:59:b1:bb:f4:ae:
         71:91:d0:0b:15:d5:d6:57:a2:06:ad:0f:67:7a:68:32:81:1e:
         2d:48:8c:4e:de:21:05:67:ab:6e:92:d2:f5:59:9d:19:6b:fb:
         53:7c:0f:9b:a1:ec:3d:0c:79:42:91:77:cc:ec:07:e5:b3:63:
         7a:d6:08:c5:eb:81:8b:d2:0a:7a:a1:ff:57:25:2c:cf:8c:34:
         a4:81:9c:ca:cd:a9:11:72:0f:57:b1:11:a9:f6:10:f7:8b:33:
         25:8b:e7:ea:ec:b6:0d:e8:5a:aa:c0:76:9d:c4:d8:5a:dc:16:
         db:20:3d:03:7a:cf:60:60:a1:ac:f6:49:47:90:a7:df:eb:c8:
         25:ce:cf:db:17:0e:41:1e:a9:79:04:79:70:52:88:3e:92:6a:
         9b:37:a6:5c:de:78:17:7c:50:f9:af:60:77:bd:e5:01:71:a0:
         ca:b3:5f:24:72:0f:2c:dc:d2:bb:24:ba:be:77:05:3b:16:9b:
         de:da:42:9b:ff:41:fb:a9:4c:31:38:58:e2:ea:ae:31:86:b6:
         22:31:10:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----