Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft
File:                     6YMf0OexWxfgoKfcz8q7Bj18R8o.mft (raw, json)
Hash identifier:          hU4lLr06ua8VRDiPeX0/Zpt5ETp63MswPsgN14uciHM=
Subject key identifier:   00:5A:2E:59:F7:E9:A5:38:29:E6:EF:37:5A:89:2A:80:C9:E3:8B:7C
Authority key identifier: E9:83:1F:D0:E7:B1:5B:17:E0:A0:A7:DC:CF:CA:BB:06:3D:7C:47:CA
Certificate issuer:       /CN=e9831fd0e7b15b17e0a0a7dccfcabb063d7c47ca
Certificate serial:       019E1E34F230831757054D60A79E42489A1C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft
Manifest number:          06E7
Signing time:             Tue 12 May 2026 22:00:46 +0000
Manifest this update:     Tue 12 May 2026 22:00:46 +0000
Manifest next update:     Wed 13 May 2026 22:00:46 +0000
Files and hashes:         1: 6YMf0OexWxfgoKfcz8q7Bj18R8o.crl (hash: Jo6fkikQsAx0BzfrS6krE1H1hGZopLPJgXA3xjWn39w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 22:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1e:34:f2:30:83:17:57:05:4d:60:a7:9e:42:48:9a:1c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e9831fd0e7b15b17e0a0a7dccfcabb063d7c47ca
        Validity
            Not Before: May 12 22:00:46 2026 GMT
            Not After : May 13 22:00:46 2026 GMT
        Subject: CN=005a2e59f7e9a53829e6ef375a892a80c9e38b7c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:39:76:2f:b5:cf:37:9e:38:d8:f1:c4:ad:cd:
                    26:c8:39:08:7d:99:a0:d1:d6:ba:18:18:2d:e0:0c:
                    1c:cd:b8:62:0d:3d:56:1e:ca:49:3e:cf:ad:63:d0:
                    c8:5d:72:41:fc:49:50:d6:7c:ff:d6:66:05:cd:3b:
                    8b:38:13:29:21:71:83:41:14:70:4e:d5:0f:d2:11:
                    18:78:83:9d:8f:69:cb:3c:69:02:28:f5:7b:71:25:
                    42:90:92:ec:61:6f:1b:90:1c:d9:bd:ec:80:ca:ec:
                    2d:b9:53:c6:5e:dc:2d:74:a7:37:7a:9b:6e:e0:cc:
                    89:db:80:39:03:85:98:df:ce:3e:02:1d:44:fe:f8:
                    eb:ed:38:8e:d2:f4:8c:45:36:89:50:39:d7:de:2f:
                    f1:03:e9:2f:17:fb:90:ad:a7:cc:e5:da:b1:33:08:
                    14:6c:bf:b3:4c:f0:9c:08:49:52:3d:a7:62:89:5c:
                    df:7e:83:1c:d6:64:9d:dd:2a:90:c9:43:d7:3a:8a:
                    c6:5b:74:c7:d0:28:cb:06:ef:27:6b:e9:33:00:b4:
                    9f:77:bb:c1:17:f6:96:0b:93:45:3a:aa:11:0c:67:
                    67:ee:3c:fc:03:94:a3:61:71:fa:63:ca:4f:73:a1:
                    2a:77:f7:54:38:ba:d9:1c:21:40:9c:7d:82:5c:8a:
                    44:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:5A:2E:59:F7:E9:A5:38:29:E6:EF:37:5A:89:2A:80:C9:E3:8B:7C
            X509v3 Authority Key Identifier:
                keyid:E9:83:1F:D0:E7:B1:5B:17:E0:A0:A7:DC:CF:CA:BB:06:3D:7C:47:CA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:d2:6d:6b:f9:fe:c4:8e:de:0d:ac:07:28:3f:7e:5c:4c:c9:
         63:10:3e:25:7b:86:e1:97:94:60:79:7b:7e:f2:eb:db:6b:67:
         0e:32:7e:90:e2:ea:02:2b:96:0f:24:d2:71:0d:c4:46:5d:ea:
         25:d5:48:e6:15:e5:ff:0a:44:41:13:eb:e5:2b:67:60:6c:cd:
         67:63:3a:36:c6:73:a7:b2:54:cc:e2:ce:a6:32:44:d2:9d:7e:
         cb:a6:a6:32:47:3b:a5:e4:ec:81:f1:13:f0:37:d9:cc:4e:1e:
         9c:2f:cb:c5:af:70:5f:fd:c7:62:2f:b1:5e:c2:1c:8f:41:1d:
         e0:8f:09:1b:5a:81:00:df:54:84:ca:84:80:55:eb:42:53:77:
         4a:b6:b2:b3:e6:f8:9d:49:a3:b7:a9:1f:05:94:70:9e:16:08:
         3e:bb:8a:bb:3f:10:f5:25:e6:80:6d:6e:d6:de:ca:54:eb:41:
         bc:bd:2c:17:a6:d0:29:56:0d:59:bf:ac:98:ba:14:68:0f:28:
         e7:54:04:9e:be:fe:7d:f2:80:00:ed:7f:ca:d8:2d:3f:24:df:
         2a:bf:bb:3e:55:f9:73:f0:ef:fc:a5:d8:b1:c1:47:74:c1:a7:
         95:55:9b:1e:84:0f:f7:28:77:65:80:de:37:f5:92:98:18:8f:
         4c:03:db:82
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eNPIwgxdXBU1gp55CSJocMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5ODMxZmQwZTdiMTViMTdlMGEwYTdkY2NmY2FiYjA2M2Q3
YzQ3Y2EwHhcNMjYwNTEyMjIwMDQ2WhcNMjYwNTEzMjIwMDQ2WjAzMTEwLwYDVQQD
EygwMDVhMmU1OWY3ZTlhNTM4MjllNmVmMzc1YTg5MmE4MGM5ZTM4YjdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jl2L7XPN5442PHErc0myDkIfZmg
0da6GBgt4AwczbhiDT1WHspJPs+tY9DIXXJB/ElQ1nz/1mYFzTuLOBMpIXGDQRRw
TtUP0hEYeIOdj2nLPGkCKPV7cSVCkJLsYW8bkBzZveyAyuwtuVPGXtwtdKc3eptu
4MyJ24A5A4WY384+Ah1E/vjr7TiO0vSMRTaJUDnX3i/xA+kvF/uQrafM5dqxMwgU
bL+zTPCcCElSPadiiVzffoMc1mSd3SqQyUPXOorGW3TH0CjLBu8na+kzALSfd7vB
F/aWC5NFOqoRDGdn7jz8A5SjYXH6Y8pPc6Eqd/dUOLrZHCFAnH2CXIpEGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFABaLln36aU4KebvN1qJKoDJ44t8MB8GA1UdIwQY
MBaAFOmDH9DnsVsX4KCn3M/KuwY9fEfKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNllNZjBPZXhXeGZnb0tmY3o4cTdCajE4UjhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi85NGZkOGEtM2I2NS00YWY3LTg4NWQt
MDE0N2UxM2E5OTNlLzEvNllNZjBPZXhXeGZnb0tmY3o4cTdCajE4UjhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi85NGZkOGEtM2I2NS00YWY3LTg4NWQtMDE0N2UxM2E5OTNl
LzEvNllNZjBPZXhXeGZnb0tmY3o4cTdCajE4UjhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHtJta/n+
xI7eDawHKD9+XEzJYxA+JXuG4ZeUYHl7fvLr22tnDjJ+kOLqAiuWDyTScQ3ERl3q
JdVI5hXl/wpEQRPr5StnYGzNZ2M6NsZzp7JUzOLOpjJE0p1+y6amMkc7peTsgfET
8DfZzE4enC/Lxa9wX/3HYi+xXsIcj0Ed4I8JG1qBAN9UhMqEgFXrQlN3Srays+b4
nUmjt6kfBZRwnhYIPruKuz8Q9SXmgG1u1t7KVOtBvL0sF6bQKVYNWb+smLoUaA8o
51QEnr7+ffKAAO1/ytgtPyTfKr+7PlX5c/Dv/KXYscFHdMGnlVWbHoQP9yh3ZYDe
N/WSmBiPTAPbgg==
-----END CERTIFICATE-----