Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/5ab512-9606-42dc-9eb5-0c8368db9563/1/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.mft
File:                     Y-9r28Qq0G3v2tcmeUFDRtjQSN8.mft (raw, json)
Hash identifier:          Lhf4jjjy/VfpCyHLh7RVfm+KW7Cw4GEJHnC3x3pWCN0=
Subject key identifier:   E8:E9:1A:67:6D:A9:10:94:A4:63:59:E9:24:54:9D:33:15:F6:21:A1
Authority key identifier: 63:EF:6B:DB:C4:2A:D0:6D:EF:DA:D7:26:79:41:43:46:D8:D0:48:DF
Certificate issuer:       /CN=63ef6bdbc42ad06defdad72679414346d8d048df
Certificate serial:       0197654D2DF99B872CA2F59BB679DE0EA63B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/5ab512-9606-42dc-9eb5-0c8368db9563/1/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.mft
Manifest number:          1586
Signing time:             Thu 12 Jun 2025 18:00:46 +0000
Manifest this update:     Thu 12 Jun 2025 18:00:46 +0000
Manifest next update:     Fri 13 Jun 2025 18:00:46 +0000
Files and hashes:         1: Y-9r28Qq0G3v2tcmeUFDRtjQSN8.crl (hash: 6gNP7K6XD2BoqRCZSPoCDcQbRd1R/Ud0QytIUNc4GV0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/5ab512-9606-42dc-9eb5-0c8368db9563/1/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/5ab512-9606-42dc-9eb5-0c8368db9563/1/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 15:17:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:65:4d:2d:f9:9b:87:2c:a2:f5:9b:b6:79:de:0e:a6:3b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=63ef6bdbc42ad06defdad72679414346d8d048df
        Validity
            Not Before: Jun 12 18:00:46 2025 GMT
            Not After : Jun 13 18:00:46 2025 GMT
        Subject: CN=e8e91a676da91094a46359e924549d3315f621a1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f1:37:0e:08:c6:aa:a6:ae:3d:ea:96:0d:71:ab:
                    7c:98:14:4e:3c:4d:22:bf:e1:b8:4c:39:63:84:13:
                    f0:ae:4d:6d:66:98:32:90:88:c3:3b:e7:88:1f:64:
                    51:9f:5a:c3:30:29:5f:84:01:1b:02:e7:c4:ac:27:
                    33:18:54:34:f8:81:f3:42:ed:22:4f:5d:90:b4:c5:
                    b0:9c:05:04:f5:a3:6a:f5:0c:75:38:d9:57:42:a9:
                    e8:b3:ec:36:4f:88:ca:1b:8b:35:1d:d3:65:1d:82:
                    8d:5a:6a:07:81:9a:6e:a9:88:54:86:de:1e:54:83:
                    0c:6a:ec:bf:a3:43:11:71:a1:59:3f:9b:ec:d2:24:
                    6a:ce:28:1e:a0:6c:b3:bf:9d:29:39:25:99:35:76:
                    42:bd:8c:cc:22:bc:39:d3:54:1a:e2:f7:ea:02:76:
                    bc:17:36:9b:46:69:12:4c:5a:77:74:8b:48:37:93:
                    cd:8e:0e:6d:6c:ab:d1:9a:bd:f0:d9:8f:60:08:c4:
                    d7:d0:d6:ef:e1:55:c5:ee:34:c0:27:36:46:49:ce:
                    f0:d7:b2:4f:d5:3a:06:fa:71:79:52:7b:f1:4e:52:
                    69:20:28:b3:35:4d:71:14:89:02:bf:07:f6:9d:2e:
                    1d:33:2a:e7:46:34:2a:9d:0c:54:bc:7c:3b:f7:73:
                    4e:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:E9:1A:67:6D:A9:10:94:A4:63:59:E9:24:54:9D:33:15:F6:21:A1
            X509v3 Authority Key Identifier:
                keyid:63:EF:6B:DB:C4:2A:D0:6D:EF:DA:D7:26:79:41:43:46:D8:D0:48:DF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5ab512-9606-42dc-9eb5-0c8368db9563/1/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/5ab512-9606-42dc-9eb5-0c8368db9563/1/Y-9r28Qq0G3v2tcmeUFDRtjQSN8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:d5:ff:9c:ff:af:09:72:a1:fa:fe:be:27:ef:98:2b:e1:fe:
         cf:a2:cd:60:b1:50:a1:77:43:1e:fa:af:d5:80:f4:5f:c9:b6:
         d0:18:f0:67:68:03:68:08:c6:e3:72:92:b4:83:fd:df:17:4a:
         b7:94:c1:4f:ec:6b:9d:ab:59:0f:07:91:2c:b3:36:da:77:55:
         62:08:5b:b0:43:12:0d:64:51:16:33:7c:dc:8d:c6:9f:3c:6e:
         65:e5:da:07:12:51:5b:93:ad:1b:02:0b:eb:53:d0:ab:48:1e:
         be:90:64:fe:2e:5f:dd:b9:b4:fb:4f:a3:ca:3d:70:1a:d3:27:
         41:42:2a:55:78:9d:8e:72:1b:8c:f4:b0:77:9e:af:98:8a:a1:
         2d:fc:ea:42:5d:d9:a5:60:59:c0:01:11:7f:0f:03:5f:8e:16:
         b1:e5:03:da:a1:42:40:53:e6:d8:cf:4f:85:4d:d3:d2:a1:03:
         1e:f7:43:ff:d7:c9:73:ec:c2:00:40:0b:a2:56:70:c1:45:49:
         47:36:bc:f1:f6:fd:44:36:dc:1d:86:f4:37:ee:a2:7e:92:77:
         32:e0:4a:f3:45:00:bf:5a:1f:40:b3:80:0b:5b:e0:2c:af:a6:
         37:6b:09:32:99:8f:cc:22:8e:c3:1c:a6:45:5e:ca:28:e6:da:
         b5:9f:90:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdlTS35m4csovWbtnneDqY7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZWY2YmRiYzQyYWQwNmRlZmRhZDcyNjc5NDE0MzQ2ZDhk
MDQ4ZGYwHhcNMjUwNjEyMTgwMDQ2WhcNMjUwNjEzMTgwMDQ2WjAzMTEwLwYDVQQD
EyhlOGU5MWE2NzZkYTkxMDk0YTQ2MzU5ZTkyNDU0OWQzMzE1ZjYyMWExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8TcOCMaqpq496pYNcat8mBROPE0i
v+G4TDljhBPwrk1tZpgykIjDO+eIH2RRn1rDMClfhAEbAufErCczGFQ0+IHzQu0i
T12QtMWwnAUE9aNq9Qx1ONlXQqnos+w2T4jKG4s1HdNlHYKNWmoHgZpuqYhUht4e
VIMMauy/o0MRcaFZP5vs0iRqzigeoGyzv50pOSWZNXZCvYzMIrw501Qa4vfqAna8
FzabRmkSTFp3dItIN5PNjg5tbKvRmr3w2Y9gCMTX0Nbv4VXF7jTAJzZGSc7w17JP
1ToG+nF5UnvxTlJpICizNU1xFIkCvwf2nS4dMyrnRjQqnQxUvHw793NO7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOjpGmdtqRCUpGNZ6SRUnTMV9iGhMB8GA1UdIwQY
MBaAFGPva9vEKtBt79rXJnlBQ0bY0EjfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS05cjI4UXEwRzN2MnRjbWVVRkRSdGpRU044LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi81YWI1MTItOTYwNi00MmRjLTllYjUt
MGM4MzY4ZGI5NTYzLzEvWS05cjI4UXEwRzN2MnRjbWVVRkRSdGpRU044Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi81YWI1MTItOTYwNi00MmRjLTllYjUtMGM4MzY4ZGI5NTYz
LzEvWS05cjI4UXEwRzN2MnRjbWVVRkRSdGpRU044LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf9X/nP+v
CXKh+v6+J++YK+H+z6LNYLFQoXdDHvqv1YD0X8m20BjwZ2gDaAjG43KStIP93xdK
t5TBT+xrnatZDweRLLM22ndVYghbsEMSDWRRFjN83I3GnzxuZeXaBxJRW5OtGwIL
61PQq0gevpBk/i5f3bm0+0+jyj1wGtMnQUIqVXidjnIbjPSwd56vmIqhLfzqQl3Z
pWBZwAERfw8DX44WseUD2qFCQFPm2M9PhU3T0qEDHvdD/9fJc+zCAEALolZwwUVJ
Rza88fb9RDbcHYb0N+6ifpJ3MuBK80UAv1ofQLOAC1vgLK+mN2sJMpmPzCKOwxym
RV7KKObatZ+Qsg==
-----END CERTIFICATE-----