Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
File:                     71j4Vyvdd9mBQRGA4u-aioAsdqw.mft (raw, json)
Hash identifier:          S45VwOaYiVRai2JdevgUfN+aOm4XM7o37C23TJ4+PO0=
Subject key identifier:   0E:01:2E:3D:6F:B5:E0:A7:2D:D9:48:17:86:67:04:C8:F1:5F:34:27
Authority key identifier: EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC
Certificate issuer:       /CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac
Certificate serial:       019E1D902F42DBEA7F16DE27F199937EB2B1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
Manifest number:          0481
Signing time:             Tue 12 May 2026 19:00:48 +0000
Manifest this update:     Tue 12 May 2026 19:00:48 +0000
Manifest next update:     Wed 13 May 2026 19:00:48 +0000
Files and hashes:         1: 71j4Vyvdd9mBQRGA4u-aioAsdqw.crl (hash: D1RFoSRN+/uxKZZWzGJMfb5n+7sZJPlRu+XtrVWJPaU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1d:90:2f:42:db:ea:7f:16:de:27:f1:99:93:7e:b2:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ef58f8572bdd77d981411180e2ef9a8a802c76ac
        Validity
            Not Before: May 12 19:00:48 2026 GMT
            Not After : May 13 19:00:48 2026 GMT
        Subject: CN=0e012e3d6fb5e0a72dd94817866704c8f15f3427
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:54:41:e5:cd:d7:11:38:b1:a4:63:c5:1f:ee:
                    02:9b:70:2b:ba:1b:d0:c6:cd:48:20:59:6d:05:f2:
                    7b:68:3d:f0:89:ed:3b:23:29:62:32:bf:70:2b:50:
                    61:2f:7b:be:e4:6e:ca:70:05:38:39:be:a3:7f:1a:
                    34:e6:da:ce:09:e2:5f:23:18:48:e1:da:92:1c:2a:
                    1f:a8:5f:6c:cd:a7:43:d0:69:2c:9d:d3:05:c1:79:
                    7d:8f:46:38:7a:51:5e:e5:58:63:86:42:ed:46:e8:
                    58:2c:42:9b:8e:3f:9c:0e:a2:7c:d4:d4:82:11:ac:
                    ae:e1:5c:56:9e:dd:80:99:21:db:b5:f3:ba:45:5f:
                    9f:dd:6d:68:be:60:23:ce:04:15:c3:4e:26:91:98:
                    ce:a1:a8:ef:0f:de:87:73:84:09:80:1e:9c:aa:62:
                    bb:a9:3a:f7:8c:fd:8e:7b:7f:45:19:11:64:41:f9:
                    10:47:e8:d1:56:fe:2c:0a:94:cf:97:76:bd:5d:f4:
                    1f:02:9d:f0:58:4c:43:bf:6e:a8:b1:20:b1:06:99:
                    16:fa:f1:d6:79:38:51:bf:27:c8:04:72:5d:5c:4b:
                    8c:85:54:b2:bd:d9:85:16:c0:ee:6f:d1:71:9a:be:
                    6f:50:94:90:5d:e4:62:f5:78:0d:80:5d:ff:1f:20:
                    0c:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:01:2E:3D:6F:B5:E0:A7:2D:D9:48:17:86:67:04:C8:F1:5F:34:27
            X509v3 Authority Key Identifier:
                keyid:EF:58:F8:57:2B:DD:77:D9:81:41:11:80:E2:EF:9A:8A:80:2C:76:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71j4Vyvdd9mBQRGA4u-aioAsdqw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/9b7108-e12f-4f8a-a5e0-38e805ff4c73/1/71j4Vyvdd9mBQRGA4u-aioAsdqw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:bb:c5:89:99:e2:77:60:db:c3:c9:04:5a:b7:59:65:52:46:
         fc:fb:43:79:e9:1f:fc:9a:f0:fe:da:96:ff:fb:e3:3b:2d:2a:
         ca:b5:98:b4:22:a4:a1:d6:60:58:9b:9b:82:ec:66:d2:e9:79:
         70:5a:b2:06:17:53:ba:b2:91:c1:b0:dd:91:a6:47:77:0c:6d:
         9a:8e:d0:94:ef:68:99:94:c2:f1:cd:4b:16:a9:f2:ee:1d:4e:
         ac:ee:78:88:04:59:cc:5a:1c:78:b2:d1:d9:42:5b:6f:9d:49:
         4d:66:f8:8b:41:47:87:b0:a6:65:ec:5d:97:25:39:49:b5:e4:
         ed:b8:aa:00:f7:91:9b:3b:a5:62:cb:ed:08:ea:cc:86:a7:96:
         ec:35:35:51:fc:57:cc:31:60:c7:74:a3:67:ba:07:95:e4:bd:
         b3:27:a3:05:e3:9e:00:9c:7a:7d:9f:d6:80:f8:ee:95:c3:78:
         06:34:6b:1a:94:10:55:cf:37:9b:f8:fc:31:8f:09:e8:92:3b:
         6a:bf:47:66:c3:e6:b0:64:2b:76:1b:3f:64:d1:df:ed:94:7b:
         24:26:77:6a:69:3b:2e:63:a4:20:a0:ff:eb:37:ae:ea:01:d3:
         41:83:8a:e6:76:a5:d5:df:1a:b2:30:a3:00:73:4c:0d:f1:8b:
         48:47:af:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----