Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
File:                     A-aapu504w79uBm5yxvyHnhub6M.mft (raw, json)
Hash identifier:          uzXLFM95BQGszc4/vFwa1keBTfgFmFYjagHFlEn4bdQ=
Subject key identifier:   05:BE:50:A2:B3:E2:BC:CD:53:3A:D8:8E:35:41:2E:13:F7:06:1C:1D
Authority key identifier: 03:E6:9A:A6:EE:74:E3:0E:FD:B8:19:B9:CB:1B:F2:1E:78:6E:6F:A3
Certificate issuer:       /CN=03e69aa6ee74e30efdb819b9cb1bf21e786e6fa3
Certificate serial:       019E1BD8B18B8C5161A202FE39A1F9C9ABC9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
Manifest number:          07A1
Signing time:             Tue 12 May 2026 11:00:46 +0000
Manifest this update:     Tue 12 May 2026 11:00:46 +0000
Manifest next update:     Wed 13 May 2026 11:00:46 +0000
Files and hashes:         1: A-aapu504w79uBm5yxvyHnhub6M.crl (hash: CZW/w2Me7dX8tpXWXyKmfuVdcq9cBw5aS8uSFk663nI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 11:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1b:d8:b1:8b:8c:51:61:a2:02:fe:39:a1:f9:c9:ab:c9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=03e69aa6ee74e30efdb819b9cb1bf21e786e6fa3
        Validity
            Not Before: May 12 11:00:46 2026 GMT
            Not After : May 13 11:00:46 2026 GMT
        Subject: CN=05be50a2b3e2bccd533ad88e35412e13f7061c1d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:34:cb:81:32:dd:25:3d:80:2c:02:49:0f:17:
                    8f:27:59:0a:fe:a8:bd:d3:d6:4c:4b:f5:18:16:00:
                    c1:f1:03:df:93:03:60:ec:e1:8c:cb:5c:5d:2e:0e:
                    99:22:b8:cb:49:2c:36:07:85:64:32:0a:3d:3d:3a:
                    40:97:4c:3c:55:47:b7:f2:16:44:0c:80:dc:9b:64:
                    dc:3d:8c:ba:e5:3c:6c:d9:f7:63:4c:32:38:62:9a:
                    a0:da:fa:cc:6f:a7:b2:f9:d4:b7:38:59:ac:a2:3e:
                    76:f1:6e:ba:34:ba:52:d9:91:00:16:3f:e1:c7:3d:
                    21:41:80:a2:f8:65:9d:22:cd:be:8b:80:0e:64:ee:
                    98:58:42:ca:c0:9c:8f:46:33:2b:cf:fd:bf:23:85:
                    5a:f0:3a:c2:8c:db:71:1e:82:2a:02:c7:d0:24:2e:
                    07:bf:f4:60:37:93:4e:23:06:24:38:30:49:0a:66:
                    e0:e9:06:68:6d:85:fc:35:d4:35:93:23:7f:90:34:
                    52:3a:64:70:9b:03:ed:94:4f:60:58:8a:50:f2:13:
                    cd:c8:d8:6f:77:82:b9:36:f4:c5:71:06:8b:66:f8:
                    cc:75:f6:6e:ef:5a:25:6d:ef:83:25:a1:c5:83:23:
                    f0:82:af:bf:2f:80:9a:10:52:1a:92:7e:29:20:b0:
                    6b:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:BE:50:A2:B3:E2:BC:CD:53:3A:D8:8E:35:41:2E:13:F7:06:1C:1D
            X509v3 Authority Key Identifier:
                keyid:03:E6:9A:A6:EE:74:E3:0E:FD:B8:19:B9:CB:1B:F2:1E:78:6E:6F:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-aapu504w79uBm5yxvyHnhub6M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/a9e8fa-41d7-4bc6-9841-05a83ed70bc3/1/A-aapu504w79uBm5yxvyHnhub6M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:b5:86:f4:99:41:d2:27:04:39:b0:4e:4f:67:68:27:fa:91:
         a8:40:11:f0:8b:43:cd:de:7d:40:aa:cd:42:2a:ca:30:9b:8a:
         1e:b7:7d:3e:58:d5:ff:f6:1a:99:16:ce:fb:7e:d9:79:f1:a3:
         f3:32:84:6f:ab:f8:1e:49:38:24:30:c5:17:8c:19:90:44:cd:
         58:ee:54:1a:79:1e:8b:85:cb:6e:60:a5:ea:b9:2d:34:4b:41:
         a8:ae:33:88:00:c2:4b:a8:af:e7:dd:11:88:06:0a:e4:ff:83:
         40:20:82:de:c3:fd:6e:f4:9c:b9:34:6d:de:8d:88:7a:ea:17:
         db:de:fb:67:25:64:69:cb:68:b1:fe:0f:7d:dc:71:84:63:8c:
         c9:b5:d4:ae:b5:99:b0:b0:95:90:83:22:8a:fe:91:21:b4:26:
         48:57:7c:fb:81:0e:0b:d0:82:b6:33:6a:69:71:c9:e7:47:9b:
         d1:3d:3d:3e:a2:dc:24:ac:b6:3d:eb:bb:42:64:49:1b:2a:b9:
         ef:b1:e6:b6:1f:f9:9e:46:17:ec:d8:44:9d:a7:2b:88:43:6c:
         70:fe:7f:66:20:90:8b:cc:bf:0c:26:1f:c9:c6:fc:82:49:ce:
         5b:11:6d:ed:af:04:41:93:e5:76:7f:0a:3b:eb:7d:53:32:c7:
         13:27:e9:2e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4b2LGLjFFhogL+OaH5yavJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzZTY5YWE2ZWU3NGUzMGVmZGI4MTliOWNiMWJmMjFlNzg2
ZTZmYTMwHhcNMjYwNTEyMTEwMDQ2WhcNMjYwNTEzMTEwMDQ2WjAzMTEwLwYDVQQD
EygwNWJlNTBhMmIzZTJiY2NkNTMzYWQ4OGUzNTQxMmUxM2Y3MDYxYzFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyjTLgTLdJT2ALAJJDxePJ1kK/qi9
09ZMS/UYFgDB8QPfkwNg7OGMy1xdLg6ZIrjLSSw2B4VkMgo9PTpAl0w8VUe38hZE
DIDcm2TcPYy65Txs2fdjTDI4Ypqg2vrMb6ey+dS3OFmsoj528W66NLpS2ZEAFj/h
xz0hQYCi+GWdIs2+i4AOZO6YWELKwJyPRjMrz/2/I4Va8DrCjNtxHoIqAsfQJC4H
v/RgN5NOIwYkODBJCmbg6QZobYX8NdQ1kyN/kDRSOmRwmwPtlE9gWIpQ8hPNyNhv
d4K5NvTFcQaLZvjMdfZu71olbe+DJaHFgyPwgq+/L4CaEFIakn4pILBrJQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAW+UKKz4rzNUzrYjjVBLhP3BhwdMB8GA1UdIwQY
MBaAFAPmmqbudOMO/bgZucsb8h54bm+jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQS1hYXB1NTA0dzc5dUJtNXl4dnlIbmh1YjZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC9hOWU4ZmEtNDFkNy00YmM2LTk4NDEt
MDVhODNlZDcwYmMzLzEvQS1hYXB1NTA0dzc5dUJtNXl4dnlIbmh1YjZNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC9hOWU4ZmEtNDFkNy00YmM2LTk4NDEtMDVhODNlZDcwYmMz
LzEvQS1hYXB1NTA0dzc5dUJtNXl4dnlIbmh1YjZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ7WG9JlB
0icEObBOT2doJ/qRqEAR8ItDzd59QKrNQirKMJuKHrd9PljV//YamRbO+37ZefGj
8zKEb6v4Hkk4JDDFF4wZkETNWO5UGnkei4XLbmCl6rktNEtBqK4ziADCS6iv590R
iAYK5P+DQCCC3sP9bvScuTRt3o2IeuoX2977ZyVkactosf4PfdxxhGOMybXUrrWZ
sLCVkIMiiv6RIbQmSFd8+4EOC9CCtjNqaXHJ50eb0T09PqLcJKy2Peu7QmRJGyq5
77Hmth/5nkYX7NhEnacriENscP5/ZiCQi8y/DCYfycb8gknOWxFt7a8EQZPldn8K
O+t9UzLHEyfpLg==
-----END CERTIFICATE-----