Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
File:                     0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft (raw, json)
Hash identifier:          MMNT4sIewRyG+7TXm/WA0D8XZpQaBIvUOCuI/5Jrz2E=
Subject key identifier:   48:F8:0F:31:CA:2D:7B:3F:23:DA:5F:90:9E:58:9B:27:04:78:03:99
Authority key identifier: D1:DB:4A:7D:1E:6A:BF:FB:CD:A7:8B:FC:33:12:50:DD:16:BE:3D:E0
Certificate issuer:       /CN=d1db4a7d1e6abffbcda78bfc331250dd16be3de0
Certificate serial:       019E2091273578BA9CA40A91920E849ED0C1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
Manifest number:          0FB1
Signing time:             Wed 13 May 2026 09:00:44 +0000
Manifest this update:     Wed 13 May 2026 09:00:44 +0000
Manifest next update:     Thu 14 May 2026 09:00:44 +0000
Files and hashes:         1: 0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl (hash: 45qAbmowOumuKelgHZQKGtrdlQeyCr+A9m3IMXtg/u4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 14 May 2026 06:33:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:20:91:27:35:78:ba:9c:a4:0a:91:92:0e:84:9e:d0:c1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d1db4a7d1e6abffbcda78bfc331250dd16be3de0
        Validity
            Not Before: May 13 09:00:44 2026 GMT
            Not After : May 14 09:00:44 2026 GMT
        Subject: CN=48f80f31ca2d7b3f23da5f909e589b2704780399
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:f2:46:95:ea:13:51:6b:72:c4:69:a3:6f:f1:
                    be:1d:74:d4:07:e3:e0:4e:5c:0f:0d:4d:30:70:4b:
                    db:8a:ac:4d:4f:ac:30:ac:7d:b2:27:36:c2:b4:c7:
                    3f:40:5b:d6:31:a1:64:06:82:93:4a:57:87:62:93:
                    25:8b:40:22:54:03:4d:0d:f7:02:c4:19:d5:bc:dc:
                    f5:1d:a2:9f:3b:a4:56:10:43:8a:17:dc:3b:3b:fd:
                    54:1a:5f:f6:f3:9d:da:a0:fe:b4:82:95:2b:0b:39:
                    c7:db:62:9f:15:c4:ab:96:83:39:6e:16:ad:72:67:
                    31:f5:60:c2:2c:ef:44:60:7b:a3:85:b0:53:3f:31:
                    fa:79:a4:38:d2:f3:d7:1d:a2:66:71:8a:b7:4b:8b:
                    27:35:81:ca:2a:37:6e:70:f4:f6:34:75:48:ff:b4:
                    2f:6d:38:3d:fa:b2:33:8d:c2:ca:cd:fd:98:72:4e:
                    b2:34:f9:a0:e2:3e:ec:16:1f:ba:c3:93:7a:25:be:
                    d8:bf:4d:61:35:bc:c0:40:3d:05:3d:4e:f0:5e:64:
                    7f:b5:73:60:4d:44:ee:33:f6:5c:50:fc:df:9e:37:
                    6f:3a:ff:89:51:1e:63:14:f6:d5:e9:1a:d8:be:10:
                    06:7e:0c:27:e5:f0:a8:c9:5b:c3:57:70:48:fa:bd:
                    6e:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:F8:0F:31:CA:2D:7B:3F:23:DA:5F:90:9E:58:9B:27:04:78:03:99
            X509v3 Authority Key Identifier:
                keyid:D1:DB:4A:7D:1E:6A:BF:FB:CD:A7:8B:FC:33:12:50:DD:16:BE:3D:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:01:07:56:46:0e:1a:83:59:f8:16:47:f3:d4:14:25:46:6d:
         85:51:0e:e7:ae:34:6e:c6:94:a6:5c:f4:19:be:72:b5:92:1f:
         f0:02:69:57:09:b5:3c:c7:78:ea:4a:4d:03:6f:5e:14:0c:3e:
         b1:8f:d1:55:88:19:b6:6e:3e:09:25:be:cd:5a:f9:da:f2:df:
         00:86:df:73:45:e7:8b:0f:ee:47:ec:6e:45:a1:f2:8c:99:74:
         29:01:d7:96:0a:2a:6c:b0:2b:60:d6:13:36:f2:80:c2:db:1b:
         e5:82:9e:9c:5a:12:bd:86:0e:f9:3b:96:98:c8:d4:0b:24:39:
         3b:0f:be:0a:15:f4:6a:d0:82:d1:3a:78:7c:91:d2:a7:7b:4d:
         fb:d3:11:4c:82:59:6e:25:ff:2e:dd:46:75:50:b7:a0:3b:56:
         10:52:14:27:ec:58:b7:f9:b7:36:41:23:b0:3e:ed:ac:0e:e5:
         36:25:39:46:39:ac:c0:01:1c:fb:dc:5c:df:84:2b:3d:81:c3:
         cc:aa:f9:10:6b:22:8b:7f:e4:01:ab:6f:f4:8b:4d:2d:8b:d1:
         85:c6:a9:b9:fc:a4:db:1d:ac:27:92:9c:b2:b8:b1:c6:77:54:
         91:b9:94:e5:9e:83:71:c0:f3:bb:3c:7b:7f:22:82:ee:c9:fb:
         a6:79:81:43
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gkSc1eLqcpAqRkg6EntDBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxZGI0YTdkMWU2YWJmZmJjZGE3OGJmYzMzMTI1MGRkMTZi
ZTNkZTAwHhcNMjYwNTEzMDkwMDQ0WhcNMjYwNTE0MDkwMDQ0WjAzMTEwLwYDVQQD
Eyg0OGY4MGYzMWNhMmQ3YjNmMjNkYTVmOTA5ZTU4OWIyNzA0NzgwMzk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1vJGleoTUWtyxGmjb/G+HXTUB+Pg
TlwPDU0wcEvbiqxNT6wwrH2yJzbCtMc/QFvWMaFkBoKTSleHYpMli0AiVANNDfcC
xBnVvNz1HaKfO6RWEEOKF9w7O/1UGl/2853aoP60gpUrCznH22KfFcSrloM5bhat
cmcx9WDCLO9EYHujhbBTPzH6eaQ40vPXHaJmcYq3S4snNYHKKjducPT2NHVI/7Qv
bTg9+rIzjcLKzf2Yck6yNPmg4j7sFh+6w5N6Jb7Yv01hNbzAQD0FPU7wXmR/tXNg
TUTuM/ZcUPzfnjdvOv+JUR5jFPbV6RrYvhAGfgwn5fCoyVvDV3BI+r1uMQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEj4DzHKLXs/I9pfkJ5YmycEeAOZMB8GA1UdIwQY
MBaAFNHbSn0ear/7zaeL/DMSUN0Wvj3gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGR0S2ZSNXF2X3ZOcDR2OE14SlEzUmEtUGVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8xNWFkMDgtMGZkMC00MDAwLTk2NjIt
Y2M3OGFmNGU4MDE2LzEvMGR0S2ZSNXF2X3ZOcDR2OE14SlEzUmEtUGVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi8xNWFkMDgtMGZkMC00MDAwLTk2NjItY2M3OGFmNGU4MDE2
LzEvMGR0S2ZSNXF2X3ZOcDR2OE14SlEzUmEtUGVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUAEHVkYO
GoNZ+BZH89QUJUZthVEO5640bsaUplz0Gb5ytZIf8AJpVwm1PMd46kpNA29eFAw+
sY/RVYgZtm4+CSW+zVr52vLfAIbfc0Xniw/uR+xuRaHyjJl0KQHXlgoqbLArYNYT
NvKAwtsb5YKenFoSvYYO+TuWmMjUCyQ5Ow++ChX0atCC0Tp4fJHSp3tN+9MRTIJZ
biX/Lt1GdVC3oDtWEFIUJ+xYt/m3NkEjsD7trA7lNiU5RjmswAEc+9xc34QrPYHD
zKr5EGsii3/kAatv9ItNLYvRhcapufyk2x2sJ5KcsrixxndUkbmU5Z6DccDzuzx7
fyKC7sn7pnmBQw==
-----END CERTIFICATE-----