Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft
File:                     BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft (raw, json)
Hash identifier:          PhODynEYG2MoETrhT6JvlfeFjH0oNz7kqfoQYMgFSO0=
Subject key identifier:   BF:6E:B0:4B:97:CE:6A:17:E6:AC:4A:73:03:F0:53:19:8F:CD:38:32
Authority key identifier: 05:6C:66:D4:5F:E7:E2:F3:55:99:57:2A:77:6B:12:76:4D:C6:9A:01
Certificate issuer:       /CN=056c66d45fe7e2f35599572a776b12764dc69a01
Certificate serial:       019E1EDA0076F4790A7996A9E50FF2429262
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BWxm1F_n4vNVmVcqd2sSdk3GmgE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft
Manifest number:          030C
Signing time:             Wed 13 May 2026 01:01:03 +0000
Manifest this update:     Wed 13 May 2026 01:01:03 +0000
Manifest next update:     Thu 14 May 2026 01:01:03 +0000
Files and hashes:         1: BWxm1F_n4vNVmVcqd2sSdk3GmgE.crl (hash: VP1bMeRyWlBF5wjBuxqj99VdST0pptlmv2NivhamSKM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BWxm1F_n4vNVmVcqd2sSdk3GmgE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 23:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1e:da:00:76:f4:79:0a:79:96:a9:e5:0f:f2:42:92:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=056c66d45fe7e2f35599572a776b12764dc69a01
        Validity
            Not Before: May 13 01:01:03 2026 GMT
            Not After : May 14 01:01:03 2026 GMT
        Subject: CN=bf6eb04b97ce6a17e6ac4a7303f053198fcd3832
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:24:d6:0c:0c:72:25:45:7a:96:21:28:1f:3e:
                    f8:fb:15:56:b2:45:64:8c:65:fe:48:8e:42:8a:cc:
                    e6:8e:e5:42:91:21:89:9f:8f:f4:99:fc:6a:a4:3e:
                    c6:68:dc:be:8e:e0:eb:c1:83:9e:53:50:13:6f:be:
                    5d:a7:82:9c:a1:09:90:13:05:3c:2a:3a:4d:7e:8b:
                    2e:84:10:70:f7:29:97:a4:6c:66:8f:96:9e:60:e1:
                    54:de:65:bf:ac:35:c1:d4:31:b0:64:55:98:ff:9c:
                    8e:69:e4:78:75:fa:fa:6a:21:ea:33:23:84:23:0c:
                    69:b7:66:73:7f:aa:1f:a5:b6:16:7e:2d:23:42:68:
                    f3:f6:f7:ea:f6:8e:89:f8:ca:3d:3a:75:57:43:88:
                    76:f6:8e:9f:da:22:ac:19:ba:b9:f2:52:6a:27:35:
                    25:28:81:13:d3:29:ef:c6:f0:e8:12:80:05:e3:1f:
                    08:40:e9:10:c1:3b:c2:c1:e4:06:33:7b:3f:53:a2:
                    33:a5:14:1e:ea:30:d6:76:0c:d8:20:65:f9:61:18:
                    d2:53:d9:ef:7b:91:6f:d1:bd:7c:a5:e7:26:da:0b:
                    5a:83:b4:2d:4f:ac:ec:3c:8f:c9:5b:bc:b8:bb:f3:
                    b8:ab:bd:6a:f1:5b:c7:d9:09:57:fb:16:42:1e:a4:
                    9b:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:6E:B0:4B:97:CE:6A:17:E6:AC:4A:73:03:F0:53:19:8F:CD:38:32
            X509v3 Authority Key Identifier:
                keyid:05:6C:66:D4:5F:E7:E2:F3:55:99:57:2A:77:6B:12:76:4D:C6:9A:01

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWxm1F_n4vNVmVcqd2sSdk3GmgE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         73:27:ae:e2:2e:ad:bb:77:03:ee:ad:de:8a:36:6f:46:c9:5e:
         b1:ab:f2:bd:14:01:5c:4d:d8:60:f3:91:9f:fd:34:0e:06:30:
         21:f4:89:fc:3d:58:ab:60:d5:41:e1:1c:84:2b:67:2e:1e:b4:
         46:05:cd:1b:33:59:bf:0d:62:4f:37:89:b3:85:ef:fe:e8:b5:
         65:56:a3:b4:7c:b7:eb:3a:d4:40:8c:0e:be:03:ba:7d:f5:ec:
         a8:9d:49:a3:5d:dd:43:f8:de:8d:6b:94:71:9e:45:9b:12:4d:
         fd:78:d5:ba:ec:71:c7:d0:b7:c9:63:77:54:bc:0b:f4:4f:fd:
         b8:21:4c:c6:f3:ed:99:1e:16:22:97:28:4b:00:c1:a4:78:bc:
         5a:52:6e:3b:75:3c:04:69:1c:8d:e6:b6:a6:3f:41:ba:05:33:
         f4:32:e4:d1:e3:fd:2d:10:15:53:d3:5e:a2:98:63:f2:f9:0a:
         3a:a6:9e:bb:b5:f7:6c:51:84:6b:37:58:be:b8:9a:35:78:66:
         a8:e6:83:11:1c:87:ca:03:dc:4a:57:12:df:ab:3e:b4:c4:13:
         bb:f1:0e:e9:b0:4f:b5:5f:45:eb:51:da:3b:53:2e:8e:b8:1d:
         16:a9:37:c3:7d:7e:b8:b4:d3:0b:77:58:64:41:99:6f:63:3b:
         78:60:dd:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----