Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
File:                     5e_Rhp7q_m-fA8s0GGibywxpE3A.mft (raw, json)
Hash identifier:          fSkW++LQthuQsREazMewj2ZgmpDDS6z+vC15FxsuX6s=
Subject key identifier:   9B:A0:3D:88:8F:E4:4D:B3:DC:4A:E9:32:26:97:26:3B:EB:16:66:7B
Authority key identifier: E5:EF:D1:86:9E:EA:FE:6F:9F:03:CB:34:18:68:9B:CB:0C:69:13:70
Certificate issuer:       /CN=e5efd1869eeafe6f9f03cb3418689bcb0c691370
Certificate serial:       019E202413B1B385558BB46D0CC5DD36FA87
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
Manifest number:          1322
Signing time:             Wed 13 May 2026 07:01:35 +0000
Manifest this update:     Wed 13 May 2026 07:01:35 +0000
Manifest next update:     Thu 14 May 2026 07:01:35 +0000
Files and hashes:         1: 5e_Rhp7q_m-fA8s0GGibywxpE3A.crl (hash: YAduf4k1+lmfiZqoZ5dpd+bJdpZ8l5LHsuu2m0OjSFc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 14 May 2026 06:33:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:20:24:13:b1:b3:85:55:8b:b4:6d:0c:c5:dd:36:fa:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e5efd1869eeafe6f9f03cb3418689bcb0c691370
        Validity
            Not Before: May 13 07:01:35 2026 GMT
            Not After : May 14 07:01:35 2026 GMT
        Subject: CN=9ba03d888fe44db3dc4ae9322697263beb16667b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:c8:25:de:85:8e:56:ae:2c:dd:65:47:9c:9f:
                    7b:d5:cb:98:39:27:38:49:96:5f:8f:2c:3e:b2:f9:
                    78:3e:cb:be:cc:ed:d5:7b:68:1f:b0:71:4d:c6:bb:
                    e6:26:cb:0b:f9:3f:8a:59:36:91:12:a6:fb:c6:4f:
                    69:4d:cd:82:15:53:9d:1d:54:d0:b4:7c:6b:66:84:
                    20:34:87:1b:b7:ad:5d:fb:54:ab:25:7c:2c:d7:6d:
                    b0:36:59:27:5e:67:27:1b:82:86:0e:2a:13:d2:8f:
                    2f:5d:5b:30:ae:35:60:97:71:26:9b:b5:67:3c:d6:
                    96:c4:77:66:78:76:bf:26:0e:51:a2:85:f5:cf:16:
                    00:aa:2a:ec:b4:c4:5f:d6:2c:2f:70:9e:d1:64:a8:
                    07:07:21:bd:29:8b:76:36:47:5b:b6:da:1e:90:d2:
                    ce:95:59:e2:57:4c:23:9c:9a:d5:22:b4:35:a4:a8:
                    c6:8c:07:af:9c:d5:aa:cc:62:cd:ce:d6:c8:7d:a4:
                    c7:55:87:ac:b3:98:46:0b:d7:16:aa:83:c1:a8:d0:
                    ab:b9:d6:0a:66:d9:a5:68:fb:9a:7d:a2:35:a2:b8:
                    09:4a:21:96:36:e9:14:51:ef:19:68:60:9e:31:e9:
                    f7:a2:4d:bd:1c:74:ea:bc:c5:86:29:74:78:ac:aa:
                    a5:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:A0:3D:88:8F:E4:4D:B3:DC:4A:E9:32:26:97:26:3B:EB:16:66:7B
            X509v3 Authority Key Identifier:
                keyid:E5:EF:D1:86:9E:EA:FE:6F:9F:03:CB:34:18:68:9B:CB:0C:69:13:70

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e_Rhp7q_m-fA8s0GGibywxpE3A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/b47bda-65b6-4a42-990f-024935ddb8c6/1/5e_Rhp7q_m-fA8s0GGibywxpE3A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:1d:9f:b3:d3:ee:49:e7:e6:80:48:a9:73:16:b3:fa:fd:85:
         f8:64:35:53:da:cc:20:8c:a7:f1:4b:5f:1c:2e:d7:b8:46:ee:
         00:75:c5:3a:77:52:fe:e0:0c:b1:8e:f7:67:8e:f2:90:03:1f:
         4d:18:9d:20:ba:cc:b3:2b:01:f1:28:07:2c:22:d0:33:63:05:
         5e:09:2d:8a:7d:13:56:de:67:59:dc:7d:4f:9a:08:58:55:78:
         f5:6f:be:24:a9:6c:fd:cb:a5:d0:06:09:7f:98:bc:39:f1:e9:
         2e:8e:c1:5d:78:c6:12:a7:79:4f:a0:fc:0f:2c:a9:29:75:67:
         43:d1:16:c8:0b:96:89:38:14:fb:bd:ad:eb:ef:81:b2:f9:5c:
         7b:9f:81:8a:72:c0:79:b1:5e:1c:c0:e4:ab:36:2e:60:52:20:
         d3:0e:e3:2d:f0:11:f1:96:b9:ba:88:1e:f2:2b:dd:c6:ba:69:
         06:25:82:35:9b:d5:8d:72:33:76:ca:f1:92:8f:22:10:df:6a:
         cc:ad:02:00:44:90:84:f6:dc:bb:2f:23:ab:13:16:1e:0c:23:
         01:2f:0e:b5:99:aa:42:90:78:b4:ec:8e:c6:81:bb:64:b4:6d:
         2c:bc:b5:d5:b9:81:e3:3b:df:e8:89:6e:84:60:5e:89:27:d4:
         1d:96:c5:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----