Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
File:                     13j4yccHK3MEiPnjISjdiVveMtM.mft (raw, json)
Hash identifier:          ZZX2ssiHqqVngtKtWNpJ7q4+MSY3LCHwOMLsQ3ELATc=
Subject key identifier:   8C:6D:E3:3A:27:F6:6E:00:8C:BA:70:20:D4:D5:5A:19:6A:A7:77:3E
Authority key identifier: D7:78:F8:C9:C7:07:2B:73:04:88:F9:E3:21:28:DD:89:5B:DE:32:D3
Certificate issuer:       /CN=d778f8c9c7072b730488f9e32128dd895bde32d3
Certificate serial:       019E1D59219E091255D3C4785E2726462F29
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/13j4yccHK3MEiPnjISjdiVveMtM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
Manifest number:          091F
Signing time:             Tue 12 May 2026 18:00:40 +0000
Manifest this update:     Tue 12 May 2026 18:00:40 +0000
Manifest next update:     Wed 13 May 2026 18:00:40 +0000
Files and hashes:         1: 13j4yccHK3MEiPnjISjdiVveMtM.crl (hash: k5bhtOMnesxB5XbKa7sLk88J72U8UUAj9gEB5J5f2f0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/13j4yccHK3MEiPnjISjdiVveMtM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1d:59:21:9e:09:12:55:d3:c4:78:5e:27:26:46:2f:29
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d778f8c9c7072b730488f9e32128dd895bde32d3
        Validity
            Not Before: May 12 18:00:40 2026 GMT
            Not After : May 13 18:00:40 2026 GMT
        Subject: CN=8c6de33a27f66e008cba7020d4d55a196aa7773e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:82:7c:54:af:45:22:19:74:f5:2a:2d:33:1e:
                    c5:b5:be:e8:c4:08:09:c1:d5:a3:a6:37:2e:59:ed:
                    11:27:90:c1:26:14:c2:de:ae:88:1c:78:fa:c5:95:
                    de:50:d9:52:c4:74:13:32:82:51:b5:c6:77:c5:87:
                    e9:bd:a0:75:39:0f:69:36:4e:39:a1:6c:94:80:4f:
                    a0:c2:f4:af:64:e2:50:29:e2:b4:5e:36:90:f9:1e:
                    30:a8:3c:20:a0:58:0a:b0:05:c9:9c:ec:bd:8b:9f:
                    24:38:bb:e9:47:1f:22:d3:3c:b9:67:ed:ff:2d:cf:
                    41:2e:c6:22:92:d8:86:1f:8b:6d:e0:41:61:c2:28:
                    60:50:a1:53:1d:0f:ab:31:23:73:33:fd:4e:de:09:
                    3e:22:35:39:1d:52:ef:73:e7:e2:cd:14:2e:05:64:
                    0c:3f:89:ba:03:89:94:aa:f7:1e:75:b9:07:e7:c5:
                    9e:1e:94:88:4b:69:e2:24:09:54:7b:f7:eb:53:49:
                    c0:62:89:cc:c0:a9:70:b1:d4:c7:13:d5:27:bd:2f:
                    11:94:81:33:3e:f3:52:b8:78:9c:f6:32:fa:ef:93:
                    a2:94:b1:26:30:16:c7:c1:23:9c:3a:a7:b0:29:3d:
                    25:08:0c:b8:f8:0c:54:a9:7c:a3:98:2a:e0:f9:2f:
                    38:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8C:6D:E3:3A:27:F6:6E:00:8C:BA:70:20:D4:D5:5A:19:6A:A7:77:3E
            X509v3 Authority Key Identifier:
                keyid:D7:78:F8:C9:C7:07:2B:73:04:88:F9:E3:21:28:DD:89:5B:DE:32:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/13j4yccHK3MEiPnjISjdiVveMtM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/a284f7-aade-4168-a9d0-58be927f42e9/1/13j4yccHK3MEiPnjISjdiVveMtM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:cd:04:05:23:a2:f3:43:83:e9:ac:7d:d3:f1:78:52:9f:ee:
         24:ce:86:af:e0:c4:a3:c8:58:15:b2:0c:94:a5:60:b0:68:c2:
         6c:88:c5:f2:99:f7:2c:bc:bc:11:3f:b4:7b:95:e7:42:b3:6d:
         04:42:5c:5d:26:a6:61:15:78:18:1c:be:80:8b:72:01:8f:e8:
         b8:32:74:55:c4:7a:2c:7d:12:eb:a4:a9:26:e5:64:6c:e2:67:
         f2:a7:77:b4:05:4c:ec:9c:6f:a4:38:31:67:93:87:c7:f9:99:
         50:dc:b0:8a:af:76:4a:40:cb:87:ba:cf:98:e0:1b:3b:81:36:
         ef:7f:9f:92:6f:9a:cb:c5:6b:d1:fd:b7:76:22:8c:d3:80:8c:
         cc:79:12:66:91:66:d7:1c:60:72:bb:b7:f8:82:06:ec:61:01:
         f2:df:39:05:ae:fe:53:d4:b4:57:bf:dc:28:7f:26:49:4d:fa:
         95:ef:3c:cc:c2:a1:e3:50:d0:fc:cf:b6:87:ae:cf:34:b5:d0:
         45:11:45:a6:12:f6:7e:2b:8e:1f:ca:7d:ab:48:0f:78:3d:b7:
         9a:8c:6a:2b:8b:33:44:47:28:c8:cf:a0:53:df:b1:2a:cf:d8:
         d0:71:8f:e6:7b:88:d4:53:1f:8b:cb:09:96:f1:7a:16:a9:ae:
         c0:51:b8:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----