Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
File:                     D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft (raw, json)
Hash identifier:          UGg1mpixlerLA/gJaoy1o7CRQvGSR94dAi7Vn74B10A=
Subject key identifier:   D3:47:6E:D7:B2:1C:C7:F5:BE:FB:C0:C0:A4:CC:CE:CE:83:93:B3:C5
Authority key identifier: 0F:79:76:05:20:B7:C1:5C:2E:42:60:30:82:72:B8:49:F8:8E:D6:77
Certificate issuer:       /CN=0f79760520b7c15c2e4260308272b849f88ed677
Certificate serial:       019F178BA8C7DF357BB8356C706A750ED30F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
Manifest number:          1986
Signing time:             Tue 30 Jun 2026 08:00:56 +0000
Manifest this update:     Tue 30 Jun 2026 08:00:56 +0000
Manifest next update:     Wed 01 Jul 2026 08:00:56 +0000
Files and hashes:         1: D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl (hash: 2yXT9Gu+s4O9zIXiHD4ekYNdw1njkwNwB3QFDItIQR0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 08:00:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:8b:a8:c7:df:35:7b:b8:35:6c:70:6a:75:0e:d3:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0f79760520b7c15c2e4260308272b849f88ed677
        Validity
            Not Before: Jun 30 08:00:56 2026 GMT
            Not After : Jul  1 08:00:56 2026 GMT
        Subject: CN=d3476ed7b21cc7f5befbc0c0a4cccece8393b3c5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:72:e5:ae:83:be:43:90:89:e1:3a:72:86:1f:
                    53:bd:6b:bb:6a:7d:66:06:6c:57:07:05:0c:97:a8:
                    9e:00:7b:fe:9a:19:2d:63:37:c2:59:59:5c:a3:e1:
                    3f:ef:24:3d:96:ea:a6:11:a3:ad:2e:8d:76:89:af:
                    d7:81:d4:91:26:08:54:87:33:93:9d:a3:ff:de:88:
                    c0:55:a8:6d:34:88:3f:a1:2c:6e:41:45:a2:db:7e:
                    27:b2:f5:51:20:76:aa:5e:90:72:bb:cb:85:d5:2f:
                    35:9a:60:61:c2:16:63:89:3f:6f:b0:f2:5f:a7:84:
                    9a:87:f2:6c:93:37:74:22:e2:bf:fc:af:94:c0:c2:
                    2a:7a:8d:0d:2e:91:42:c8:f8:51:56:f1:22:ee:c3:
                    5d:bf:cf:2d:ce:b4:20:41:42:f2:56:e5:47:35:3b:
                    c6:ac:a5:b3:3e:a3:ff:f1:1a:41:19:04:9f:c1:59:
                    54:53:71:5d:f8:c8:88:fc:1b:ce:87:8b:90:a7:8d:
                    ca:a1:ba:d9:7f:8a:f1:65:06:e3:a6:b3:fe:4f:a1:
                    13:9c:b5:98:75:dc:62:fc:85:1c:bc:6f:50:10:a3:
                    e2:c1:b4:37:41:fd:b5:47:17:b6:0c:23:cc:27:ab:
                    dc:ad:bb:c5:6a:d7:5f:0f:d5:79:d0:ce:c8:94:4f:
                    c8:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:47:6E:D7:B2:1C:C7:F5:BE:FB:C0:C0:A4:CC:CE:CE:83:93:B3:C5
            X509v3 Authority Key Identifier:
                keyid:0F:79:76:05:20:B7:C1:5C:2E:42:60:30:82:72:B8:49:F8:8E:D6:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3l2BSC3wVwuQmAwgnK4SfiO1nc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/f8474b-5aeb-4058-9f4e-0042425bab1a/1/D3l2BSC3wVwuQmAwgnK4SfiO1nc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1b:69:91:73:ab:a2:59:f7:04:fe:f7:cc:a4:6b:b3:6a:05:1a:
         bf:32:98:21:08:bd:ae:fd:f4:e8:c7:8a:dd:9e:39:06:6f:84:
         fb:ef:75:0b:13:37:da:91:f5:d9:06:55:99:e9:32:f1:9c:e0:
         4a:72:24:a1:67:8d:08:0f:56:da:ae:56:f7:49:e0:2f:62:bc:
         fb:49:68:3a:d6:0c:42:00:c0:aa:2e:38:bb:76:cc:f9:23:12:
         54:60:f1:17:d8:19:68:1f:d5:55:a9:eb:1d:85:47:68:9d:a8:
         41:ff:9b:89:66:b3:29:e0:5a:b9:9e:f5:d6:85:7d:c8:ee:e1:
         1c:7f:1e:44:bc:c5:bf:4c:ad:5b:8f:d4:12:c4:20:c5:e1:1d:
         59:26:60:fe:e3:ef:ba:67:2f:81:37:93:fc:92:54:9e:f7:13:
         b9:3a:93:e7:9f:bc:b3:35:c1:ee:c0:67:9f:b2:d3:9d:3e:0f:
         98:ca:99:0d:51:4d:28:d4:e3:d9:6e:ac:f2:d3:d3:97:a6:78:
         59:27:94:95:09:67:1a:16:13:91:77:96:1e:4c:5d:b5:a3:33:
         22:02:fc:46:9e:46:fc:5c:78:11:00:50:b8:d2:01:b9:d0:aa:
         8b:4b:80:5d:af:2b:24:68:54:5d:a2:c5:e3:93:eb:c9:7b:5c:
         bf:90:07:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----