Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.mft
File:                     pHFXAbAK3kiVo5p2oNgQDsleq-M.mft (raw, json)
Hash identifier:          +V8LKZqI/w3fXpJvFXtVQGhTb7zlzgpVRkm+Yix+GlA=
Subject key identifier:   05:06:0A:05:96:93:AF:96:62:1F:9C:9C:C9:DA:C4:4F:A4:D8:15:68
Authority key identifier: A4:71:57:01:B0:0A:DE:48:95:A3:9A:76:A0:D8:10:0E:C9:5E:AB:E3
Certificate issuer:       /CN=a4715701b00ade4895a39a76a0d8100ec95eabe3
Certificate serial:       01992330D4781A603C047C932696F97F1F42
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pHFXAbAK3kiVo5p2oNgQDsleq-M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.mft
Manifest number:          02C3
Signing time:             Sun 07 Sep 2025 08:00:26 +0000
Manifest this update:     Sun 07 Sep 2025 08:00:26 +0000
Manifest next update:     Mon 08 Sep 2025 08:00:26 +0000
Files and hashes:         1: pHFXAbAK3kiVo5p2oNgQDsleq-M.crl (hash: v58lHgj6ySMdVr5AKFNzEEhq5IurN/b9FkeJ2KYeA9g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pHFXAbAK3kiVo5p2oNgQDsleq-M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:30:d4:78:1a:60:3c:04:7c:93:26:96:f9:7f:1f:42
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a4715701b00ade4895a39a76a0d8100ec95eabe3
        Validity
            Not Before: Sep  7 08:00:26 2025 GMT
            Not After : Sep  8 08:00:26 2025 GMT
        Subject: CN=05060a059693af96621f9c9cc9dac44fa4d81568
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:69:f6:ba:59:54:9d:aa:79:24:c5:b0:32:d9:
                    b2:0c:ef:6a:4b:40:e6:09:7e:cd:e3:9c:ff:00:87:
                    3f:45:80:29:1a:0e:c0:e5:4e:43:34:e7:d7:ff:80:
                    95:bc:7f:96:db:ac:b0:2f:79:40:7f:25:a7:a5:fb:
                    43:27:9e:0e:20:ed:af:c2:bd:4c:f4:47:01:2a:75:
                    a7:bf:58:b4:82:d4:24:4b:bd:fa:b9:f0:ca:99:ec:
                    79:ac:c0:d6:67:a9:74:43:e6:b5:9b:81:33:c6:7e:
                    b6:93:c0:ae:24:72:fc:44:c1:6a:be:b9:07:f8:f1:
                    3b:fc:12:67:71:3a:d4:e6:3a:37:06:35:d3:a7:79:
                    52:65:f2:99:37:49:18:76:67:6f:52:1d:e4:9a:9a:
                    49:07:33:24:83:8d:dc:84:fd:47:93:2e:17:01:24:
                    47:fc:80:bc:ab:45:1a:ba:73:cb:62:aa:aa:33:60:
                    85:13:d9:c6:3b:b9:5b:d1:03:e2:bb:65:21:a3:8a:
                    bb:34:71:ee:fe:02:7f:b8:ee:2c:05:b6:7c:02:93:
                    47:2b:ee:08:83:f1:d2:11:3e:e6:e7:70:8a:01:71:
                    2e:51:e6:b2:29:cd:a2:c6:9b:ec:74:64:98:08:a4:
                    fa:44:7b:6a:ea:5a:84:36:b2:98:de:fb:bb:67:0b:
                    aa:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:06:0A:05:96:93:AF:96:62:1F:9C:9C:C9:DA:C4:4F:A4:D8:15:68
            X509v3 Authority Key Identifier:
                keyid:A4:71:57:01:B0:0A:DE:48:95:A3:9A:76:A0:D8:10:0E:C9:5E:AB:E3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHFXAbAK3kiVo5p2oNgQDsleq-M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6037a5-5640-4b41-92e9-f6f2546bc60e/1/pHFXAbAK3kiVo5p2oNgQDsleq-M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:a8:01:8e:b2:b4:e7:26:c8:39:d9:10:35:86:9f:d7:79:63:
         ea:8e:60:cc:90:98:72:7b:11:e4:25:0e:38:0c:db:f8:ee:5a:
         9c:a8:16:38:64:6e:0e:5d:f8:ca:d7:fd:5e:dc:42:e2:25:55:
         42:d9:ba:5f:a1:62:b0:08:68:95:60:c4:e6:60:97:c2:7b:a4:
         8d:bd:b8:1e:b9:99:f1:35:23:45:d9:ec:eb:53:69:86:f0:72:
         31:4a:7e:eb:34:f0:6f:b8:c5:3b:be:c8:c3:e3:b2:64:c7:73:
         82:e0:05:a9:2a:82:c8:5b:15:04:34:f4:46:3b:f7:53:3a:7d:
         f2:f6:c8:f7:18:9b:72:dc:ec:63:66:58:ae:5b:80:b7:57:80:
         1a:78:99:0f:69:ee:d1:d2:60:09:c9:e4:48:53:ed:a6:45:37:
         34:4f:2f:a7:9e:27:d4:8f:2c:70:ec:ed:8e:69:cc:ae:26:70:
         95:1e:24:05:a1:90:7b:08:3a:99:7c:f4:55:03:97:f0:3d:4f:
         ac:b0:f1:eb:1d:60:ed:1f:8b:6a:c9:cf:8d:87:ef:8a:07:02:
         da:7e:06:0f:66:6d:b1:02:2c:fc:fd:63:a3:e5:e8:46:25:36:
         b8:c2:34:a3:cd:f2:87:e0:15:96:60:84:ef:38:c0:f9:dc:90:
         83:7f:83:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjMNR4GmA8BHyTJpb5fx9CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE0NzE1NzAxYjAwYWRlNDg5NWEzOWE3NmEwZDgxMDBlYzk1
ZWFiZTMwHhcNMjUwOTA3MDgwMDI2WhcNMjUwOTA4MDgwMDI2WjAzMTEwLwYDVQQD
EygwNTA2MGEwNTk2OTNhZjk2NjIxZjljOWNjOWRhYzQ0ZmE0ZDgxNTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmn2ullUnap5JMWwMtmyDO9qS0Dm
CX7N45z/AIc/RYApGg7A5U5DNOfX/4CVvH+W26ywL3lAfyWnpftDJ54OIO2vwr1M
9EcBKnWnv1i0gtQkS736ufDKmex5rMDWZ6l0Q+a1m4Ezxn62k8CuJHL8RMFqvrkH
+PE7/BJncTrU5jo3BjXTp3lSZfKZN0kYdmdvUh3kmppJBzMkg43chP1Hky4XASRH
/IC8q0UaunPLYqqqM2CFE9nGO7lb0QPiu2Uho4q7NHHu/gJ/uO4sBbZ8ApNHK+4I
g/HSET7m53CKAXEuUeayKc2ixpvsdGSYCKT6RHtq6lqENrKY3vu7ZwuqbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAUGCgWWk6+WYh+cnMnaxE+k2BVoMB8GA1UdIwQY
MBaAFKRxVwGwCt5IlaOadqDYEA7JXqvjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcEhGWEFiQUsza2lWbzVwMm9OZ1FEc2xlcS1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi82MDM3YTUtNTY0MC00YjQxLTkyZTkt
ZjZmMjU0NmJjNjBlLzEvcEhGWEFiQUsza2lWbzVwMm9OZ1FEc2xlcS1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi82MDM3YTUtNTY0MC00YjQxLTkyZTktZjZmMjU0NmJjNjBl
LzEvcEhGWEFiQUsza2lWbzVwMm9OZ1FEc2xlcS1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB6gBjrK0
5ybIOdkQNYaf13lj6o5gzJCYcnsR5CUOOAzb+O5anKgWOGRuDl34ytf9XtxC4iVV
Qtm6X6FisAholWDE5mCXwnukjb24HrmZ8TUjRdns61NphvByMUp+6zTwb7jFO77I
w+OyZMdzguAFqSqCyFsVBDT0Rjv3Uzp98vbI9xibctzsY2ZYrluAt1eAGniZD2nu
0dJgCcnkSFPtpkU3NE8vp54n1I8scOztjmnMriZwlR4kBaGQewg6mXz0VQOX8D1P
rLDx6x1g7R+LasnPjYfvigcC2n4GD2ZtsQIs/P1jo+XoRiU2uMI0o83yh+AVlmCE
7zjA+dyQg3+DLA==
-----END CERTIFICATE-----