Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
File:                     2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft (raw, json)
Hash identifier:          i90a/6WawvBfMCZEzEUkFGBwAqeS/c2/F+OJBt57hzs=
Subject key identifier:   DB:49:1C:D4:16:D5:42:89:66:D3:01:47:2A:52:11:93:FC:ED:3A:7B
Authority key identifier: DB:FE:F0:D0:E3:F3:A1:13:43:BB:91:7F:CB:79:33:F4:E9:DA:E4:AD
Certificate issuer:       /CN=dbfef0d0e3f3a11343bb917fcb7933f4e9dae4ad
Certificate serial:       019F1943935271C5A7270E22511740DFC68C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
Manifest number:          0C69
Signing time:             Tue 30 Jun 2026 16:01:26 +0000
Manifest this update:     Tue 30 Jun 2026 16:01:26 +0000
Manifest next update:     Wed 01 Jul 2026 16:01:26 +0000
Files and hashes:         1: 2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl (hash: HSXhl+2l7jOkWd0e8rTRdSPKn2EStRMN5xSG1+MDxN8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 14:31:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:19:43:93:52:71:c5:a7:27:0e:22:51:17:40:df:c6:8c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dbfef0d0e3f3a11343bb917fcb7933f4e9dae4ad
        Validity
            Not Before: Jun 30 16:01:26 2026 GMT
            Not After : Jul  1 16:01:26 2026 GMT
        Subject: CN=db491cd416d5428966d301472a521193fced3a7b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:5e:0a:a2:b5:1a:6e:58:6c:05:b9:39:5b:fe:
                    d7:4e:06:69:b4:ec:c1:5d:ca:cd:cf:7d:4d:4a:d8:
                    14:24:71:93:ac:b0:fe:51:2d:e9:be:89:f8:12:f2:
                    78:e9:64:31:7a:a2:a1:49:61:df:b5:51:50:0a:fb:
                    60:c6:8e:8d:3a:70:27:73:85:cd:94:af:5d:13:3a:
                    68:71:b3:a0:4f:82:d9:db:8c:40:f7:eb:be:12:1e:
                    89:3f:c7:70:3a:46:64:cc:67:2f:f6:40:c5:b1:d2:
                    40:e4:ee:2e:fb:03:b6:32:9f:71:63:5e:dc:bd:30:
                    d6:cf:f4:76:d9:ff:6a:42:7e:f5:9a:c2:15:c0:ff:
                    f3:95:52:75:be:d9:4d:51:fc:2c:44:a4:4e:78:d6:
                    a2:4c:9b:49:f5:1b:bb:f1:bf:4c:89:d1:53:bc:73:
                    f2:42:b0:27:bb:24:da:65:15:93:2d:b3:a0:0c:81:
                    70:7b:df:1e:8a:9b:99:79:87:2f:9f:00:e1:18:16:
                    78:97:93:28:4d:d8:bb:d4:08:47:71:75:71:71:84:
                    33:90:61:7d:56:2c:de:9e:3f:8e:3a:df:83:75:e9:
                    37:ea:86:55:d5:d0:8d:a1:7a:c8:7e:55:cb:b3:f0:
                    e4:aa:9b:17:f4:89:3f:e8:09:f9:45:22:f1:45:86:
                    c6:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:49:1C:D4:16:D5:42:89:66:D3:01:47:2A:52:11:93:FC:ED:3A:7B
            X509v3 Authority Key Identifier:
                keyid:DB:FE:F0:D0:E3:F3:A1:13:43:BB:91:7F:CB:79:33:F4:E9:DA:E4:AD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2_7w0OPzoRNDu5F_y3kz9Ona5K0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/0a8e23-b631-4444-9629-e64c4ec3c919/1/2_7w0OPzoRNDu5F_y3kz9Ona5K0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:0f:fa:36:de:d0:f7:2f:d1:79:01:4c:4a:db:5e:ef:c1:d1:
         59:3c:6b:06:b9:81:4c:db:62:19:2e:fb:9f:a9:04:86:6c:59:
         9f:22:6b:ae:01:46:c4:14:4f:a9:a3:80:5f:95:e4:96:07:d8:
         d0:c0:ac:e0:83:68:4d:f6:8d:38:e4:22:20:aa:01:34:97:05:
         fa:3a:63:5b:77:96:a8:ad:a4:b6:6c:55:92:c2:97:2e:d5:15:
         61:d1:b6:1b:d7:cc:2f:36:ac:5a:be:85:db:4b:e8:3f:81:0b:
         cd:5d:89:6c:3e:f3:4a:da:24:da:87:18:6c:ab:1e:ba:be:26:
         f4:8f:8a:87:e4:70:61:5d:1a:6b:63:b0:9e:15:8e:ba:87:23:
         30:f0:e0:d6:f6:04:b1:4d:7b:53:86:d8:10:16:69:fd:44:a1:
         ea:49:cd:96:0b:fb:ed:ea:7c:6f:7e:46:e1:4e:24:f4:ce:51:
         6c:1b:63:9b:1e:3e:dc:54:f4:cb:3b:54:41:e2:8d:7d:fa:04:
         01:7b:dc:25:83:5d:d8:2a:e7:c0:6e:77:73:99:59:0e:e9:84:
         45:7c:70:aa:ff:f7:82:47:bf:80:02:b0:6e:b7:a7:17:0a:45:
         4b:00:8a:41:56:f7:db:86:63:8f:76:4e:ca:85:68:87:cf:5c:
         6b:ce:cf:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----