Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft
File:                     2V_Z-7sug4agu3amyEH8aKfD65g.mft (raw, json)
Hash identifier:          bDOLxLuMPCgc28JBaEW0MHogJmK+HGSshAkwki6jKXg=
Subject key identifier:   D7:73:B0:AD:55:E4:97:FB:17:9A:97:BB:62:EF:42:52:D8:8F:BF:A1
Authority key identifier: D9:5F:D9:FB:BB:2E:83:86:A0:BB:76:A6:C8:41:FC:68:A7:C3:EB:98
Certificate issuer:       /CN=d95fd9fbbb2e8386a0bb76a6c841fc68a7c3eb98
Certificate serial:       019E1D59A2512B05EBFCDE38BEE2B9EE6A48
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft
Manifest number:          0557
Signing time:             Tue 12 May 2026 18:01:13 +0000
Manifest this update:     Tue 12 May 2026 18:01:13 +0000
Manifest next update:     Wed 13 May 2026 18:01:13 +0000
Files and hashes:         1: 2V_Z-7sug4agu3amyEH8aKfD65g.crl (hash: YTIXaUbRLSJirRqAI2e4camAcHUkB+Q6wMPtYU0udls=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1d:59:a2:51:2b:05:eb:fc:de:38:be:e2:b9:ee:6a:48
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d95fd9fbbb2e8386a0bb76a6c841fc68a7c3eb98
        Validity
            Not Before: May 12 18:01:13 2026 GMT
            Not After : May 13 18:01:13 2026 GMT
        Subject: CN=d773b0ad55e497fb179a97bb62ef4252d88fbfa1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:84:f2:a3:48:8b:b7:e2:f0:1d:b6:c2:e7:86:
                    74:7b:cc:be:8f:c8:c0:07:5e:8b:59:dc:d3:89:90:
                    d6:61:c1:81:b5:49:22:cd:5b:6e:45:79:bc:d0:ab:
                    c1:67:c9:76:53:39:a5:63:48:bb:d3:20:ea:75:4d:
                    d1:14:55:55:91:be:1a:55:6d:b0:e3:72:4c:fc:9e:
                    d6:6d:2d:3f:3a:d8:b8:6d:4e:e6:ce:48:a9:27:69:
                    a0:54:b8:63:1f:16:22:89:39:2c:d8:17:7f:a1:db:
                    b9:89:2d:db:ae:79:a3:fd:b2:5e:68:90:9c:aa:2c:
                    ca:1d:22:05:8a:d6:50:89:90:2a:5b:3e:ef:da:88:
                    c2:52:38:9d:69:b1:8b:10:cc:d8:02:f2:4d:18:8e:
                    67:c3:67:7e:0d:a8:75:c5:1f:7d:47:0a:40:41:9d:
                    f4:35:bc:99:92:ba:c6:75:bf:85:8d:1c:e3:be:22:
                    8d:b9:50:86:14:c4:61:d3:b8:58:3b:63:dc:87:e6:
                    fd:64:96:a9:2f:8c:eb:9c:c1:fe:85:e0:03:b5:cf:
                    a6:ef:df:ad:60:54:4c:64:f5:48:22:c2:32:e1:7b:
                    e0:71:39:47:8b:61:1a:4a:6b:d9:79:1f:57:c6:1c:
                    9e:3a:5e:06:95:f2:62:ad:23:0a:25:9a:99:ae:fa:
                    8f:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D7:73:B0:AD:55:E4:97:FB:17:9A:97:BB:62:EF:42:52:D8:8F:BF:A1
            X509v3 Authority Key Identifier:
                keyid:D9:5F:D9:FB:BB:2E:83:86:A0:BB:76:A6:C8:41:FC:68:A7:C3:EB:98

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2V_Z-7sug4agu3amyEH8aKfD65g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d3220c-4d66-4d4c-9358-320df2eb0fd2/1/2V_Z-7sug4agu3amyEH8aKfD65g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:65:18:a7:eb:b7:b9:97:3a:3f:2f:b4:f0:8e:53:e2:eb:74:
         b4:4f:1f:31:02:da:b3:b4:27:2e:5a:1f:55:8e:86:4f:c8:3c:
         c9:b8:3b:43:ce:f1:28:ae:ee:be:e4:1d:c9:9b:ca:b2:66:29:
         0f:e1:ae:e6:30:13:7b:6a:43:62:e2:e1:16:96:9e:e4:18:15:
         dd:b6:91:b2:99:fe:e1:f6:69:d5:c3:ca:ed:b5:3f:6e:c3:64:
         f7:d8:33:24:45:74:81:db:bc:66:11:8d:6c:01:d7:0a:8a:4d:
         50:07:31:9d:01:11:ce:97:5c:a6:55:a7:a1:bc:8c:f7:24:f3:
         06:2c:db:df:c6:cb:f4:82:e5:56:5a:fb:17:7c:f0:b1:0b:11:
         32:5f:90:f7:43:86:f1:a4:b5:30:55:d8:0a:d3:22:b8:d5:f1:
         9b:00:a2:84:33:a2:ad:a1:1c:7a:14:ab:a0:cf:29:78:a8:99:
         2f:f3:11:6a:e5:3b:3e:fc:5a:9b:65:66:74:66:81:3b:f6:bd:
         0b:bf:bd:ee:48:f0:07:ef:50:69:33:1c:f9:13:00:66:48:2f:
         ee:26:36:13:19:de:2a:03:7e:76:ac:93:2b:8c:f2:9d:66:87:
         cd:24:0e:10:68:65:88:a0:cc:0b:72:13:c7:a6:0e:0b:a4:78:
         4d:9b:f4:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----