Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ee5f33-b1eb-4d08-9e87-2ed7a715f8d7/1/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.mft
File:                     1j-OQvuEQqSKfUfvTAtuFHUUv8Q.mft (raw, json)
Hash identifier:          uYTH7e8Q4Hs/bBliNze3LujKA7w3FXamu5vci+ilIaY=
Subject key identifier:   E6:75:5D:EF:F7:EC:20:9E:64:36:68:D2:60:E2:B6:0C:57:C2:7D:DB
Authority key identifier: D6:3F:8E:42:FB:84:42:A4:8A:7D:47:EF:4C:0B:6E:14:75:14:BF:C4
Certificate issuer:       /CN=d63f8e42fb8442a48a7d47ef4c0b6e147514bfc4
Certificate serial:       019E1D911912B0742918A04E1A8CAD79BC66
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/ee5f33-b1eb-4d08-9e87-2ed7a715f8d7/1/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.mft
Manifest number:          1051
Signing time:             Tue 12 May 2026 19:01:48 +0000
Manifest this update:     Tue 12 May 2026 19:01:48 +0000
Manifest next update:     Wed 13 May 2026 19:01:48 +0000
Files and hashes:         1: 1j-OQvuEQqSKfUfvTAtuFHUUv8Q.crl (hash: QrSIyL4oufvE1/wu5YWmtfAIOLJhUEmwBFWJ84wKIVc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/ee5f33-b1eb-4d08-9e87-2ed7a715f8d7/1/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/ee5f33-b1eb-4d08-9e87-2ed7a715f8d7/1/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1d:91:19:12:b0:74:29:18:a0:4e:1a:8c:ad:79:bc:66
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d63f8e42fb8442a48a7d47ef4c0b6e147514bfc4
        Validity
            Not Before: May 12 19:01:48 2026 GMT
            Not After : May 13 19:01:48 2026 GMT
        Subject: CN=e6755deff7ec209e643668d260e2b60c57c27ddb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:8a:3e:f3:d0:f4:6d:01:a5:2f:76:04:49:97:
                    b1:0a:8f:91:61:8b:31:f7:0b:8a:21:a5:21:d7:47:
                    6c:1e:c5:4d:c6:98:b8:29:0e:49:5d:f0:4f:bb:fd:
                    3b:f9:74:54:6b:4e:d4:4e:0e:d5:03:17:27:d8:b5:
                    4d:01:5c:13:eb:d7:f9:20:2c:4d:94:61:29:ba:d2:
                    0e:f4:e4:0c:e7:22:9f:50:54:3a:23:08:15:f3:a6:
                    f7:4f:a2:72:f4:2e:77:98:19:c6:cc:e9:87:f6:b3:
                    cf:5f:53:96:7b:cd:b1:12:6a:b9:2b:17:49:ad:40:
                    c2:f3:54:c5:b5:f2:ac:4b:48:59:d5:4b:3a:2a:58:
                    bc:bb:a9:1a:a9:14:dd:f4:41:c9:a9:c5:6b:2f:6c:
                    bf:e2:26:01:b6:7c:ba:fa:60:00:42:96:13:70:d4:
                    7f:4a:51:5d:c2:e9:67:94:18:f8:f3:1a:cd:56:60:
                    b0:8a:01:fa:d4:f7:10:1b:eb:e4:f3:22:cb:93:2e:
                    f9:79:37:e1:41:b9:a6:be:aa:f4:64:55:86:0d:23:
                    d9:cb:30:ba:7f:c2:16:58:6b:32:99:27:be:16:39:
                    8d:59:84:02:49:37:ff:84:24:9a:9e:93:77:57:49:
                    ac:13:3f:a2:b6:07:12:a2:09:59:8a:f2:fe:92:7e:
                    81:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:75:5D:EF:F7:EC:20:9E:64:36:68:D2:60:E2:B6:0C:57:C2:7D:DB
            X509v3 Authority Key Identifier:
                keyid:D6:3F:8E:42:FB:84:42:A4:8A:7D:47:EF:4C:0B:6E:14:75:14:BF:C4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ee5f33-b1eb-4d08-9e87-2ed7a715f8d7/1/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ee5f33-b1eb-4d08-9e87-2ed7a715f8d7/1/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6a:e6:55:4b:89:67:c0:cf:c5:44:f5:3f:e0:1e:00:2f:2a:ed:
         5b:fd:b9:63:b8:c1:e7:48:9f:a5:7b:7c:75:1b:0a:f0:be:3e:
         a4:d0:2b:38:bc:b3:b9:cd:79:4e:05:d3:56:01:53:65:a9:e0:
         9f:4a:a4:de:29:f5:a8:67:32:5d:ec:85:fd:90:76:e0:f8:72:
         a1:24:84:c9:da:57:17:b7:96:93:48:2f:67:cd:8b:9c:ae:0b:
         b8:22:ee:aa:44:6c:fb:da:13:81:5c:fc:9a:19:af:8b:6c:b3:
         89:3a:78:c2:4d:09:82:9a:0b:f5:ba:05:f3:b9:42:e0:65:67:
         55:c8:b7:cf:db:7f:69:97:aa:92:47:79:d6:86:eb:96:1e:d8:
         65:f7:7a:4b:fb:83:bf:7d:b1:d1:28:c4:1a:2e:a7:a6:b0:5a:
         c5:a7:98:ab:4d:98:af:50:0a:40:9a:2d:a5:54:f8:13:5c:3e:
         ab:79:50:e1:56:49:b0:32:1b:b4:1a:e3:c7:15:f2:a8:89:2f:
         c9:12:fc:c0:7c:86:7a:09:fc:b5:de:16:f1:0c:65:2f:85:7f:
         d8:92:c6:9c:b2:ae:e6:21:3a:c6:53:2e:95:d6:63:74:fb:d3:
         e4:ff:fb:52:3c:59:f9:ce:47:ce:ae:bf:3f:0b:18:cd:97:e0:
         b4:86:25:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----