Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft
File:                     AVkheESIrdmgVmH_EXh-x1TmBeU.mft (raw, json)
Hash identifier:          44LH2n9v8k+XSZ+FHlXZhtMQTvO9EHuh3JDObc2Isqk=
Subject key identifier:   9E:6B:EE:74:A7:39:EF:E0:E6:19:D4:A3:91:7C:78:A6:9B:E8:DB:68
Authority key identifier: 01:59:21:78:44:88:AD:D9:A0:56:61:FF:11:78:7E:C7:54:E6:05:E5
Certificate issuer:       /CN=015921784488add9a05661ff11787ec754e605e5
Certificate serial:       019F1754DBDBA790F9D4877A28ADD59FA960
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AVkheESIrdmgVmH_EXh-x1TmBeU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft
Manifest number:          1984
Signing time:             Tue 30 Jun 2026 07:01:04 +0000
Manifest this update:     Tue 30 Jun 2026 07:01:04 +0000
Manifest next update:     Wed 01 Jul 2026 07:01:04 +0000
Files and hashes:         1: AVkheESIrdmgVmH_EXh-x1TmBeU.crl (hash: 2ME4VNsuP4tLAQv157mnVOsc/4huDnWDHCl3walhwKE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AVkheESIrdmgVmH_EXh-x1TmBeU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 01 Jul 2026 07:01:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:17:54:db:db:a7:90:f9:d4:87:7a:28:ad:d5:9f:a9:60
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=015921784488add9a05661ff11787ec754e605e5
        Validity
            Not Before: Jun 30 07:01:04 2026 GMT
            Not After : Jul  1 07:01:04 2026 GMT
        Subject: CN=9e6bee74a739efe0e619d4a3917c78a69be8db68
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:2d:51:c4:d2:e1:56:85:a3:ae:2c:80:42:94:
                    53:d2:97:49:f4:e4:cb:c4:cd:41:c7:9f:0f:40:84:
                    d7:cc:64:cf:a2:58:c3:17:6a:10:d2:1f:38:f8:8b:
                    f5:e8:15:da:fb:dc:a2:6a:97:98:3d:e8:94:14:e7:
                    98:2b:88:22:58:14:f7:e8:a9:14:01:f3:b7:3d:f8:
                    ae:ac:11:2b:69:50:94:f3:ad:91:c8:88:54:8b:13:
                    51:fd:ad:73:dc:0c:49:a8:a7:64:ab:8d:b3:d6:94:
                    3f:95:c8:05:e1:35:4a:8b:94:83:c1:03:00:f7:cb:
                    cc:3a:2c:4b:77:4d:42:b2:fc:f0:f5:71:c4:48:63:
                    ff:a5:58:c1:a1:92:cc:01:94:5e:8d:05:ad:4f:bb:
                    d6:3b:c8:10:d2:ad:16:64:09:43:9d:53:f9:92:70:
                    40:35:9c:a2:2d:3d:24:93:d0:6b:af:36:ad:7a:05:
                    d9:a7:13:1e:81:f2:c9:a1:0a:c1:4a:d3:25:01:c5:
                    70:07:79:73:60:0d:f9:1c:1e:8e:b1:25:f6:91:4f:
                    3a:f7:5d:68:25:e6:2e:92:8f:fd:6c:87:66:b1:66:
                    a2:21:e8:18:46:7c:25:cc:bc:21:f5:52:5d:57:00:
                    ab:2d:a4:e4:47:78:87:bf:08:1f:f9:d3:b2:6a:cf:
                    12:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:6B:EE:74:A7:39:EF:E0:E6:19:D4:A3:91:7C:78:A6:9B:E8:DB:68
            X509v3 Authority Key Identifier:
                keyid:01:59:21:78:44:88:AD:D9:A0:56:61:FF:11:78:7E:C7:54:E6:05:E5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AVkheESIrdmgVmH_EXh-x1TmBeU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/129d62-d1c8-4842-9549-8a918400f260/1/AVkheESIrdmgVmH_EXh-x1TmBeU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2a:a3:e9:28:df:f1:eb:4d:4d:2d:f6:77:2b:eb:9c:8f:01:0a:
         5d:9c:0b:41:da:5d:29:c1:e7:95:9b:d4:5a:7e:0f:97:40:18:
         26:37:6c:ec:60:9d:70:6c:3e:94:1c:93:7c:9f:ee:3a:f1:1d:
         8e:28:8c:e0:21:4c:8d:a1:81:41:8d:db:70:8c:85:4b:24:65:
         fc:ed:c2:66:6b:d0:9d:6b:38:0e:35:14:14:39:23:3d:f9:73:
         44:d8:c3:f6:5f:7b:b1:83:80:82:a7:db:93:8e:06:34:80:5d:
         2f:5b:6f:e7:e2:9a:66:7e:9f:24:46:66:71:0e:91:3e:3f:95:
         cf:a3:9d:36:ee:e7:7b:96:2d:d0:0b:3f:ba:ae:fa:4a:65:51:
         d0:e6:9d:18:bc:b9:66:a3:91:52:8b:04:f7:82:d9:f9:a4:bd:
         f4:43:ce:e8:1b:20:04:5e:30:85:be:9d:39:93:3a:3b:54:3b:
         79:ec:64:99:6e:8f:1f:b8:c7:b8:93:6f:f6:a2:bd:d4:9a:9a:
         b3:1a:40:a0:94:21:94:7b:dc:30:1e:9a:25:2d:74:c0:c1:f3:
         97:4f:bd:0e:ab:21:ba:70:50:b5:aa:39:97:ea:c7:df:90:f9:
         fe:c1:14:d4:d2:ee:08:30:b9:ec:63:78:3f:71:bf:cc:d8:8f:
         11:2a:47:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----