Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
File:                     5DWo9PNqSBGpLRlhc-HEmarMd9U.mft (raw, json)
Hash identifier:          Rjg7nMa7TY2wu8ZaJVsMk46nv6nK+SSXu9VAHwc+2Jk=
Subject key identifier:   EC:E6:CE:39:36:9D:F7:E1:5A:FD:71:F3:65:7F:90:01:4C:DC:CF:FF
Authority key identifier: E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5
Certificate issuer:       /CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
Certificate serial:       019E1D90D0333ED3050B5CADB688FD004773
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
Manifest number:          0FE3
Signing time:             Tue 12 May 2026 19:01:30 +0000
Manifest this update:     Tue 12 May 2026 19:01:30 +0000
Manifest next update:     Wed 13 May 2026 19:01:30 +0000
Files and hashes:         1: 5DWo9PNqSBGpLRlhc-HEmarMd9U.crl (hash: mfWMdSgx2TkA6PAanjmSe1VqdjOtvRoCZWwywQ4zB1s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1d:90:d0:33:3e:d3:05:0b:5c:ad:b6:88:fd:00:47:73
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e435a8f4f36a4811a92d196173e1c499aacc77d5
        Validity
            Not Before: May 12 19:01:30 2026 GMT
            Not After : May 13 19:01:30 2026 GMT
        Subject: CN=ece6ce39369df7e15afd71f3657f90014cdccfff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:46:0a:5c:7c:34:3a:9e:56:48:ee:21:3b:33:
                    8f:53:f4:89:0b:8f:53:26:ce:0b:9e:ed:58:e7:cd:
                    ef:2f:b6:cf:ba:5b:c8:af:92:98:2d:23:95:03:52:
                    12:d8:d7:a6:67:b7:6b:69:30:21:d9:cc:64:52:15:
                    0c:bb:f7:5a:d4:f9:cd:fd:50:d7:33:5e:e5:84:1b:
                    15:cd:ef:80:bb:de:10:59:32:6e:a4:f0:a0:05:e1:
                    83:ff:5a:3d:61:d4:01:40:c8:da:d4:09:e7:5d:b0:
                    5f:91:f9:1d:e9:a7:9d:13:8d:75:51:33:7f:0c:a0:
                    1d:db:8a:6f:e0:a3:79:82:df:4d:bb:2d:d2:fe:f8:
                    1b:8c:68:21:2e:f2:fc:0e:d5:a4:aa:94:18:1c:07:
                    e3:16:cf:fd:a4:24:e7:19:73:e4:a2:5a:dc:d6:09:
                    44:6e:1e:bb:6e:23:4f:62:ac:b1:a7:67:35:41:49:
                    0e:a4:1c:25:4f:39:80:a9:58:63:83:98:37:26:14:
                    c6:98:ed:a1:c4:8f:19:75:6c:07:6f:83:09:69:00:
                    60:36:a9:01:a0:9b:94:2f:2e:ed:dd:d7:82:e0:dc:
                    ce:95:82:67:f1:88:3b:a8:e7:91:a0:0c:99:c1:b8:
                    97:cc:8e:4a:74:36:c9:86:c9:db:00:ee:9e:47:07:
                    73:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:E6:CE:39:36:9D:F7:E1:5A:FD:71:F3:65:7F:90:01:4C:DC:CF:FF
            X509v3 Authority Key Identifier:
                keyid:E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         24:36:5b:3f:87:de:b6:b8:c1:f1:a0:a7:82:5e:ab:04:20:b2:
         b0:bd:02:95:b1:1b:31:a6:5f:0c:3a:83:60:06:fa:42:31:ce:
         71:80:0f:64:b9:03:27:73:30:33:e9:f0:16:89:e6:a7:8f:0c:
         c6:b5:8f:ba:c7:b8:30:32:c3:3d:4b:16:8b:75:ed:91:4b:ad:
         f7:ec:db:3e:f4:22:1a:08:8b:ca:c4:37:2d:7c:f7:cd:74:f5:
         9b:57:d3:27:4e:e9:8e:35:52:e2:f1:d1:b9:03:47:54:b5:1c:
         74:44:fd:b3:72:6d:8e:e2:45:89:e5:04:be:60:3f:b6:01:3c:
         35:9b:06:a9:89:18:c7:81:48:6a:b1:14:a8:f4:67:92:b5:38:
         47:43:8c:dc:90:37:66:3d:b5:b4:1f:89:fa:d6:28:69:17:79:
         f2:9b:e6:c7:f9:bb:f1:03:32:c8:db:e5:88:16:60:44:19:fc:
         fc:67:e8:f5:45:da:81:c3:91:dd:b6:ef:fa:d1:23:ba:4b:7a:
         27:1c:68:fb:25:7d:b1:91:ed:b7:00:9a:7d:dd:d2:18:ce:51:
         67:58:ed:21:80:3f:4f:85:0d:64:87:26:3e:f6:d1:46:44:20:
         5e:3d:75:7a:6b:a6:37:6d:37:e2:1d:01:f3:5d:8d:8d:dc:70:
         75:41:d6:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----