Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft
File:                     AVkheESIrdmgVmH_EXh-x1TmBeU.mft (raw, json)
Hash identifier:          H9bmjpwPGDlXtjQ7IpQSsWgSbUYuTvXHPI2TZttdw0E=
Subject key identifier:   C5:53:3C:32:45:2E:2A:51:A8:A9:65:34:71:7D:F8:9B:34:46:C4:2C
Authority key identifier: 01:59:21:78:44:88:AD:D9:A0:56:61:FF:11:78:7E:C7:54:E6:05:E5
Certificate issuer:       /CN=015921784488add9a05661ff11787ec754e605e5
Certificate serial:       019E2F971255EDCA87E3C0EF1495CDAD4530
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AVkheESIrdmgVmH_EXh-x1TmBeU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft
Manifest number:          190C
Signing time:             Sat 16 May 2026 07:01:30 +0000
Manifest this update:     Sat 16 May 2026 07:01:30 +0000
Manifest next update:     Sun 17 May 2026 07:01:30 +0000
Files and hashes:         1: AVkheESIrdmgVmH_EXh-x1TmBeU.crl (hash: Vlm0mDwgBOVrHlkkH1CB8MywqdDXIDkkhShXVdNxQSo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AVkheESIrdmgVmH_EXh-x1TmBeU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 07:01:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:2f:97:12:55:ed:ca:87:e3:c0:ef:14:95:cd:ad:45:30
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=015921784488add9a05661ff11787ec754e605e5
        Validity
            Not Before: May 16 07:01:30 2026 GMT
            Not After : May 17 07:01:30 2026 GMT
        Subject: CN=c5533c32452e2a51a8a96534717df89b3446c42c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:12:be:e7:d2:b1:63:6b:fe:5a:fe:f7:b6:50:
                    4c:28:30:f8:d1:32:d1:7f:c1:49:eb:c1:c7:01:d4:
                    16:2d:77:54:89:e0:53:f1:c4:bb:dd:d1:30:54:ae:
                    dd:65:ae:fc:43:c7:13:6a:29:26:1c:31:05:23:39:
                    b9:b2:df:dd:25:39:e9:bc:a1:f8:fa:7b:8d:1b:15:
                    4f:13:77:79:58:c6:0f:ae:e5:21:f8:b6:ae:0e:80:
                    52:33:8e:9d:5e:6f:09:16:f8:a1:0a:18:1a:15:cb:
                    7c:73:bc:5c:6b:97:8b:ab:72:a9:47:74:97:28:c6:
                    cc:29:6b:0c:ef:46:52:66:89:e4:4c:ea:d4:bc:e8:
                    6a:04:3d:80:0a:ac:fb:bb:87:b5:c3:29:4f:2e:74:
                    c1:9e:09:f0:1e:d4:c5:e7:b0:a1:fc:bd:5a:ca:d5:
                    0a:ed:34:38:84:20:6c:a4:7e:5f:24:6c:be:ea:79:
                    f0:d8:b1:7b:c3:e6:2b:e8:3f:02:de:ae:eb:b5:98:
                    cf:65:dc:99:62:7f:32:9f:7b:d6:2d:48:d2:eb:b5:
                    3e:53:27:fa:40:40:24:f4:19:4e:14:96:75:93:2c:
                    ce:17:66:29:96:54:3d:3e:63:4f:03:33:82:2a:6c:
                    d3:02:59:2e:0a:62:20:6a:b3:24:a8:a6:8c:b1:7b:
                    18:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:53:3C:32:45:2E:2A:51:A8:A9:65:34:71:7D:F8:9B:34:46:C4:2C
            X509v3 Authority Key Identifier:
                keyid:01:59:21:78:44:88:AD:D9:A0:56:61:FF:11:78:7E:C7:54:E6:05:E5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVkheESIrdmgVmH_EXh-x1TmBeU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b7:2a:95:1a:2a:97:a6:2b:94:8e:76:7a:18:f2:ab:0c:0a:23:
         08:2b:be:92:ca:8f:fe:25:d5:b5:30:38:db:aa:4b:1e:3e:23:
         e8:4a:1c:98:25:01:b8:96:01:ff:bf:42:d8:fb:f6:d9:db:ec:
         97:50:4a:27:db:d4:69:8a:e8:c4:b9:0f:b9:03:2c:20:5d:09:
         fa:0c:96:21:85:b9:bc:45:62:99:11:53:7b:70:a7:1d:49:d8:
         eb:4f:1c:80:d4:18:52:1c:a3:2f:8c:0b:10:e0:4c:e9:bf:bc:
         d6:c5:b4:e1:18:bd:8f:1e:c6:84:e3:b1:62:56:2d:c6:09:61:
         bf:a6:3a:36:bf:97:a7:49:d7:a9:a7:b8:3b:50:69:33:c4:72:
         b5:cf:62:28:d2:c9:9a:08:31:34:98:c8:7c:35:4d:29:0f:a9:
         1d:96:84:4e:17:db:b8:43:1f:b5:23:77:e5:74:1c:de:97:cf:
         c9:6b:8a:f0:af:f3:20:e7:c5:0b:e1:a9:a2:f0:35:e0:00:35:
         2b:c9:43:87:ea:a1:30:7e:c1:10:cd:1d:24:6d:c6:38:7c:47:
         ee:54:fd:98:04:67:2c:ec:eb:f2:f6:b0:d1:a3:25:a8:11:d2:
         31:f5:c1:d5:3d:6c:5d:82:7a:99:7d:8a:3f:06:51:8c:ad:40:
         08:d1:2c:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----