Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/6fef2f-a748-4796-96a0-d3ea707c8f18/1/2Bytep8KCbPVTabNzedDEvrMbXc.mft
File:                     2Bytep8KCbPVTabNzedDEvrMbXc.mft (raw, json)
Hash identifier:          Q55fYw5I5tRyLdlE7eB9SQJapKF62gCW9Nm70Fxz+8Q=
Subject key identifier:   37:E6:61:2D:C7:1A:47:4B:5D:F3:61:69:13:FF:26:70:D2:A1:6A:3A
Authority key identifier: D8:1C:AD:7A:9F:0A:09:B3:D5:4D:A6:CD:CD:E7:43:12:FA:CC:6D:77
Certificate issuer:       /CN=d81cad7a9f0a09b3d54da6cdcde74312facc6d77
Certificate serial:       019E1CB4E9784E2D3A5C931AD15AC7824928
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2Bytep8KCbPVTabNzedDEvrMbXc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ee/6fef2f-a748-4796-96a0-d3ea707c8f18/1/2Bytep8KCbPVTabNzedDEvrMbXc.mft
Manifest number:          0B6F
Signing time:             Tue 12 May 2026 15:01:18 +0000
Manifest this update:     Tue 12 May 2026 15:01:18 +0000
Manifest next update:     Wed 13 May 2026 15:01:18 +0000
Files and hashes:         1: 2Bytep8KCbPVTabNzedDEvrMbXc.crl (hash: aH7o1Lj5fgaR6vP0WbvoBchaUtieENAjlwcv0X0LpXA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ee/6fef2f-a748-4796-96a0-d3ea707c8f18/1/2Bytep8KCbPVTabNzedDEvrMbXc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ee/6fef2f-a748-4796-96a0-d3ea707c8f18/1/2Bytep8KCbPVTabNzedDEvrMbXc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2Bytep8KCbPVTabNzedDEvrMbXc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1c:b4:e9:78:4e:2d:3a:5c:93:1a:d1:5a:c7:82:49:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d81cad7a9f0a09b3d54da6cdcde74312facc6d77
        Validity
            Not Before: May 12 15:01:18 2026 GMT
            Not After : May 13 15:01:18 2026 GMT
        Subject: CN=37e6612dc71a474b5df3616913ff2670d2a16a3a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:9e:85:cf:01:b2:f8:4b:61:b4:98:46:aa:dd:
                    6c:8b:f6:4b:46:02:cd:50:6c:17:89:9e:8e:8f:94:
                    13:5a:ba:15:6e:59:27:54:05:a0:77:8f:06:6f:50:
                    71:3d:d3:02:f3:01:43:dd:1f:26:61:a2:e5:4d:dc:
                    fe:6c:53:a9:9f:5f:01:ea:37:f5:cd:20:55:32:19:
                    7a:7e:b9:a0:60:0a:87:21:9b:64:5f:57:57:fc:6c:
                    af:f3:4c:1b:51:83:e6:cf:7e:ea:66:c6:f5:5e:2f:
                    b8:d5:b6:31:cb:0d:e6:1c:62:5a:98:ed:3f:6c:2c:
                    9a:c5:13:b8:8d:3c:f7:9a:12:73:5c:e6:bb:8f:ce:
                    53:eb:b6:fc:7c:e6:2c:cd:ab:11:73:86:7a:74:bf:
                    37:a9:94:26:16:31:3b:05:a4:61:95:33:93:13:b3:
                    b0:fa:ce:5d:af:f8:99:d9:67:75:76:10:90:17:11:
                    b2:ae:3a:e3:e2:aa:a7:00:0a:9f:8b:09:91:9f:14:
                    e5:d9:d0:b2:50:0a:1a:e0:05:37:f7:d5:95:85:6c:
                    24:3c:7e:b0:60:27:87:5e:b8:9d:0d:6a:dc:f4:67:
                    c1:0c:22:aa:52:4d:23:8e:c4:f4:d4:6c:89:0a:33:
                    82:df:64:e9:98:a5:71:3a:c8:3f:2c:22:d6:fd:b2:
                    ce:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:E6:61:2D:C7:1A:47:4B:5D:F3:61:69:13:FF:26:70:D2:A1:6A:3A
            X509v3 Authority Key Identifier:
                keyid:D8:1C:AD:7A:9F:0A:09:B3:D5:4D:A6:CD:CD:E7:43:12:FA:CC:6D:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Bytep8KCbPVTabNzedDEvrMbXc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6fef2f-a748-4796-96a0-d3ea707c8f18/1/2Bytep8KCbPVTabNzedDEvrMbXc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6fef2f-a748-4796-96a0-d3ea707c8f18/1/2Bytep8KCbPVTabNzedDEvrMbXc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:a2:08:63:20:01:3d:58:6f:f8:fa:4d:b1:9c:d1:27:38:04:
         dc:45:9a:90:b9:10:a4:7c:f3:66:ef:e8:d9:a4:c8:d1:66:3b:
         3a:80:c4:c9:d6:8d:ed:d4:38:04:d6:73:2f:6b:ea:fa:4d:88:
         db:b1:c4:84:fa:66:14:d0:97:c2:db:e1:1d:e6:b2:f5:d4:b1:
         d5:44:7b:8d:4f:8f:42:ac:3c:ff:52:2d:dc:39:83:0e:ab:01:
         99:e3:02:5d:05:1d:a8:2a:0b:9e:81:3d:4b:5d:08:21:f8:be:
         e5:54:46:b5:10:46:a9:0d:12:7d:e7:71:f3:29:2a:98:07:cb:
         f8:f7:82:31:4f:35:eb:f5:e6:c4:ee:53:d3:c4:7c:1b:d6:6f:
         de:f9:01:da:d7:2e:22:96:fa:f9:bc:38:fe:92:4e:36:de:f1:
         5b:39:8e:55:e5:d5:eb:18:15:59:2a:f9:15:6c:5b:e8:1a:10:
         b0:46:37:dd:29:4e:90:6b:f5:97:db:57:61:5d:96:56:48:12:
         39:7c:e1:54:13:f0:95:e4:65:ec:44:c1:5c:7a:d0:11:42:aa:
         7e:d4:3a:41:c9:8d:49:fa:ad:2a:8e:13:be:17:b8:cf:b6:9f:
         2d:76:a2:4c:15:8c:45:b0:63:c8:23:38:80:7a:39:d5:40:dc:
         63:86:7d:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----