Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/6ae8b3-a390-4b51-b7f1-f2f1ca287141/1/7_vi0INCz7z3p9dOiOvQMeEgItk.mft
File:                     7_vi0INCz7z3p9dOiOvQMeEgItk.mft (raw, json)
Hash identifier:          QgKK88lLBiyQ7A2cBITqpILZH8SNbnhHabVctS+GtXc=
Subject key identifier:   51:C5:9E:79:2B:DB:83:0C:FC:56:46:98:70:78:1F:34:70:81:46:C1
Authority key identifier: EF:FB:E2:D0:83:42:CF:BC:F7:A7:D7:4E:88:EB:D0:31:E1:20:22:D9
Certificate issuer:       /CN=effbe2d08342cfbcf7a7d74e88ebd031e12022d9
Certificate serial:       019E20C806148D35A9F3902EF7119FA3AE00
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7_vi0INCz7z3p9dOiOvQMeEgItk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/28/6ae8b3-a390-4b51-b7f1-f2f1ca287141/1/7_vi0INCz7z3p9dOiOvQMeEgItk.mft
Manifest number:          06FC
Signing time:             Wed 13 May 2026 10:00:40 +0000
Manifest this update:     Wed 13 May 2026 10:00:40 +0000
Manifest next update:     Thu 14 May 2026 10:00:40 +0000
Files and hashes:         1: 7_vi0INCz7z3p9dOiOvQMeEgItk.crl (hash: vBkoGsvO4BAP9yBi3ulpH7qkhNz1lll6jalT6HMkiz4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/28/6ae8b3-a390-4b51-b7f1-f2f1ca287141/1/7_vi0INCz7z3p9dOiOvQMeEgItk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/28/6ae8b3-a390-4b51-b7f1-f2f1ca287141/1/7_vi0INCz7z3p9dOiOvQMeEgItk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7_vi0INCz7z3p9dOiOvQMeEgItk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 14 May 2026 06:33:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:20:c8:06:14:8d:35:a9:f3:90:2e:f7:11:9f:a3:ae:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=effbe2d08342cfbcf7a7d74e88ebd031e12022d9
        Validity
            Not Before: May 13 10:00:40 2026 GMT
            Not After : May 14 10:00:40 2026 GMT
        Subject: CN=51c59e792bdb830cfc56469870781f34708146c1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:83:67:a0:60:fc:11:8a:fd:8e:a1:30:34:94:0b:
                    ac:8f:64:1e:59:b7:dd:f9:fb:a7:6d:2b:29:b3:7c:
                    99:56:8f:b2:51:b7:0b:d0:c4:8d:70:f4:bc:15:14:
                    07:36:fc:60:6c:b4:93:30:3c:eb:89:82:c1:ee:23:
                    dd:65:73:1a:e7:f7:a8:20:3a:d6:d7:47:1a:34:9a:
                    46:19:21:fd:8a:93:f8:57:fc:56:16:1c:17:09:27:
                    fb:2a:93:b9:42:8f:ae:49:7e:1c:8b:fd:cc:e2:d1:
                    a9:37:cd:5e:11:d7:1d:a1:98:3e:bb:6b:36:f0:07:
                    1e:8b:0f:ae:9a:c0:f8:82:1e:0f:cd:ae:2d:70:d8:
                    67:7a:05:18:b1:47:78:a2:63:ac:56:e3:3a:96:68:
                    e0:b1:0c:84:08:30:b2:ca:37:9d:94:dd:82:4b:dc:
                    a8:a9:ab:30:f0:07:57:6b:ec:67:5e:b4:75:78:89:
                    13:64:76:1d:70:24:99:d7:ca:1e:93:a0:00:3d:7f:
                    74:7f:2d:21:c2:c9:4a:8a:db:9c:9d:62:9c:10:72:
                    6a:44:88:a2:f3:bc:29:c4:2b:1c:1b:89:d0:9e:58:
                    25:d3:36:9b:50:70:5b:cb:ce:04:0f:2d:6a:71:27:
                    1f:58:ab:8d:05:8d:55:28:f1:c4:ca:e6:4f:2c:69:
                    c5:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:C5:9E:79:2B:DB:83:0C:FC:56:46:98:70:78:1F:34:70:81:46:C1
            X509v3 Authority Key Identifier:
                keyid:EF:FB:E2:D0:83:42:CF:BC:F7:A7:D7:4E:88:EB:D0:31:E1:20:22:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7_vi0INCz7z3p9dOiOvQMeEgItk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6ae8b3-a390-4b51-b7f1-f2f1ca287141/1/7_vi0INCz7z3p9dOiOvQMeEgItk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/28/6ae8b3-a390-4b51-b7f1-f2f1ca287141/1/7_vi0INCz7z3p9dOiOvQMeEgItk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:e6:f2:43:f8:6d:76:b9:c5:e5:ef:27:d8:49:7b:41:49:a4:
         bc:bc:75:f7:84:8d:57:57:fc:7d:e4:ce:01:43:c6:86:dd:65:
         64:77:68:5d:69:de:66:81:7f:2e:ab:11:b3:1d:de:0f:4e:4a:
         52:fe:80:ba:44:a9:cc:75:18:9f:0e:0f:2c:32:b5:d9:f9:91:
         36:f4:b8:da:93:21:a6:d0:5a:12:59:6b:cc:ef:b2:2e:32:0f:
         f2:ff:f0:82:bd:fa:77:7e:13:dd:e6:d7:92:dc:31:b3:57:c0:
         44:ff:6f:22:69:87:ac:d7:ce:61:97:f5:00:77:fc:19:31:52:
         4c:f8:bc:ca:13:55:1d:97:b4:63:a4:ea:d9:d1:eb:18:94:8c:
         ff:d2:04:3e:27:f4:95:d5:23:96:90:b6:96:e1:f6:30:31:1f:
         a8:d2:38:fa:2b:36:14:88:5a:ab:7b:00:e5:ee:b4:ea:6b:36:
         df:ba:c1:29:45:9c:5e:86:e9:34:cc:1d:c2:81:71:1d:30:64:
         16:74:24:42:c1:5e:a1:e6:6c:87:7c:49:f8:a2:e1:8b:a8:83:
         94:fb:31:33:40:b0:47:c8:23:bf:3f:7d:b9:d9:70:93:1b:a2:
         7d:f8:88:46:dc:a7:98:49:fc:cd:d9:a3:7b:4e:1f:3f:89:14:
         07:e5:54:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gyAYUjTWp85Au9xGfo64AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmZmJlMmQwODM0MmNmYmNmN2E3ZDc0ZTg4ZWJkMDMxZTEy
MDIyZDkwHhcNMjYwNTEzMTAwMDQwWhcNMjYwNTE0MTAwMDQwWjAzMTEwLwYDVQQD
Eyg1MWM1OWU3OTJiZGI4MzBjZmM1NjQ2OTg3MDc4MWYzNDcwODE0NmMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg2egYPwRiv2OoTA0lAusj2QeWbfd
+funbSsps3yZVo+yUbcL0MSNcPS8FRQHNvxgbLSTMDzriYLB7iPdZXMa5/eoIDrW
10caNJpGGSH9ipP4V/xWFhwXCSf7KpO5Qo+uSX4ci/3M4tGpN81eEdcdoZg+u2s2
8Aceiw+umsD4gh4Pza4tcNhnegUYsUd4omOsVuM6lmjgsQyECDCyyjedlN2CS9yo
qasw8AdXa+xnXrR1eIkTZHYdcCSZ18oek6AAPX90fy0hwslKitucnWKcEHJqRIii
87wpxCscG4nQnlgl0zabUHBby84EDy1qcScfWKuNBY1VKPHEyuZPLGnFwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFHFnnkr24MM/FZGmHB4HzRwgUbBMB8GA1UdIwQY
MBaAFO/74tCDQs+896fXTojr0DHhICLZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN192aTBJTkN6N3ozcDlkT2lPdlFNZUVnSXRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC82YWU4YjMtYTM5MC00YjUxLWI3ZjEt
ZjJmMWNhMjg3MTQxLzEvN192aTBJTkN6N3ozcDlkT2lPdlFNZUVnSXRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC82YWU4YjMtYTM5MC00YjUxLWI3ZjEtZjJmMWNhMjg3MTQx
LzEvN192aTBJTkN6N3ozcDlkT2lPdlFNZUVnSXRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADubyQ/ht
drnF5e8n2El7QUmkvLx194SNV1f8feTOAUPGht1lZHdoXWneZoF/LqsRsx3eD05K
Uv6AukSpzHUYnw4PLDK12fmRNvS42pMhptBaEllrzO+yLjIP8v/wgr36d34T3ebX
ktwxs1fARP9vImmHrNfOYZf1AHf8GTFSTPi8yhNVHZe0Y6Tq2dHrGJSM/9IEPif0
ldUjlpC2luH2MDEfqNI4+is2FIhaq3sA5e606ms237rBKUWcXobpNMwdwoFxHTBk
FnQkQsFeoeZsh3xJ+KLhi6iDlPsxM0CwR8gjvz99udlwkxuiffiIRtynmEn8zdmj
e04fP4kUB+VUOA==
-----END CERTIFICATE-----