Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.mft
File:                     5LDTQqkyMznAd8XGreEJO1pADyQ.mft (raw, json)
Hash identifier:          SI00Bw8R56c29yQYR0SbcCYgonQxQjuhCZKOmV2t0HY=
Subject key identifier:   DC:0F:A5:03:1D:43:BD:FD:14:2B:20:BB:82:40:55:CB:3B:72:37:BE
Authority key identifier: E4:B0:D3:42:A9:32:33:39:C0:77:C5:C6:AD:E1:09:3B:5A:40:0F:24
Certificate issuer:       /CN=e4b0d342a9323339c077c5c6ade1093b5a400f24
Certificate serial:       019E1BD93F82C0BA7EEA2EBAB43A67FC2314
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5LDTQqkyMznAd8XGreEJO1pADyQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.mft
Manifest number:          0569
Signing time:             Tue 12 May 2026 11:01:22 +0000
Manifest this update:     Tue 12 May 2026 11:01:22 +0000
Manifest next update:     Wed 13 May 2026 11:01:22 +0000
Files and hashes:         1: 5LDTQqkyMznAd8XGreEJO1pADyQ.crl (hash: Jyc/tE7M1zX3yiVjdVHUGnFb0H5WSR77HFXsrqkSWWU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5LDTQqkyMznAd8XGreEJO1pADyQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 11:01:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1b:d9:3f:82:c0:ba:7e:ea:2e:ba:b4:3a:67:fc:23:14
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4b0d342a9323339c077c5c6ade1093b5a400f24
        Validity
            Not Before: May 12 11:01:22 2026 GMT
            Not After : May 13 11:01:22 2026 GMT
        Subject: CN=dc0fa5031d43bdfd142b20bb824055cb3b7237be
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:b2:c1:b4:9a:c6:16:70:41:f6:03:33:32:4d:
                    4e:cd:06:4b:17:36:3c:e4:1b:a9:00:d5:12:4d:09:
                    9f:9b:84:d4:50:19:e1:86:42:70:de:1b:25:30:c8:
                    a3:f4:fd:53:f1:71:f0:4c:85:34:c9:12:52:38:3c:
                    d2:dd:7b:5d:2e:89:b2:62:b0:34:12:d0:79:57:62:
                    80:e6:ed:1e:ae:d2:87:fa:9f:53:07:f0:ea:e7:46:
                    1b:b1:7d:29:89:0d:bd:14:12:f8:f3:9a:eb:cc:8b:
                    31:22:57:a6:33:7b:35:9b:24:f0:d5:9f:71:9e:41:
                    1f:70:b5:ce:d3:a0:36:52:27:14:a0:6b:5e:c7:e0:
                    36:1d:36:2e:35:8e:c5:62:b3:71:50:ae:ff:eb:c0:
                    ce:26:77:92:80:fd:0e:39:cf:4a:cc:df:07:a1:09:
                    99:0f:db:b3:29:3e:3e:a1:6e:92:8d:35:fb:a2:68:
                    f7:53:83:79:21:06:c3:d2:fa:88:8e:c8:dc:99:c0:
                    7f:82:48:e0:52:3b:dc:05:4a:ff:86:cf:65:83:64:
                    2f:10:fc:1a:5b:45:94:2f:69:35:6f:b6:0f:dc:41:
                    03:9d:e8:3f:dc:c8:c9:33:46:a3:63:ed:49:d1:30:
                    75:fa:16:3d:6c:71:fc:cf:04:62:a3:ad:bd:bb:c3:
                    2b:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DC:0F:A5:03:1D:43:BD:FD:14:2B:20:BB:82:40:55:CB:3B:72:37:BE
            X509v3 Authority Key Identifier:
                keyid:E4:B0:D3:42:A9:32:33:39:C0:77:C5:C6:AD:E1:09:3B:5A:40:0F:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5LDTQqkyMznAd8XGreEJO1pADyQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/73/dcb110-62d6-44df-bde6-9a90a7ca508d/1/5LDTQqkyMznAd8XGreEJO1pADyQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:b9:a0:f5:d2:fc:76:2d:56:60:d9:ad:92:27:f5:26:95:09:
         77:32:76:13:03:0b:d1:93:26:1c:8f:54:48:ca:7c:f7:63:42:
         c5:48:f3:24:ec:0e:03:b1:b7:e4:bd:28:f5:a0:b5:6a:fe:ca:
         13:6f:ae:3d:fc:d8:19:26:42:b7:c1:9a:df:7f:28:dc:01:3b:
         a3:e4:9f:e9:b1:d9:6c:cb:2c:c2:74:ce:82:78:98:bb:f3:30:
         a5:55:55:5a:c3:9b:ca:84:a1:76:94:52:b4:86:e6:f8:c0:b3:
         bf:f3:64:da:ff:5a:f8:d4:ba:61:44:f3:0f:16:dc:13:89:05:
         e4:a7:a7:67:79:59:63:1e:af:b8:fe:63:bb:c0:c6:18:7a:51:
         4d:cf:a1:2b:97:a6:16:be:16:1c:b5:08:ff:49:f4:d6:f7:ff:
         af:e1:ad:8e:bc:a1:36:d8:4f:07:1a:0c:f7:7f:12:0e:53:9f:
         ff:26:1c:fc:e3:a6:c2:56:7e:5d:79:88:46:e5:6c:82:21:d4:
         0b:d4:50:f6:b0:67:7b:64:95:f4:aa:f2:a0:f2:88:6b:b8:9c:
         d8:94:d7:51:5a:fd:a0:f5:1f:8d:1a:05:ba:af:87:4e:aa:48:
         5b:1e:2f:c3:f9:42:52:64:21:99:fc:87:e7:eb:b0:7c:ae:75:
         f0:a8:a8:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4b2T+CwLp+6i66tDpn/CMUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0YjBkMzQyYTkzMjMzMzljMDc3YzVjNmFkZTEwOTNiNWE0
MDBmMjQwHhcNMjYwNTEyMTEwMTIyWhcNMjYwNTEzMTEwMTIyWjAzMTEwLwYDVQQD
EyhkYzBmYTUwMzFkNDNiZGZkMTQyYjIwYmI4MjQwNTVjYjNiNzIzN2JlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkrLBtJrGFnBB9gMzMk1OzQZLFzY8
5BupANUSTQmfm4TUUBnhhkJw3hslMMij9P1T8XHwTIU0yRJSODzS3XtdLomyYrA0
EtB5V2KA5u0ertKH+p9TB/Dq50YbsX0piQ29FBL485rrzIsxIlemM3s1myTw1Z9x
nkEfcLXO06A2UicUoGtex+A2HTYuNY7FYrNxUK7/68DOJneSgP0OOc9KzN8HoQmZ
D9uzKT4+oW6SjTX7omj3U4N5IQbD0vqIjsjcmcB/gkjgUjvcBUr/hs9lg2QvEPwa
W0WUL2k1b7YP3EEDneg/3MjJM0ajY+1J0TB1+hY9bHH8zwRio629u8MrAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNwPpQMdQ739FCsgu4JAVcs7cje+MB8GA1UdIwQY
MBaAFOSw00KpMjM5wHfFxq3hCTtaQA8kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUxEVFFxa3lNem5BZDhYR3JlRUpPMXBBRHlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My9kY2IxMTAtNjJkNi00NGRmLWJkZTYt
OWE5MGE3Y2E1MDhkLzEvNUxEVFFxa3lNem5BZDhYR3JlRUpPMXBBRHlRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My9kY2IxMTAtNjJkNi00NGRmLWJkZTYtOWE5MGE3Y2E1MDhk
LzEvNUxEVFFxa3lNem5BZDhYR3JlRUpPMXBBRHlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZLmg9dL8
di1WYNmtkif1JpUJdzJ2EwML0ZMmHI9USMp892NCxUjzJOwOA7G35L0o9aC1av7K
E2+uPfzYGSZCt8Ga338o3AE7o+Sf6bHZbMsswnTOgniYu/MwpVVVWsObyoShdpRS
tIbm+MCzv/Nk2v9a+NS6YUTzDxbcE4kF5KenZ3lZYx6vuP5ju8DGGHpRTc+hK5em
Fr4WHLUI/0n01vf/r+GtjryhNthPBxoM938SDlOf/yYc/OOmwlZ+XXmIRuVsgiHU
C9RQ9rBne2SV9KryoPKIa7ic2JTXUVr9oPUfjRoFuq+HTqpIWx4vw/lCUmQhmfyH
5+uwfK518Kio6A==
-----END CERTIFICATE-----