Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/1a59c9-1446-4779-be0a-d50f29308464/1/5weSQnGbdzi4P0kUerH1gp93ahU.mft
File:                     5weSQnGbdzi4P0kUerH1gp93ahU.mft (raw, json)
Hash identifier:          mu7XFvSD8UgyXYzP7KShheo3Ce+3cASIUK/je61uxz4=
Subject key identifier:   A7:6C:FF:3E:9D:B3:11:E4:3C:E4:D1:CA:36:30:FE:BB:E6:F3:74:94
Authority key identifier: E7:07:92:42:71:9B:77:38:B8:3F:49:14:7A:B1:F5:82:9F:77:6A:15
Certificate issuer:       /CN=e7079242719b7738b83f49147ab1f5829f776a15
Certificate serial:       019E1D22807CF709089D0E376F6DC5E1FD4E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5weSQnGbdzi4P0kUerH1gp93ahU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/33/1a59c9-1446-4779-be0a-d50f29308464/1/5weSQnGbdzi4P0kUerH1gp93ahU.mft
Manifest number:          02D0
Signing time:             Tue 12 May 2026 17:01:00 +0000
Manifest this update:     Tue 12 May 2026 17:01:00 +0000
Manifest next update:     Wed 13 May 2026 17:01:00 +0000
Files and hashes:         1: 5weSQnGbdzi4P0kUerH1gp93ahU.crl (hash: ELpJIyMw7H3ir1xF7+aTtHlDO3HMEMilqIX6Lj5zDS4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/33/1a59c9-1446-4779-be0a-d50f29308464/1/5weSQnGbdzi4P0kUerH1gp93ahU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/33/1a59c9-1446-4779-be0a-d50f29308464/1/5weSQnGbdzi4P0kUerH1gp93ahU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5weSQnGbdzi4P0kUerH1gp93ahU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1d:22:80:7c:f7:09:08:9d:0e:37:6f:6d:c5:e1:fd:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7079242719b7738b83f49147ab1f5829f776a15
        Validity
            Not Before: May 12 17:01:00 2026 GMT
            Not After : May 13 17:01:00 2026 GMT
        Subject: CN=a76cff3e9db311e43ce4d1ca3630febbe6f37494
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:f5:bf:94:93:a9:87:3c:a3:78:ab:96:3c:ae:
                    77:54:4e:e2:25:36:fc:7b:f6:5a:3b:57:8c:e6:fb:
                    11:08:1d:0f:16:18:8c:94:ae:c5:df:00:3d:65:29:
                    4e:34:08:1d:63:24:b0:d7:dd:65:c9:3c:43:6e:ad:
                    bf:72:5f:02:3b:3f:c1:3f:62:06:16:61:0a:5f:9a:
                    4c:01:ad:be:38:50:98:22:65:ff:2a:e2:72:1c:fb:
                    a9:ec:84:9e:e1:c6:ea:c7:3a:0c:17:f9:b4:59:f8:
                    7b:53:01:e8:99:1e:09:d0:fc:18:66:50:71:4e:61:
                    22:6e:48:45:72:d6:13:32:29:73:86:fa:fd:70:d4:
                    5f:59:87:13:32:b4:81:96:3f:dc:ce:45:f2:81:f9:
                    84:8d:95:1e:23:22:58:b4:31:c0:e3:b3:b0:75:b1:
                    5f:e9:4f:2b:42:00:44:da:d6:ce:bf:d5:a7:42:f6:
                    2b:0a:c5:28:7d:fa:ec:97:95:f4:f8:89:37:89:a2:
                    78:a1:85:fe:15:56:5c:0b:bd:7e:5e:91:93:d5:40:
                    ed:f3:9b:10:e6:c1:5f:e8:89:27:af:d8:49:b3:e7:
                    8f:f0:25:b0:31:4e:b1:ef:0d:01:27:c1:09:bf:59:
                    f2:a8:53:59:69:52:84:38:7b:59:67:c1:3d:c5:2b:
                    8e:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A7:6C:FF:3E:9D:B3:11:E4:3C:E4:D1:CA:36:30:FE:BB:E6:F3:74:94
            X509v3 Authority Key Identifier:
                keyid:E7:07:92:42:71:9B:77:38:B8:3F:49:14:7A:B1:F5:82:9F:77:6A:15

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5weSQnGbdzi4P0kUerH1gp93ahU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1a59c9-1446-4779-be0a-d50f29308464/1/5weSQnGbdzi4P0kUerH1gp93ahU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/33/1a59c9-1446-4779-be0a-d50f29308464/1/5weSQnGbdzi4P0kUerH1gp93ahU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:c1:43:35:86:e7:07:de:3a:da:6b:2e:eb:d7:d2:14:98:21:
         48:6a:a0:6b:28:c6:fc:24:0a:30:28:b8:d3:be:b4:ea:a8:49:
         8a:8e:90:17:1c:27:a1:73:63:1a:c9:db:09:62:29:b4:f4:bd:
         04:21:97:82:b6:e0:df:c7:13:0a:e1:8d:f0:40:02:b6:ac:40:
         96:e1:3f:0a:4e:ee:ed:7a:f6:f7:7b:6a:e9:52:09:71:0c:4f:
         30:13:a3:d6:9c:55:c7:1a:1c:91:7f:e9:1b:54:b4:09:a2:01:
         05:28:97:a5:3d:dc:ae:80:71:d3:ee:1a:95:f6:85:d7:1d:6f:
         87:64:79:c3:5d:6a:a8:c7:b2:9b:43:ac:3e:cb:49:4e:0f:04:
         8f:b0:ee:2c:c4:78:ad:d4:d8:82:6f:a9:42:b6:70:47:52:e3:
         70:c4:63:0a:47:d6:fd:e7:64:c5:7c:36:79:57:03:f8:23:c7:
         60:fd:0d:29:af:98:48:3c:fb:79:cc:ea:e7:f8:dc:af:86:34:
         12:69:d3:41:f6:95:91:91:8f:d4:36:84:2c:e2:41:6a:fa:92:
         69:c7:af:72:81:68:61:50:ee:e7:21:3a:72:9b:9f:fe:4f:bb:
         a5:8c:51:5f:a8:c5:fd:ac:d1:c7:da:bb:7d:af:45:5c:92:4f:
         38:38:11:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----