Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
File:                     Afp6rPiShM693j1MEkYvxE3rw4Q.mft (raw, json)
Hash identifier:          jC+RAIYZWJAdEnXl1r1VduSMtCi+WhMxfl5Wi+jeQ+8=
Subject key identifier:   26:B1:9E:8B:75:F2:A0:CB:22:49:32:D9:E3:E8:B8:FB:2F:24:17:51
Authority key identifier: 01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84
Certificate issuer:       /CN=01fa7aacf89284cebdde3d4c12462fc44debc384
Certificate serial:       019E30728CD7549ADAB27B39B27046115290
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
Manifest number:          0EAB
Signing time:             Sat 16 May 2026 11:01:13 +0000
Manifest this update:     Sat 16 May 2026 11:01:13 +0000
Manifest next update:     Sun 17 May 2026 11:01:13 +0000
Files and hashes:         1: Afp6rPiShM693j1MEkYvxE3rw4Q.crl (hash: 7Dj24CGO9RDmioOG8j8g2rt716lrmH5OYbDR6eSBpzU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 11:01:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:72:8c:d7:54:9a:da:b2:7b:39:b2:70:46:11:52:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=01fa7aacf89284cebdde3d4c12462fc44debc384
        Validity
            Not Before: May 16 11:01:13 2026 GMT
            Not After : May 17 11:01:13 2026 GMT
        Subject: CN=26b19e8b75f2a0cb224932d9e3e8b8fb2f241751
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:51:9e:7e:71:79:4d:45:fb:27:55:54:60:01:
                    61:5d:4c:5b:92:18:67:d2:37:d6:fa:29:54:ec:a0:
                    69:d5:a2:0c:6b:05:11:45:59:3b:be:79:9f:ae:3d:
                    9e:c0:51:36:f0:fd:63:15:88:1c:27:43:a9:a2:73:
                    3d:d4:3e:7b:5a:33:77:c2:4d:2b:c7:79:b4:95:57:
                    d1:13:7d:02:7e:41:84:8c:08:d5:47:96:c2:13:98:
                    c6:2a:ec:ca:99:db:d8:1e:4e:59:8b:4e:79:07:52:
                    36:09:82:f4:9e:d9:d5:c8:7d:bd:f8:e1:b2:75:c8:
                    b6:b0:86:9b:7e:e9:30:35:14:06:d6:a5:c8:17:a6:
                    e5:0e:37:18:d4:d7:ad:78:ea:99:58:77:50:f8:19:
                    08:a5:e3:c3:1a:ab:56:ad:f9:66:ab:5c:f9:be:82:
                    2c:aa:ca:b3:46:a5:02:46:93:41:84:4a:d2:47:09:
                    65:f6:bd:59:1a:93:29:4b:06:3f:f9:9a:87:25:76:
                    70:e1:9a:1c:80:15:94:1b:ed:1d:96:c2:03:73:73:
                    25:8e:57:28:c4:c2:f7:50:d6:4a:91:1c:c1:9f:be:
                    b9:dd:55:7f:59:12:56:cc:f8:f9:28:03:76:ee:59:
                    2f:1a:e2:aa:47:7f:7b:49:96:6e:0a:75:db:83:b9:
                    f7:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:B1:9E:8B:75:F2:A0:CB:22:49:32:D9:E3:E8:B8:FB:2F:24:17:51
            X509v3 Authority Key Identifier:
                keyid:01:FA:7A:AC:F8:92:84:CE:BD:DE:3D:4C:12:46:2F:C4:4D:EB:C3:84

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Afp6rPiShM693j1MEkYvxE3rw4Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/645e1a-ef72-4922-aa9a-7be43eddf2ca/1/Afp6rPiShM693j1MEkYvxE3rw4Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cd:25:8e:45:ed:29:e3:24:46:66:9f:aa:d3:c0:50:18:f1:f4:
         1b:2c:34:e7:f5:ea:b6:c4:99:7b:23:e2:7e:a7:f3:74:2e:fc:
         ea:0e:2b:99:77:de:f2:58:ff:ef:fd:cc:1a:72:22:d7:48:6c:
         56:38:0c:72:8f:e7:f7:92:23:4f:0e:f0:bf:e8:b2:02:f8:d8:
         3f:c9:2f:77:10:65:43:bd:2f:ee:83:24:29:8a:86:17:1d:a0:
         f2:d8:4e:87:1e:1c:cc:05:5a:8a:e5:9f:41:a9:33:08:f4:57:
         f8:da:cd:7c:db:06:43:39:72:ac:43:51:b6:c3:d2:03:55:c6:
         64:6e:e8:0d:8e:5d:65:29:34:89:47:a4:e1:3a:f1:d6:5b:62:
         e0:75:0b:6a:2f:5f:7e:b5:97:03:4e:19:f2:5b:36:3d:e1:7f:
         a1:b2:98:ac:07:a0:6b:0c:eb:bd:76:1e:c3:eb:a5:43:6b:16:
         39:a4:65:22:67:9c:d6:46:db:d6:36:0b:ff:de:90:00:63:70:
         1e:96:7c:6a:fd:f3:6e:fe:76:00:52:48:56:f0:39:5a:99:e8:
         85:7b:bb:a2:0c:26:43:e9:27:28:0a:39:1b:b4:0d:b3:74:f7:
         6b:7c:73:25:cc:96:63:5b:5a:57:74:df:10:3c:e2:7b:25:85:
         e7:e6:9c:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----