Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
File:                     5IKZWNgAyhrebhPKeygLIpzmYC4.mft (raw, json)
Hash identifier:          OyjCt+v5H1rePMYzvBFTpi8XRpY3xNS2+eCtM1QNq6Q=
Subject key identifier:   55:8E:57:A2:92:93:49:D6:8D:6B:AE:2D:F7:4C:7E:EB:FE:0A:B1:8C
Authority key identifier: E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E
Certificate issuer:       /CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
Certificate serial:       019E1E352044AB54FB9184E882B572B257BB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
Manifest number:          1903
Signing time:             Tue 12 May 2026 22:00:58 +0000
Manifest this update:     Tue 12 May 2026 22:00:58 +0000
Manifest next update:     Wed 13 May 2026 22:00:58 +0000
Files and hashes:         1: 5IKZWNgAyhrebhPKeygLIpzmYC4.crl (hash: 965AfOTHFpRQIy76hsIARfHS3W17Q01bY2pITsgiYUk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 May 2026 14:18:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9e:1e:35:20:44:ab:54:fb:91:84:e8:82:b5:72:b2:57:bb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
        Validity
            Not Before: May 12 22:00:58 2026 GMT
            Not After : May 13 22:00:58 2026 GMT
        Subject: CN=558e57a2929349d68d6bae2df74c7eebfe0ab18c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:07:99:0d:fd:42:a0:fd:6d:4e:91:5c:31:13:
                    e4:9d:5d:dc:43:2f:2b:6f:f1:35:5c:c0:0d:ce:1e:
                    95:11:61:c8:6f:99:70:1b:1a:7e:94:4a:19:fc:6e:
                    cd:a2:f3:14:02:cf:a2:ae:a8:ce:4d:62:c7:cd:7a:
                    30:62:eb:f8:c4:d5:1b:c5:38:f1:f0:cc:8b:46:30:
                    f6:25:2b:2a:2f:71:03:54:96:bb:12:f6:5f:0d:19:
                    bb:67:8b:84:a9:d1:cf:ec:22:b7:fb:22:32:98:09:
                    c6:18:5e:50:7d:28:c8:79:85:e5:48:60:f4:57:44:
                    6c:28:ed:d7:50:e0:52:27:c2:79:a4:54:8c:a6:24:
                    4e:3a:3d:8e:93:91:fc:a4:49:ad:17:13:2d:5f:57:
                    21:62:a8:91:35:ab:87:fa:20:61:fd:0a:91:77:b8:
                    c9:b6:68:e9:f1:2c:49:b6:6b:52:95:b5:45:47:d3:
                    c4:f2:4b:34:23:8d:ab:6d:9d:49:db:25:ae:62:e6:
                    0a:22:bc:a2:4f:c6:ad:41:28:f2:bd:a3:55:38:10:
                    e8:c4:fc:c1:f2:53:45:4a:29:9d:6e:44:d4:4c:f6:
                    dd:59:3c:03:43:ee:b9:a7:72:19:08:13:27:2f:07:
                    66:2c:f0:21:39:42:f9:52:88:e5:9f:cf:2a:cf:cb:
                    b9:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:8E:57:A2:92:93:49:D6:8D:6B:AE:2D:F7:4C:7E:EB:FE:0A:B1:8C
            X509v3 Authority Key Identifier:
                keyid:E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:61:af:8d:66:2d:9b:46:28:b7:37:b6:cb:56:9d:ce:5d:84:
         68:89:b1:a4:42:74:6b:a7:1a:47:6a:b0:eb:af:29:27:fe:a3:
         da:36:80:de:e3:99:58:a0:fa:fb:52:20:76:6c:d2:65:4e:6f:
         47:5a:04:a7:38:9c:72:19:a4:5e:d8:ed:53:da:37:fa:a0:1b:
         5d:54:a9:5a:04:e5:42:0b:1c:0f:5c:41:7e:ee:41:82:70:66:
         de:61:86:99:60:be:34:ed:70:39:1c:4f:af:e3:c8:19:45:4c:
         b6:ac:67:70:99:af:5e:b4:47:5d:40:b8:54:64:85:d2:cf:39:
         43:6f:99:7e:9e:02:3c:d5:a2:20:a0:ad:7a:82:30:dc:2d:1b:
         a0:66:6b:63:e9:18:26:f6:88:49:59:4f:98:0e:66:7a:f4:36:
         43:ce:f9:d1:bc:c6:bf:a0:7a:6c:08:6c:f9:fe:4f:d8:c7:1a:
         78:52:dd:dd:59:fa:3a:ab:08:49:f6:96:c8:b4:d1:6c:cd:8a:
         04:34:db:4c:ad:60:82:77:91:85:bf:c2:a4:50:3d:77:8b:e7:
         82:52:ed:c5:b8:dc:b6:48:c0:a2:80:01:7d:c9:ed:64:52:37:
         ca:89:67:fd:05:19:f9:46:d8:26:39:8d:e7:58:50:cb:15:5c:
         b2:f5:2d:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eNSBEq1T7kYTogrVysle7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ODI5OTU4ZDgwMGNhMWFkZTZlMTNjYTdiMjgwYjIyOWNl
NjYwMmUwHhcNMjYwNTEyMjIwMDU4WhcNMjYwNTEzMjIwMDU4WjAzMTEwLwYDVQQD
Eyg1NThlNTdhMjkyOTM0OWQ2OGQ2YmFlMmRmNzRjN2VlYmZlMGFiMThjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwAeZDf1CoP1tTpFcMRPknV3cQy8r
b/E1XMANzh6VEWHIb5lwGxp+lEoZ/G7NovMUAs+irqjOTWLHzXowYuv4xNUbxTjx
8MyLRjD2JSsqL3EDVJa7EvZfDRm7Z4uEqdHP7CK3+yIymAnGGF5QfSjIeYXlSGD0
V0RsKO3XUOBSJ8J5pFSMpiROOj2Ok5H8pEmtFxMtX1chYqiRNauH+iBh/QqRd7jJ
tmjp8SxJtmtSlbVFR9PE8ks0I42rbZ1J2yWuYuYKIryiT8atQSjyvaNVOBDoxPzB
8lNFSimdbkTUTPbdWTwDQ+65p3IZCBMnLwdmLPAhOUL5Uojln88qz8u5bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFWOV6KSk0nWjWuuLfdMfuv+CrGMMB8GA1UdIwQY
MBaAFOSCmVjYAMoa3m4TynsoCyKc5mAuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQt
MWQ1YmMwMDFhMWRlLzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQtMWQ1YmMwMDFhMWRl
LzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhWGvjWYt
m0Yotze2y1adzl2EaImxpEJ0a6caR2qw668pJ/6j2jaA3uOZWKD6+1IgdmzSZU5v
R1oEpzicchmkXtjtU9o3+qAbXVSpWgTlQgscD1xBfu5BgnBm3mGGmWC+NO1wORxP
r+PIGUVMtqxncJmvXrRHXUC4VGSF0s85Q2+Zfp4CPNWiIKCteoIw3C0boGZrY+kY
JvaISVlPmA5mevQ2Q8750bzGv6B6bAhs+f5P2McaeFLd3Vn6OqsISfaWyLTRbM2K
BDTbTK1ggneRhb/CpFA9d4vnglLtxbjctkjAooABfcntZFI3yoln/QUZ+UbYJjmN
51hQyxVcsvUtSg==
-----END CERTIFICATE-----