Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft
File:                     7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft (raw, json)
Hash identifier:          XlOI8WXI2DG1lM6pMr3n79iFPZnwQs7E13XKTCeRxYU=
Subject key identifier:   C6:97:D4:61:6A:F5:A0:9A:2F:1C:8D:F8:8B:E5:6B:B8:81:27:74:BF
Authority key identifier: EE:68:B6:64:CC:D5:0C:A7:67:D4:6F:FB:34:F5:3A:06:D1:20:B5:23
Certificate issuer:       /CN=ee68b664ccd50ca767d46ffb34f53a06d120b523
Certificate serial:       019E1D2316B880CD30609D04F4843498578E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft
Manifest number:          0D2C
Signing time:             Tue 12 May 2026 17:01:39 +0000
Manifest this update:     Tue 12 May 2026 17:01:39 +0000
Manifest next update:     Wed 13 May 2026 17:01:39 +0000
Files and hashes:         1: 7mi2ZMzVDKdn1G_7NPU6BtEgtSM.crl (hash: jYAw78nipjQqarJSnzf+BcW6p0R2RqhBYtVq+4fSkjo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1d:23:16:b8:80:cd:30:60:9d:04:f4:84:34:98:57:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ee68b664ccd50ca767d46ffb34f53a06d120b523
        Validity
            Not Before: May 12 17:01:39 2026 GMT
            Not After : May 13 17:01:39 2026 GMT
        Subject: CN=c697d4616af5a09a2f1c8df88be56bb8812774bf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:77:d0:5b:ab:37:02:66:09:fc:8f:51:8b:91:
                    32:30:b8:40:2e:d7:74:b1:47:da:04:d3:f8:e4:50:
                    df:d7:b8:c3:b9:ce:5b:12:c9:9b:23:d0:72:6b:22:
                    52:d7:ae:93:0c:93:c6:e5:4c:06:64:ac:2b:5d:a4:
                    49:a5:63:a2:b0:56:bc:09:d4:07:64:4a:8d:bc:25:
                    b2:70:b8:d2:60:a6:c0:18:7b:d7:b8:b0:75:67:68:
                    73:5f:92:94:19:c6:27:61:37:30:5c:4f:35:d7:ed:
                    06:e2:2f:72:04:35:c2:9a:e8:e1:31:cf:d4:c4:b0:
                    ad:5f:d4:fd:bd:7e:71:ac:f9:06:7e:6e:d6:2f:7e:
                    1a:fb:99:cd:4f:2a:e6:79:d2:69:2d:6a:38:70:e6:
                    f0:ee:0f:18:9a:67:c8:98:50:d3:ea:2f:73:17:13:
                    91:6c:b0:b2:c2:21:b1:30:0c:d1:69:aa:cc:c7:0e:
                    86:c3:71:37:36:6e:27:b6:17:a2:03:98:4e:33:7d:
                    68:88:a3:f4:5d:e3:85:59:d3:a1:38:04:48:c0:96:
                    33:70:31:3d:d4:40:52:04:46:4d:88:86:cd:e6:6f:
                    77:76:76:7f:f6:dd:d6:9e:73:f9:15:0e:2f:f9:c5:
                    f8:3c:59:1d:ee:d4:57:b9:aa:6f:47:cc:81:2e:91:
                    ad:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:97:D4:61:6A:F5:A0:9A:2F:1C:8D:F8:8B:E5:6B:B8:81:27:74:BF
            X509v3 Authority Key Identifier:
                keyid:EE:68:B6:64:CC:D5:0C:A7:67:D4:6F:FB:34:F5:3A:06:D1:20:B5:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/ba76ec-5d1a-4375-849e-ded7ac252544/1/7mi2ZMzVDKdn1G_7NPU6BtEgtSM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bc:b9:3a:1b:d9:e2:a6:0f:5b:c5:cc:1d:0b:0d:f2:fc:2d:34:
         2d:81:af:06:e9:87:69:f1:3e:1d:47:b1:3a:79:11:00:6e:57:
         03:c1:a1:5a:9f:b8:d7:57:15:0a:de:e6:3b:50:a4:c7:7f:5f:
         09:b4:09:83:74:86:0b:12:4a:7f:35:b8:a2:26:be:b8:b0:aa:
         c3:19:d3:40:9c:bb:44:61:11:b6:db:96:ea:d7:56:42:22:a6:
         fd:a6:8b:e1:3f:c6:2d:fc:1b:c2:81:13:78:77:f6:ea:d3:34:
         b3:23:c6:00:68:aa:51:b8:c6:0f:9e:d4:d4:09:f6:74:11:fc:
         0a:9a:2b:86:51:39:30:20:06:10:4b:03:0e:95:90:ed:ad:31:
         3d:8c:bf:1c:a3:f5:4d:b4:15:08:2c:68:09:c2:57:28:f6:e6:
         f3:3c:0b:ed:80:59:fb:98:55:b8:7e:24:ca:2f:3d:f4:2e:95:
         8d:4f:b0:8f:88:25:ea:8c:bb:64:a5:68:97:84:05:67:16:3b:
         e7:33:68:a7:1f:b8:8b:ef:3e:32:82:b4:61:41:03:78:f8:8e:
         f3:5f:d5:af:ce:23:c9:32:31:0d:c9:59:cf:30:62:66:92:f9:
         d4:aa:d7:c1:f2:48:a6:9b:c7:f7:94:91:71:6b:62:ff:01:cf:
         83:fa:a1:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----