Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.mft
File:                     5BCXLMRZVogEu0t5HXwTz7IoOIM.mft (raw, json)
Hash identifier:          BOQaHMhE+2PDCtzFiI2ULnLrIl/7vfqI34pU4mjQQ9A=
Subject key identifier:   28:EC:24:D6:F4:85:D2:B4:B2:4B:D9:14:AB:DF:B4:C6:57:DB:37:3B
Authority key identifier: E4:10:97:2C:C4:59:56:88:04:BB:4B:79:1D:7C:13:CF:B2:28:38:83
Certificate issuer:       /CN=e410972cc459568804bb4b791d7c13cfb2283883
Certificate serial:       019E20FF37CC404E85D9854CFE3225ABC289
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5BCXLMRZVogEu0t5HXwTz7IoOIM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.mft
Manifest number:          16D6
Signing time:             Wed 13 May 2026 11:00:57 +0000
Manifest this update:     Wed 13 May 2026 11:00:57 +0000
Manifest next update:     Thu 14 May 2026 11:00:57 +0000
Files and hashes:         1: 5BCXLMRZVogEu0t5HXwTz7IoOIM.crl (hash: tVQog/KCRMuyIUfJx1CgYfbb7EUQQ5lBeiXVRRxlc1M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5BCXLMRZVogEu0t5HXwTz7IoOIM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 14 May 2026 06:33:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:20:ff:37:cc:40:4e:85:d9:85:4c:fe:32:25:ab:c2:89
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e410972cc459568804bb4b791d7c13cfb2283883
        Validity
            Not Before: May 13 11:00:57 2026 GMT
            Not After : May 14 11:00:57 2026 GMT
        Subject: CN=28ec24d6f485d2b4b24bd914abdfb4c657db373b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:6b:55:8a:4b:d6:17:4c:ef:62:4f:98:5d:22:
                    47:08:5f:85:1a:f6:37:ee:ae:ae:12:94:bc:aa:b5:
                    71:35:32:09:e1:7b:50:0d:31:d2:75:3e:58:59:a2:
                    cc:69:96:bc:73:63:e0:f5:8c:7e:7e:c3:f4:33:47:
                    3e:78:a2:32:14:7d:8e:7f:61:c5:b5:42:02:2c:b2:
                    f4:73:49:3a:dd:9f:57:8a:63:2c:a9:6f:2e:f9:8f:
                    ca:27:f6:14:09:d9:45:31:b8:62:72:88:82:57:81:
                    68:cc:ca:89:44:db:9e:e0:16:d5:03:c5:b4:61:38:
                    e7:9d:38:f3:be:f3:c4:6f:6a:d9:ad:6f:e4:7f:10:
                    04:e3:01:96:56:b8:b4:99:0c:94:6b:10:a1:ba:22:
                    48:89:04:5e:34:af:3d:a1:19:6f:40:33:ae:e4:0f:
                    00:4c:1b:a6:63:21:ed:b1:c6:0c:db:66:04:ac:f7:
                    0a:d9:63:9a:ca:0a:43:7b:2b:a2:67:49:7e:07:75:
                    ef:7a:46:38:87:67:1e:e2:e2:ba:93:0d:47:27:db:
                    c4:65:22:00:16:0d:52:ce:27:17:24:ec:58:25:8b:
                    3e:fb:c9:83:1e:72:2e:5b:10:a1:0d:9b:f5:a3:d7:
                    c2:56:3a:8d:ee:16:db:a7:8e:06:42:e3:d6:8a:2d:
                    a6:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                28:EC:24:D6:F4:85:D2:B4:B2:4B:D9:14:AB:DF:B4:C6:57:DB:37:3B
            X509v3 Authority Key Identifier:
                keyid:E4:10:97:2C:C4:59:56:88:04:BB:4B:79:1D:7C:13:CF:B2:28:38:83

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5BCXLMRZVogEu0t5HXwTz7IoOIM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/306e62-e584-492a-bf46-f27cef4ba224/1/5BCXLMRZVogEu0t5HXwTz7IoOIM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:cb:88:c9:b6:7c:f8:de:ee:29:a7:65:73:45:81:af:7d:3c:
         b9:8c:8f:47:70:1e:29:21:2a:1e:42:7b:a8:06:f8:a4:b6:ad:
         97:c0:c2:d6:68:6b:36:ac:b9:77:9c:9a:ad:18:d7:bf:58:6a:
         31:91:e4:50:87:fe:0a:3e:8b:06:5b:37:f4:31:9f:e0:07:12:
         56:0a:2a:05:85:29:f8:d1:d4:f2:29:3d:cf:21:22:bb:d7:65:
         1b:34:74:c8:c4:f1:9b:eb:88:8a:0b:6b:a9:fe:fd:15:3e:af:
         d6:40:80:bd:89:d4:b9:40:cf:d6:8f:b6:71:1f:73:b5:00:66:
         28:87:84:7e:8d:b7:85:84:58:73:43:fe:44:4b:66:82:58:e8:
         2a:28:f6:5c:96:88:50:78:5c:16:cb:08:b4:5d:d9:c9:6c:fc:
         23:be:17:26:28:cd:ed:8e:ff:cf:1e:7a:61:f4:97:cb:39:01:
         ed:73:72:03:35:f8:2e:1b:a9:7a:6d:a8:22:66:f4:aa:bc:f5:
         7c:dc:f6:b0:21:0f:65:12:61:2e:d6:f9:ca:52:af:55:fe:ec:
         e7:7d:52:c2:70:ff:4a:76:d6:98:7c:99:33:19:0a:58:01:d9:
         d2:4a:d9:f5:d2:f8:03:ad:1e:81:6d:95:96:ed:22:48:94:22:
         cb:34:87:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----