Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
File:                     BZqsWXzkoNE7edIrO_GKSJnddk8.mft (raw, json)
Hash identifier:          27PpfvUQclHp3Qi2xBYlyl0D6C358TnJPE1N67YXGS0=
Subject key identifier:   A4:83:D8:D1:03:6B:97:0F:91:8F:7F:91:5D:EC:C2:05:40:D5:B5:1F
Authority key identifier: 05:9A:AC:59:7C:E4:A0:D1:3B:79:D2:2B:3B:F1:8A:48:99:DD:76:4F
Certificate issuer:       /CN=059aac597ce4a0d13b79d22b3bf18a4899dd764f
Certificate serial:       019E1EA31BC72D594F9B90ED273689CC201D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
Manifest number:          0D94
Signing time:             Wed 13 May 2026 00:01:06 +0000
Manifest this update:     Wed 13 May 2026 00:01:06 +0000
Manifest next update:     Thu 14 May 2026 00:01:06 +0000
Files and hashes:         1: BZqsWXzkoNE7edIrO_GKSJnddk8.crl (hash: Vu65YtAwLa+d/ioFkYX/ffnz1fPHpckVs3fvT73NkU8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 20:10:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1e:a3:1b:c7:2d:59:4f:9b:90:ed:27:36:89:cc:20:1d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=059aac597ce4a0d13b79d22b3bf18a4899dd764f
        Validity
            Not Before: May 13 00:01:06 2026 GMT
            Not After : May 14 00:01:06 2026 GMT
        Subject: CN=a483d8d1036b970f918f7f915decc20540d5b51f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:b3:1e:5f:ed:20:31:c6:fc:83:4c:41:91:5e:
                    ca:c7:ba:a6:5a:54:49:36:40:74:a8:0f:63:4e:8f:
                    22:06:ba:cf:05:31:6a:94:fa:ad:8d:a3:9c:1d:8e:
                    26:c0:5e:85:89:55:10:f1:b7:1f:93:db:fd:64:28:
                    00:20:d8:18:9a:1d:15:a3:2c:00:14:02:bb:43:71:
                    68:14:eb:25:8d:46:a9:76:48:af:41:9d:c6:c8:19:
                    37:b5:2c:bf:b4:2c:01:e6:cb:8d:9b:97:8c:13:ce:
                    5a:b2:d5:0f:64:46:58:0f:99:5c:d0:ca:9a:4f:97:
                    96:91:dd:72:24:3a:d7:da:eb:3e:bd:e8:e4:87:ed:
                    c4:3d:f1:ab:a8:36:a5:f2:d5:0d:15:f7:47:bc:af:
                    bb:3b:ef:0e:d4:44:1a:84:08:ae:cd:52:bc:13:6a:
                    1d:cb:ba:fa:e8:a4:c9:a4:c2:2e:ba:b2:f9:ea:4d:
                    26:e1:ae:62:ee:14:0d:cf:04:fd:d8:04:0c:72:e0:
                    47:e5:15:26:11:b2:e1:7d:4c:74:77:fa:d3:66:9d:
                    e8:b7:db:f0:81:ba:80:a3:55:93:35:50:e2:9e:4d:
                    b7:9d:24:68:3c:b0:7c:74:f9:08:26:f1:ef:6e:b2:
                    06:ab:f5:cd:d4:b4:12:6b:ca:e9:88:b3:11:00:6b:
                    6f:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:83:D8:D1:03:6B:97:0F:91:8F:7F:91:5D:EC:C2:05:40:D5:B5:1F
            X509v3 Authority Key Identifier:
                keyid:05:9A:AC:59:7C:E4:A0:D1:3B:79:D2:2B:3B:F1:8A:48:99:DD:76:4F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:38:69:d6:c4:5b:b3:cf:97:89:05:3c:d8:5f:b5:39:1d:d4:
         69:a0:3a:af:e3:23:cf:b7:15:30:ed:b0:27:33:0e:ec:bc:bc:
         76:51:17:0c:08:84:24:4f:86:b4:4b:b7:d5:79:fd:5b:4c:3c:
         89:7b:1e:a4:ab:b6:21:90:8b:0b:e9:09:e4:cd:2d:97:4d:a6:
         e5:0b:f4:9b:48:59:ae:46:59:f5:1a:c2:88:4f:04:61:21:6d:
         f9:08:21:58:1a:4a:9f:b1:65:1f:5c:5e:7f:de:9f:19:e2:44:
         69:f4:67:25:54:4c:35:fa:51:d6:7e:ec:a7:78:cc:1e:d5:7e:
         eb:ad:ac:b3:bc:e9:12:28:04:bc:fc:9b:62:48:e0:dd:cc:70:
         62:b3:d3:59:d0:44:b7:cd:d1:dc:1c:d6:5a:9a:4c:1e:ac:67:
         95:a2:d8:77:08:be:d8:59:39:f8:e3:4a:c1:c7:70:05:f3:f5:
         3e:8c:16:b7:47:6b:0b:a1:e0:a5:4a:45:cf:c9:6d:ba:c2:55:
         5b:6e:96:f0:45:4c:74:07:4b:09:70:ef:16:bd:82:cc:3c:06:
         89:a5:ec:67:7a:d9:93:38:02:3b:13:f6:0a:ce:fc:ee:ed:3b:
         35:fb:68:e2:10:9d:22:3a:2e:6d:f6:83:12:77:7a:a7:83:8b:
         71:8e:fa:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----