Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft
File:                     Da7a5Z2cmvUe9UivsMlkOM73IRw.mft (raw, json)
Hash identifier:          PXxbAVTZfeJ/BRMBEvico1k1GMWfQGqFuTuYUpvFHMc=
Subject key identifier:   22:5E:00:82:93:80:E6:51:C5:48:64:C2:F0:6B:CD:CE:EB:64:C2:C3
Authority key identifier: 0D:AE:DA:E5:9D:9C:9A:F5:1E:F5:48:AF:B0:C9:64:38:CE:F7:21:1C
Certificate issuer:       /CN=0daedae59d9c9af51ef548afb0c96438cef7211c
Certificate serial:       019E303B21255DCC2BFC4BD1936F75AEA8D0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Da7a5Z2cmvUe9UivsMlkOM73IRw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft
Manifest number:          190C
Signing time:             Sat 16 May 2026 10:00:41 +0000
Manifest this update:     Sat 16 May 2026 10:00:41 +0000
Manifest next update:     Sun 17 May 2026 10:00:41 +0000
Files and hashes:         1: Da7a5Z2cmvUe9UivsMlkOM73IRw.crl (hash: 07lIHQvqmnZRkHl7DweND4Rm2U4kg3AeAs4BQDz6iI0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Da7a5Z2cmvUe9UivsMlkOM73IRw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 17 May 2026 10:00:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:30:3b:21:25:5d:cc:2b:fc:4b:d1:93:6f:75:ae:a8:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0daedae59d9c9af51ef548afb0c96438cef7211c
        Validity
            Not Before: May 16 10:00:41 2026 GMT
            Not After : May 17 10:00:41 2026 GMT
        Subject: CN=225e00829380e651c54864c2f06bcdceeb64c2c3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:ca:78:92:0b:ae:b7:19:61:c5:09:96:7f:45:
                    ce:37:b8:a6:29:43:b6:a8:3a:f9:8f:88:89:56:0c:
                    c0:68:b7:8d:2d:bd:74:d1:08:62:2b:fd:b7:2b:a6:
                    ea:80:d6:da:d8:0e:a4:83:5c:f7:6a:41:4a:ef:8d:
                    a0:dc:4b:71:ab:cc:0c:6c:68:9d:7c:04:5d:72:7c:
                    03:d4:0a:d4:3d:a4:76:3a:3f:da:45:60:71:d2:97:
                    50:62:51:c3:bb:64:74:bd:1c:64:ff:e9:12:c4:15:
                    99:e1:df:40:75:f7:c2:f1:24:b6:ba:d6:b2:1f:b9:
                    e5:b7:48:5a:d2:b0:71:41:8e:d5:ba:ec:e7:3e:34:
                    2f:20:8f:00:3e:d8:f8:6c:95:f5:22:d5:44:59:d2:
                    f0:ad:05:a0:51:fc:e8:d7:e0:84:99:6b:7f:ff:e6:
                    cb:4a:1b:0b:e9:95:f2:ea:9a:03:e9:d1:2c:af:9d:
                    7e:c5:25:ed:db:4a:c2:86:27:f8:71:46:29:b7:70:
                    ef:ba:10:5c:c6:19:8a:d3:be:7c:56:63:b7:ed:bf:
                    fe:cc:92:d3:2e:e2:70:6f:bc:0b:f8:d7:87:d7:da:
                    55:22:a1:09:35:c8:3a:cb:b2:52:20:50:f0:29:64:
                    b2:de:33:49:aa:01:11:3a:2c:4d:96:0f:39:34:08:
                    09:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                22:5E:00:82:93:80:E6:51:C5:48:64:C2:F0:6B:CD:CE:EB:64:C2:C3
            X509v3 Authority Key Identifier:
                keyid:0D:AE:DA:E5:9D:9C:9A:F5:1E:F5:48:AF:B0:C9:64:38:CE:F7:21:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Da7a5Z2cmvUe9UivsMlkOM73IRw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:4c:98:da:38:7d:f1:f2:a6:4f:03:8c:0b:c3:a3:a8:8b:1f:
         3e:71:d2:d6:c9:05:4a:40:cc:77:f3:3b:3f:80:84:3a:be:4d:
         6c:25:ef:9d:63:b5:03:ce:d7:b5:7f:1f:f7:ae:69:ee:34:63:
         28:f8:ad:f2:84:10:0c:a2:1c:a8:37:83:6c:61:1e:8a:0d:45:
         02:d6:db:ce:55:63:f7:f3:2b:cb:3d:ba:fc:7a:09:ce:5d:3c:
         6d:f0:93:64:14:69:61:a9:10:59:1f:9c:15:86:4c:9c:ba:ae:
         e2:16:c1:46:55:4d:d9:6a:4b:ba:a6:ec:cf:a7:b2:c4:d6:08:
         ff:d6:ef:9c:60:95:8c:a4:64:5b:f7:fd:c6:e9:1d:e2:c9:a6:
         ab:02:82:e5:88:17:57:ca:6a:70:f9:d5:28:c6:cc:de:7f:29:
         ac:72:fe:3c:84:99:b0:0b:38:10:44:10:e6:4a:43:f0:27:b8:
         6e:30:d4:74:50:a4:23:48:1e:b5:0c:3b:03:64:df:cc:e9:6f:
         60:c1:f3:58:9f:33:04:de:1b:f3:c0:59:2a:74:71:4c:31:b9:
         77:64:b7:cc:6f:3a:c9:66:6d:e9:00:9a:75:f8:bc:9f:70:79:
         0a:b6:f4:15:25:25:c4:a8:b4:0c:1a:ca:72:d6:44:97:56:76:
         94:9f:63:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----