Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
File:                     2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft (raw, json)
Hash identifier:          cM620nV13syZwXMSF3zZ3JGxkaaLcXTT9OYv+SBnCq4=
Subject key identifier:   BB:C8:8E:2C:75:D1:C6:48:4B:40:29:D2:93:C1:B7:86:BA:E5:83:12
Authority key identifier: DB:F5:BC:B9:1C:64:0A:0A:34:29:05:E5:A5:17:07:52:8F:5A:33:A1
Certificate issuer:       /CN=dbf5bcb91c640a0a342905e5a51707528f5a33a1
Certificate serial:       019E1E35281E7F0039FD23A86B1A70CDB888
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2_W8uRxkCgo0KQXlpRcHUo9aM6E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
Manifest number:          16F6
Signing time:             Tue 12 May 2026 22:01:00 +0000
Manifest this update:     Tue 12 May 2026 22:01:00 +0000
Manifest next update:     Wed 13 May 2026 22:01:00 +0000
Files and hashes:         1: 2_W8uRxkCgo0KQXlpRcHUo9aM6E.crl (hash: lw/CLxZGUC4AN7M3OEVC9UhhhA1ltZOi5mU4ur6Lp6s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2_W8uRxkCgo0KQXlpRcHUo9aM6E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 22:01:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1e:35:28:1e:7f:00:39:fd:23:a8:6b:1a:70:cd:b8:88
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dbf5bcb91c640a0a342905e5a51707528f5a33a1
        Validity
            Not Before: May 12 22:01:00 2026 GMT
            Not After : May 13 22:01:00 2026 GMT
        Subject: CN=bbc88e2c75d1c6484b4029d293c1b786bae58312
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:5a:f5:94:3f:df:e9:5f:96:21:78:54:ff:5a:
                    45:33:6b:99:dc:42:89:b5:8c:13:c0:50:68:b0:52:
                    94:78:04:c5:a0:f4:70:7a:69:22:09:41:fb:0a:7b:
                    ee:c4:c0:47:1c:36:c1:4f:a9:19:fe:d5:62:b4:f0:
                    65:66:a2:0b:4a:b0:ff:30:d3:ab:3d:02:71:32:53:
                    dd:50:98:f6:aa:b4:78:98:53:39:f2:60:5d:5e:2a:
                    97:3f:10:d8:3b:dc:8b:bf:9a:2d:5c:4d:90:d0:74:
                    e0:05:34:ab:61:55:64:27:f9:a8:ec:46:07:9e:f1:
                    8a:28:e9:21:d9:08:1e:ca:4f:46:c3:c6:a0:cc:48:
                    c8:ea:35:36:47:15:27:e5:5b:a2:e2:70:43:93:6c:
                    a6:5c:af:ba:fb:28:15:b2:1b:11:7a:51:98:43:7e:
                    e7:c8:31:38:17:cb:a0:38:06:d1:7d:bf:77:2a:54:
                    4a:a7:e9:bf:36:43:55:27:21:e4:60:b7:c1:62:c1:
                    74:b7:d7:37:fb:e1:43:7f:14:d5:6f:f3:ee:6c:f5:
                    89:08:31:cf:fc:fe:2f:1e:5c:a3:44:96:33:7c:76:
                    9f:b8:ec:ba:ef:a1:23:59:fd:fd:45:47:85:0e:a5:
                    b1:5d:f9:86:ad:9a:fd:05:13:89:c9:8a:a6:bf:cc:
                    27:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:C8:8E:2C:75:D1:C6:48:4B:40:29:D2:93:C1:B7:86:BA:E5:83:12
            X509v3 Authority Key Identifier:
                keyid:DB:F5:BC:B9:1C:64:0A:0A:34:29:05:E5:A5:17:07:52:8F:5A:33:A1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2_W8uRxkCgo0KQXlpRcHUo9aM6E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:c1:b6:5c:a0:64:30:30:bd:36:91:60:b5:6a:bb:be:29:20:
         4a:32:1d:72:fc:c6:fb:e2:e7:5a:41:0f:e1:f3:55:8f:d7:04:
         da:55:88:29:de:8e:6b:cb:1c:e2:17:47:1a:dd:2c:cf:d4:dd:
         9c:99:82:3e:e3:02:ee:9d:ab:99:72:a8:8e:85:f9:87:34:bf:
         d9:fb:ce:cd:a7:6c:34:a7:89:5e:88:97:1e:44:0c:a8:db:2e:
         43:37:69:b3:9b:07:b2:04:c1:83:fb:99:5c:9b:b8:25:8b:42:
         1b:02:20:87:fd:84:9f:42:04:63:ed:ba:b5:d5:99:2e:08:09:
         ab:23:fb:ac:e6:42:68:7d:67:1f:48:e9:b0:e6:c0:55:bc:ad:
         37:15:0f:a5:25:d2:17:62:f4:d2:2e:5c:2c:a0:67:89:12:4c:
         23:8f:2b:d2:55:62:89:d8:1c:6d:fe:a5:25:dd:e4:4e:cb:14:
         2f:07:2f:5d:ef:13:6e:e3:f3:ca:12:89:bd:22:a7:b2:f7:25:
         7c:1f:98:37:14:97:1c:e3:20:4a:b1:d8:93:ba:2e:ed:56:c5:
         f1:66:3a:10:61:5f:2b:d0:52:a6:2f:1a:04:a4:44:fd:90:01:
         3e:73:b5:c4:9d:17:90:1c:79:f7:dd:53:73:b9:82:2f:3c:2f:
         98:41:30:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----