Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft
File:                     Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft (raw, json)
Hash identifier:          i1c6BmR+Haivm5xNczkGsTuD0i6hSVWbi49rudQ+2u4=
Subject key identifier:   79:BB:E9:32:FA:B3:43:D9:A5:4D:7F:82:99:BB:2F:10:B7:E3:B6:23
Authority key identifier: 16:86:F7:BE:9B:A1:71:C3:27:46:AB:4E:D2:0B:E8:82:BD:30:43:56
Certificate issuer:       /CN=1686f7be9ba171c32746ab4ed20be882bd304356
Certificate serial:       0197D6D02E2E88E4831AEAD9FB2774B807AD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Fob3vpuhccMnRqtO0gvogr0wQ1Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft
Manifest number:          0355
Signing time:             Fri 04 Jul 2025 19:00:56 +0000
Manifest this update:     Fri 04 Jul 2025 19:00:56 +0000
Manifest next update:     Sat 05 Jul 2025 19:00:56 +0000
Files and hashes:         1: Fob3vpuhccMnRqtO0gvogr0wQ1Y.crl (hash: Hf4ytoqs92/12crXfiN+HwsXvrUWvjpbvbOzDb7eK2E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Fob3vpuhccMnRqtO0gvogr0wQ1Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 05 Jul 2025 17:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:d6:d0:2e:2e:88:e4:83:1a:ea:d9:fb:27:74:b8:07:ad
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1686f7be9ba171c32746ab4ed20be882bd304356
        Validity
            Not Before: Jul  4 19:00:56 2025 GMT
            Not After : Jul  5 19:00:56 2025 GMT
        Subject: CN=79bbe932fab343d9a54d7f8299bb2f10b7e3b623
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:59:08:20:ad:c0:3a:c7:0d:7d:0b:7c:fc:04:
                    e4:24:2a:e4:35:49:4b:fb:7a:1a:3b:d3:6b:d9:fa:
                    0d:1f:cf:67:6f:21:6b:bf:d7:88:80:e9:a6:36:74:
                    90:0e:55:78:47:6c:07:e6:36:af:36:bc:bd:b1:70:
                    dc:c7:d2:ab:76:a4:38:9f:c7:32:cb:22:13:6b:75:
                    79:91:e8:d0:f2:e7:24:ba:c9:14:fd:2f:00:05:5c:
                    e0:e5:90:78:6f:cc:2b:85:63:57:d1:ba:58:73:19:
                    31:22:d5:db:e9:4b:62:cf:53:e2:42:26:03:00:69:
                    7e:b5:ad:ee:c4:61:0d:ae:b4:91:f4:6d:95:40:92:
                    4a:f1:fd:0e:77:58:3b:9b:33:f8:60:d0:ff:a1:fd:
                    9d:c5:e8:6d:06:25:30:8e:9d:46:c7:29:34:1b:99:
                    4a:3b:5e:ad:fe:a0:f7:24:5b:10:70:46:e1:c1:8d:
                    a9:8c:e0:2a:c4:9a:50:98:16:79:89:3e:fe:fb:19:
                    00:77:ea:59:2f:5f:aa:80:bc:e5:7e:37:77:93:1d:
                    c0:3d:1b:20:32:74:62:41:11:0a:e4:2c:22:fb:7c:
                    5a:37:18:1b:0d:1a:3b:a0:44:f7:a2:82:58:d1:5a:
                    4d:61:c3:04:73:e5:25:ba:ba:13:16:13:b3:b1:14:
                    cf:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:BB:E9:32:FA:B3:43:D9:A5:4D:7F:82:99:BB:2F:10:B7:E3:B6:23
            X509v3 Authority Key Identifier:
                keyid:16:86:F7:BE:9B:A1:71:C3:27:46:AB:4E:D2:0B:E8:82:BD:30:43:56

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fob3vpuhccMnRqtO0gvogr0wQ1Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7ca808-c795-40ef-8a49-74a98cb66fff/1/Fob3vpuhccMnRqtO0gvogr0wQ1Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7d:7d:27:4b:9a:d7:a0:c8:1f:cd:2b:03:77:df:19:53:58:34:
         c7:7b:8e:cd:0e:ca:ec:cd:34:14:90:f7:b9:2b:5b:f2:75:67:
         4b:21:a5:e9:ba:e4:9e:78:ab:33:22:13:60:9b:9d:43:e9:6d:
         4f:b6:ad:ee:b5:77:9f:70:64:c8:3e:ce:bb:59:c2:b1:2b:22:
         a2:5a:39:1c:47:78:d6:d5:a9:63:15:d3:08:76:53:df:c8:28:
         be:ec:86:fc:d7:02:83:ae:9d:99:e4:d9:39:74:b2:9c:e1:80:
         74:50:69:b2:6c:ce:06:b5:6b:9d:45:71:66:a8:de:9a:ea:2c:
         e3:36:58:62:61:27:1a:26:8e:1c:5f:c1:fb:b2:d7:10:d1:58:
         87:ce:b2:5c:03:59:bc:1f:5c:91:74:52:57:b4:11:4a:a7:dc:
         02:51:6e:e7:8f:bc:4b:d6:17:e0:77:f9:09:10:28:f0:21:bd:
         a0:ec:54:1a:37:4a:89:7c:42:16:e2:75:a6:7c:d2:97:12:a6:
         17:4b:f0:fc:51:a0:4e:2c:ca:d3:51:ce:62:32:db:0c:4e:20:
         d2:4f:33:8b:72:10:2d:d9:c3:00:c2:68:fd:0e:7d:fe:f2:3c:
         da:76:4e:a9:ca:d2:e5:4a:35:b6:b3:b1:ee:a4:41:2b:1c:8b:
         e1:47:69:5c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfW0C4uiOSDGurZ+yd0uAetMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2ODZmN2JlOWJhMTcxYzMyNzQ2YWI0ZWQyMGJlODgyYmQz
MDQzNTYwHhcNMjUwNzA0MTkwMDU2WhcNMjUwNzA1MTkwMDU2WjAzMTEwLwYDVQQD
Eyg3OWJiZTkzMmZhYjM0M2Q5YTU0ZDdmODI5OWJiMmYxMGI3ZTNiNjIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7lkIIK3AOscNfQt8/ATkJCrkNUlL
+3oaO9Nr2foNH89nbyFrv9eIgOmmNnSQDlV4R2wH5javNry9sXDcx9KrdqQ4n8cy
yyITa3V5kejQ8uckuskU/S8ABVzg5ZB4b8wrhWNX0bpYcxkxItXb6Utiz1PiQiYD
AGl+ta3uxGENrrSR9G2VQJJK8f0Od1g7mzP4YND/of2dxehtBiUwjp1Gxyk0G5lK
O16t/qD3JFsQcEbhwY2pjOAqxJpQmBZ5iT7++xkAd+pZL1+qgLzlfjd3kx3APRsg
MnRiQREK5Cwi+3xaNxgbDRo7oET3ooJY0VpNYcMEc+UluroTFhOzsRTPzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHm76TL6s0PZpU1/gpm7LxC347YjMB8GA1UdIwQY
MBaAFBaG976boXHDJ0arTtIL6IK9MENWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRm9iM3ZwdWhjY01uUnF0TzBndm9ncjB3UTFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy83Y2E4MDgtYzc5NS00MGVmLThhNDkt
NzRhOThjYjY2ZmZmLzEvRm9iM3ZwdWhjY01uUnF0TzBndm9ncjB3UTFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy83Y2E4MDgtYzc5NS00MGVmLThhNDktNzRhOThjYjY2ZmZm
LzEvRm9iM3ZwdWhjY01uUnF0TzBndm9ncjB3UTFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfX0nS5rX
oMgfzSsDd98ZU1g0x3uOzQ7K7M00FJD3uStb8nVnSyGl6brknnirMyITYJudQ+lt
T7at7rV3n3BkyD7Ou1nCsSsiolo5HEd41tWpYxXTCHZT38govuyG/NcCg66dmeTZ
OXSynOGAdFBpsmzOBrVrnUVxZqjemuos4zZYYmEnGiaOHF/B+7LXENFYh86yXANZ
vB9ckXRSV7QRSqfcAlFu54+8S9YX4Hf5CRAo8CG9oOxUGjdKiXxCFuJ1pnzSlxKm
F0vw/FGgTizK01HOYjLbDE4g0k8zi3IQLdnDAMJo/Q59/vI82nZOqcrS5Uo1trOx
7qRBKxyL4UdpXA==
-----END CERTIFICATE-----