Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
File:                     2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft (raw, json)
Hash identifier:          +OXLvpazfwqpYJrAGbUEy5+xt8ZvjuwR1+xrIlYjLa4=
Subject key identifier:   2D:1D:3C:52:65:3F:22:5F:03:63:A5:F6:B6:D5:FC:9C:32:23:B6:10
Authority key identifier: D9:93:66:35:D1:2D:6C:E2:32:E1:12:9C:8F:18:CE:DB:83:6E:CD:D7
Certificate issuer:       /CN=d9936635d12d6ce232e1129c8f18cedb836ecdd7
Certificate serial:       019E1E35EDBA3EECC3AF4CD4D65D4E762EE0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
Manifest number:          0FE7
Signing time:             Tue 12 May 2026 22:01:51 +0000
Manifest this update:     Tue 12 May 2026 22:01:51 +0000
Manifest next update:     Wed 13 May 2026 22:01:51 +0000
Files and hashes:         1: 2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl (hash: gqtF2HSI1o30k/O6J0OktCOt+++A6ucoD9TMSyxqzWE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 22:01:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1e:35:ed:ba:3e:ec:c3:af:4c:d4:d6:5d:4e:76:2e:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d9936635d12d6ce232e1129c8f18cedb836ecdd7
        Validity
            Not Before: May 12 22:01:51 2026 GMT
            Not After : May 13 22:01:51 2026 GMT
        Subject: CN=2d1d3c52653f225f0363a5f6b6d5fc9c3223b610
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:9e:89:7a:1a:d8:4e:32:44:31:10:be:13:96:
                    5e:1b:3c:1e:80:ed:d1:c8:98:b6:85:9d:94:9b:be:
                    3e:9d:f6:20:97:03:58:7d:c5:c7:b3:d4:56:a7:d9:
                    96:73:10:b8:a9:c1:2a:b7:a0:99:fb:65:5d:53:21:
                    dc:30:a8:fe:7a:77:bb:28:ec:80:7c:1b:4c:da:aa:
                    4e:82:89:7e:dc:18:bb:b7:19:14:87:d0:2c:5a:0c:
                    ed:60:d2:70:9b:be:2a:95:06:c5:fa:bc:e7:4c:da:
                    d6:96:23:49:15:3e:ec:0f:9f:dd:b3:a3:7a:e5:86:
                    69:13:a9:c5:c8:10:7c:0d:62:84:4c:a0:d4:da:25:
                    52:3a:0e:97:d0:87:81:bb:02:96:14:76:ef:ae:a7:
                    f7:67:45:e9:63:6b:a8:b4:82:cf:03:7e:35:d2:c8:
                    a4:ab:78:90:86:cc:9f:33:f5:00:0a:90:f4:0c:55:
                    58:01:11:37:30:ea:b4:f5:93:c4:69:e0:48:29:ab:
                    54:9a:97:92:e8:bf:6c:75:9a:8d:ca:07:a7:a2:0a:
                    0c:08:c4:db:52:55:97:ba:b4:a5:82:f4:91:b5:a4:
                    bb:3d:8d:1a:22:6a:98:14:77:87:ef:68:85:32:0a:
                    5a:10:70:be:1e:7f:95:02:1a:04:8a:a4:30:00:0f:
                    7d:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:1D:3C:52:65:3F:22:5F:03:63:A5:F6:B6:D5:FC:9C:32:23:B6:10
            X509v3 Authority Key Identifier:
                keyid:D9:93:66:35:D1:2D:6C:E2:32:E1:12:9C:8F:18:CE:DB:83:6E:CD:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:08:0d:cd:cf:ed:4e:f3:cd:67:a2:6b:7c:56:6d:d3:6f:36:
         66:ce:86:ee:c3:f6:f1:4e:78:66:fe:90:96:a3:42:39:6a:aa:
         fc:b0:17:63:53:f1:2c:0a:30:69:4a:ff:2b:df:5a:ad:4d:18:
         9a:45:09:9a:ae:f9:d5:82:cb:24:1d:e6:ec:bf:bb:cb:fc:d8:
         84:dd:92:88:22:73:54:ad:75:87:b5:58:af:06:9f:dd:e2:d2:
         a7:29:c7:e2:c7:e9:36:98:a2:53:5a:2e:44:c6:eb:23:04:d3:
         ad:c5:32:1d:39:ff:9a:5f:5f:ff:5d:b4:60:ea:a4:ed:59:2b:
         52:f9:cb:56:74:2d:35:1f:0f:63:da:6b:c6:3b:1c:00:2c:9b:
         18:de:f4:4f:1e:fb:3c:ef:ae:a2:8f:a3:29:90:19:7c:cb:8f:
         34:18:52:2a:10:47:2d:0f:26:d3:ec:22:3a:2a:d4:88:00:15:
         dd:85:e2:0b:7e:ca:4d:6c:8b:b5:4e:85:85:ce:36:3f:14:2d:
         73:bf:cd:93:47:94:43:28:bf:98:9e:7e:8b:41:99:1d:ba:00:
         8d:43:76:e8:e1:cd:18:de:c1:92:60:6f:37:aa:77:93:53:95:
         66:0c:90:ff:4b:22:2a:46:3f:8f:a0:48:99:62:1e:cc:07:c9:
         c5:2b:2f:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----