Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
File:                     5cfDmlkS3cIen2tRmJZyV2ISeDM.mft (raw, json)
Hash identifier:          brT3+crGFTyXBT0/qnC5GnbBkylT36UbZ4+bkJtKSeI=
Subject key identifier:   A4:21:91:64:BB:7B:B8:E0:C1:97:54:F4:45:D8:53:C0:24:CF:BD:33
Authority key identifier: E5:C7:C3:9A:59:12:DD:C2:1E:9F:6B:51:98:96:72:57:62:12:78:33
Certificate issuer:       /CN=e5c7c39a5912ddc21e9f6b519896725762127833
Certificate serial:       019E1E35E236F8ADDECF705D3EE283A81E6C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
Manifest number:          0480
Signing time:             Tue 12 May 2026 22:01:48 +0000
Manifest this update:     Tue 12 May 2026 22:01:48 +0000
Manifest next update:     Wed 13 May 2026 22:01:48 +0000
Files and hashes:         1: 5cfDmlkS3cIen2tRmJZyV2ISeDM.crl (hash: MkC8MGYSZ0E3+GlfRs07j/TbdURevmdS5aOp3LcAFh0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 20:10:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1e:35:e2:36:f8:ad:de:cf:70:5d:3e:e2:83:a8:1e:6c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e5c7c39a5912ddc21e9f6b519896725762127833
        Validity
            Not Before: May 12 22:01:48 2026 GMT
            Not After : May 13 22:01:48 2026 GMT
        Subject: CN=a4219164bb7bb8e0c19754f445d853c024cfbd33
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:fc:c0:c2:68:81:19:71:2c:cd:b1:bf:cb:99:
                    68:ae:d4:90:0d:0c:eb:62:f9:1e:1b:80:6c:e4:ae:
                    ca:66:d1:61:52:0e:fd:44:8f:59:5b:d0:f2:95:fe:
                    bd:56:6a:75:79:d9:8a:78:cc:0c:ca:af:e0:bb:f5:
                    da:a3:94:0d:4b:67:de:6b:56:b6:8e:68:86:a6:19:
                    57:8f:fa:86:d7:5f:ea:67:f5:65:d6:6f:88:51:cf:
                    7f:75:f2:a0:e3:26:ec:e2:00:f4:69:7c:0e:2e:0e:
                    ce:1a:6a:5f:fc:b9:d9:df:28:98:39:ba:9b:22:b9:
                    19:d9:ee:d5:3f:54:de:5c:7f:0c:b3:2c:0e:6d:ca:
                    bb:78:c0:0c:9f:e0:d5:34:3d:11:01:51:0c:36:2f:
                    60:66:82:a6:6a:e4:2d:e7:99:f3:c8:23:6e:59:17:
                    06:2d:c3:5e:7b:fb:01:5a:23:34:33:e0:95:d0:c8:
                    16:ce:cc:9b:72:d5:60:85:93:63:42:3a:51:62:bf:
                    67:25:b1:ef:5a:7d:d3:38:b9:ba:a6:82:41:f7:53:
                    2d:f7:1b:24:9b:0b:3a:45:ea:9c:0d:e0:1a:75:3c:
                    7e:c6:fb:b7:f3:a2:c3:b5:67:92:10:92:1a:3f:f6:
                    90:f9:c3:79:31:1c:93:78:92:a1:1a:36:bd:07:2f:
                    c3:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:21:91:64:BB:7B:B8:E0:C1:97:54:F4:45:D8:53:C0:24:CF:BD:33
            X509v3 Authority Key Identifier:
                keyid:E5:C7:C3:9A:59:12:DD:C2:1E:9F:6B:51:98:96:72:57:62:12:78:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5cfDmlkS3cIen2tRmJZyV2ISeDM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/10af83-08f5-4919-ba1d-38f864a34b78/1/5cfDmlkS3cIen2tRmJZyV2ISeDM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c9:c3:94:6c:d7:bd:c8:53:0f:d6:0b:b6:1c:95:c1:df:7c:78:
         87:d6:fa:6e:c6:34:02:c7:7d:40:b8:2e:b6:ab:38:56:e7:40:
         87:49:c7:a9:76:71:2e:90:db:cc:b8:cd:41:a3:c2:05:2b:fc:
         a9:d5:a2:27:44:3c:86:6c:96:23:dd:92:8c:36:51:ee:d1:6f:
         5a:d6:8b:ec:b1:f9:6b:bc:4a:09:22:2f:18:75:a6:c0:fe:a8:
         e3:f0:23:b1:0d:7b:ac:d0:3c:02:3f:da:28:8d:04:2f:fa:76:
         8a:81:05:bc:c3:71:c6:49:e4:55:81:e4:13:7c:69:be:0d:cb:
         8f:bc:e5:41:69:51:8e:46:53:39:db:f2:05:fb:09:92:08:a1:
         a4:ec:b3:95:3f:25:f9:3d:55:b7:8a:6c:78:e8:53:8d:37:93:
         8f:df:7c:10:89:02:b0:49:79:8b:c3:9f:ae:31:58:99:af:3f:
         c8:90:5a:a7:c6:7a:3e:1b:e7:fc:d9:da:c2:06:fb:b7:fb:59:
         42:8d:9c:a1:f6:b9:18:23:44:6a:67:c2:47:28:5d:99:be:57:
         dc:e7:d2:f2:85:51:78:bf:d9:20:16:cc:05:a5:95:45:fc:cf:
         b6:c5:97:15:c5:d0:3c:2a:72:a9:26:49:82:10:ba:0e:1b:21:
         06:0f:4f:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----