Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft
File:                     3C8IdW9U7NcoDR6sz4eK6z8orE8.mft (raw, json)
Hash identifier:          7yk15qkpuhI2OAC1dgGRfYqo7DYcFHHdz4miaZ0vJQc=
Subject key identifier:   1D:01:70:1B:90:9E:DB:B9:BE:33:85:1D:86:8C:E4:2F:D0:DD:35:B7
Authority key identifier: DC:2F:08:75:6F:54:EC:D7:28:0D:1E:AC:CF:87:8A:EB:3F:28:AC:4F
Certificate issuer:       /CN=dc2f08756f54ecd7280d1eaccf878aeb3f28ac4f
Certificate serial:       01975A5BBD606B56EF5810BBFBDF63905C8E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft
Manifest number:          1293
Signing time:             Tue 10 Jun 2025 15:00:51 +0000
Manifest this update:     Tue 10 Jun 2025 15:00:51 +0000
Manifest next update:     Wed 11 Jun 2025 15:00:51 +0000
Files and hashes:         1: 3C8IdW9U7NcoDR6sz4eK6z8orE8.crl (hash: mw7D50tfn2BZfoeo0Rd3EKgIJoSbQLK8L41Bk+v55FU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 14:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5a:5b:bd:60:6b:56:ef:58:10:bb:fb:df:63:90:5c:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc2f08756f54ecd7280d1eaccf878aeb3f28ac4f
        Validity
            Not Before: Jun 10 15:00:51 2025 GMT
            Not After : Jun 11 15:00:51 2025 GMT
        Subject: CN=1d01701b909edbb9be33851d868ce42fd0dd35b7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:59:0e:9a:92:13:d4:7a:0d:53:73:ce:7a:dc:
                    3f:e0:81:29:9f:65:c2:23:2d:74:03:b1:00:88:ea:
                    2b:25:ed:d5:56:8d:2f:3b:d9:60:f3:ca:0c:72:ed:
                    2f:8a:85:0e:06:b5:5c:63:d0:cb:dd:ea:8e:c2:a2:
                    a6:a8:77:a1:9a:de:ae:17:3e:06:8b:ef:02:2e:2e:
                    e0:b4:67:8a:1e:54:90:4a:1f:0f:5f:fa:ec:52:20:
                    9b:d4:a3:6e:c2:1b:93:0e:33:c1:55:14:1b:16:5b:
                    03:b6:f3:9c:30:8c:34:b6:b3:65:16:48:67:d0:ef:
                    03:dc:ff:3f:f9:8b:41:12:87:e4:b6:3a:4a:e9:a7:
                    1b:f1:1f:55:8f:66:bc:38:33:56:92:08:64:70:15:
                    4e:20:22:75:90:eb:d2:ee:4a:41:4a:9c:11:3b:0a:
                    af:42:00:c4:6f:a5:83:fb:79:7f:8c:90:34:b7:67:
                    57:1b:a8:44:63:38:8c:69:53:a3:19:a1:e1:08:76:
                    c7:26:a1:6b:6f:e2:4e:6a:03:d9:8c:3e:13:a0:58:
                    88:8a:7e:51:8e:c8:89:0b:1a:bd:39:9c:8b:ab:b2:
                    7f:20:35:b1:7e:28:ed:61:9a:88:5e:fd:c3:fe:e1:
                    b1:b8:bb:46:4e:41:a2:9e:17:d2:6e:28:a4:ef:0c:
                    4e:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:01:70:1B:90:9E:DB:B9:BE:33:85:1D:86:8C:E4:2F:D0:DD:35:B7
            X509v3 Authority Key Identifier:
                keyid:DC:2F:08:75:6F:54:EC:D7:28:0D:1E:AC:CF:87:8A:EB:3F:28:AC:4F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3C8IdW9U7NcoDR6sz4eK6z8orE8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/389477-5870-4e2d-ac87-cc6bc94538fa/1/3C8IdW9U7NcoDR6sz4eK6z8orE8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:d8:90:b2:71:ac:b3:47:08:b6:a2:3c:f9:cb:2d:0a:eb:91:
         9a:9c:dc:e4:b5:c8:e6:62:62:16:85:d2:e6:5d:8d:96:1a:6e:
         fe:40:be:2f:4a:5c:db:00:44:64:1f:61:84:5c:1c:81:27:96:
         2a:d9:b0:79:e0:9a:80:85:2f:8e:b2:56:a2:2e:f7:36:bb:75:
         78:7b:f7:f0:93:49:a5:2f:89:59:79:11:d5:9a:f1:e9:d6:e3:
         27:d9:6b:44:0a:f5:70:c3:fa:11:1b:79:a2:37:03:e1:92:3d:
         e4:3b:d9:f0:28:c8:ed:12:a9:22:5b:6c:68:3e:50:b9:75:bd:
         70:e3:d7:90:4a:f0:66:a7:53:b7:8f:75:19:02:8b:70:4d:52:
         bf:95:29:8b:72:8f:e2:ed:c5:bb:7a:f4:29:b2:f1:fd:10:42:
         d6:d0:3b:af:18:06:8c:e9:67:1a:cd:72:9f:e3:c0:37:0d:7c:
         b7:46:3a:53:34:b1:65:4b:3a:19:3b:ca:fb:bd:95:1b:ee:ed:
         01:c0:f6:41:eb:5d:83:b4:a3:a9:23:80:60:14:cd:b9:d7:f0:
         be:31:9c:e3:eb:59:71:fc:4b:b3:69:02:d7:70:20:c2:31:aa:
         c1:95:cd:ad:31:83:a3:de:3e:1b:08:65:64:bf:20:31:18:52:
         01:c0:ff:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdaW71ga1bvWBC7+99jkFyOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjMmYwODc1NmY1NGVjZDcyODBkMWVhY2NmODc4YWViM2Yy
OGFjNGYwHhcNMjUwNjEwMTUwMDUxWhcNMjUwNjExMTUwMDUxWjAzMTEwLwYDVQQD
EygxZDAxNzAxYjkwOWVkYmI5YmUzMzg1MWQ4NjhjZTQyZmQwZGQzNWI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2VkOmpIT1HoNU3POetw/4IEpn2XC
Iy10A7EAiOorJe3VVo0vO9lg88oMcu0vioUOBrVcY9DL3eqOwqKmqHehmt6uFz4G
i+8CLi7gtGeKHlSQSh8PX/rsUiCb1KNuwhuTDjPBVRQbFlsDtvOcMIw0trNlFkhn
0O8D3P8/+YtBEofktjpK6acb8R9Vj2a8ODNWkghkcBVOICJ1kOvS7kpBSpwROwqv
QgDEb6WD+3l/jJA0t2dXG6hEYziMaVOjGaHhCHbHJqFrb+JOagPZjD4ToFiIin5R
jsiJCxq9OZyLq7J/IDWxfijtYZqIXv3D/uGxuLtGTkGinhfSbiik7wxOaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB0BcBuQntu5vjOFHYaM5C/Q3TW3MB8GA1UdIwQY
MBaAFNwvCHVvVOzXKA0erM+Hius/KKxPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0M4SWRXOVU3TmNvRFI2c3o0ZUs2ejhvckU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8zODk0NzctNTg3MC00ZTJkLWFjODct
Y2M2YmM5NDUzOGZhLzEvM0M4SWRXOVU3TmNvRFI2c3o0ZUs2ejhvckU4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi8zODk0NzctNTg3MC00ZTJkLWFjODctY2M2YmM5NDUzOGZh
LzEvM0M4SWRXOVU3TmNvRFI2c3o0ZUs2ejhvckU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOtiQsnGs
s0cItqI8+cstCuuRmpzc5LXI5mJiFoXS5l2Nlhpu/kC+L0pc2wBEZB9hhFwcgSeW
KtmweeCagIUvjrJWoi73Nrt1eHv38JNJpS+JWXkR1Zrx6dbjJ9lrRAr1cMP6ERt5
ojcD4ZI95DvZ8CjI7RKpIltsaD5QuXW9cOPXkErwZqdTt491GQKLcE1Sv5Upi3KP
4u3Fu3r0KbLx/RBC1tA7rxgGjOlnGs1yn+PANw18t0Y6UzSxZUs6GTvK+72VG+7t
AcD2Qetdg7SjqSOAYBTNudfwvjGc4+tZcfxLs2kC13AgwjGqwZXNrTGDo94+Gwhl
ZL8gMRhSAcD/4A==
-----END CERTIFICATE-----