Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft
File:                     xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft (raw, json)
Hash identifier:          YnBcQmh2x+FcSQZleuWZXixhZxSLQUYUH6d6v/KHKyk=
Subject key identifier:   B9:CF:4E:BF:F0:DE:E4:EB:8D:7A:45:C3:E8:E1:D1:C8:3F:F8:07:F2
Authority key identifier: C6:CC:F9:CE:97:D1:23:2E:01:62:FC:CD:43:F6:0C:4E:79:83:1E:1A
Certificate issuer:       /CN=c6ccf9ce97d1232e0162fccd43f60c4e79831e1a
Certificate serial:       01976B4F24A24DBE087A71A7EF6FEEA16E9F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xsz5zpfRIy4BYvzNQ_YMTnmDHho.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft
Manifest number:          0CEC
Signing time:             Fri 13 Jun 2025 22:00:38 +0000
Manifest this update:     Fri 13 Jun 2025 22:00:38 +0000
Manifest next update:     Sat 14 Jun 2025 22:00:38 +0000
Files and hashes:         1: xsz5zpfRIy4BYvzNQ_YMTnmDHho.crl (hash: HjFu2Kjb6i1iZ2fiRSKVeLT4H/mH+CA9crv4nsJYEug=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xsz5zpfRIy4BYvzNQ_YMTnmDHho.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:4f:24:a2:4d:be:08:7a:71:a7:ef:6f:ee:a1:6e:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c6ccf9ce97d1232e0162fccd43f60c4e79831e1a
        Validity
            Not Before: Jun 13 22:00:38 2025 GMT
            Not After : Jun 14 22:00:38 2025 GMT
        Subject: CN=b9cf4ebff0dee4eb8d7a45c3e8e1d1c83ff807f2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:6a:dc:43:68:5d:61:a1:bd:b4:60:48:2e:e4:
                    91:88:be:66:58:aa:4a:43:d8:2c:77:76:e2:7b:8e:
                    dc:51:d1:1c:ae:ab:93:52:59:38:ba:6f:4d:ef:71:
                    4c:56:20:a1:29:08:2c:58:a8:5e:15:c5:c2:03:fb:
                    b8:ea:77:89:40:95:61:6f:62:4d:74:f7:79:0c:23:
                    cd:18:a2:0d:c9:0f:8c:c3:aa:ad:ca:47:8a:b5:23:
                    9b:fa:73:44:b3:e6:c4:70:2c:a8:91:9e:e8:5b:84:
                    3f:50:70:37:e1:cb:bb:90:da:4e:71:27:08:a5:38:
                    be:66:09:57:1a:a3:ed:d4:48:dc:73:bd:36:09:bf:
                    c8:a6:5f:22:a0:42:d9:90:0c:c8:b5:87:1d:50:42:
                    0c:20:6f:42:bf:32:b6:34:16:0d:92:ae:3d:bb:53:
                    1e:fd:1e:e1:f8:27:9d:a4:24:00:fb:c9:ff:ca:f9:
                    83:2e:8a:c5:8e:eb:ba:35:f9:74:12:94:2e:4b:0d:
                    31:fb:df:b8:8c:ef:4f:8f:7c:5d:72:ef:f9:75:37:
                    f0:36:f5:68:d7:86:76:b4:25:66:bf:bc:04:53:3d:
                    47:91:be:39:dd:2d:4d:eb:56:5e:45:9a:88:19:f2:
                    37:61:23:9e:f0:a8:3a:be:db:54:ac:d8:24:a7:74:
                    07:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:CF:4E:BF:F0:DE:E4:EB:8D:7A:45:C3:E8:E1:D1:C8:3F:F8:07:F2
            X509v3 Authority Key Identifier:
                keyid:C6:CC:F9:CE:97:D1:23:2E:01:62:FC:CD:43:F6:0C:4E:79:83:1E:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsz5zpfRIy4BYvzNQ_YMTnmDHho.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:ec:79:02:52:d4:89:b5:60:b0:f2:e1:81:1f:70:29:44:db:
         7b:fa:56:3a:7d:6d:25:2d:4e:fc:45:09:97:44:5b:93:c4:17:
         54:0b:10:15:ab:2c:1e:4f:4a:3e:d4:1d:04:3f:cd:0a:8d:16:
         51:77:b8:b5:2a:a7:03:f1:da:54:83:0f:2f:59:d3:35:c5:27:
         05:3d:7f:5d:18:a8:48:a1:ac:99:fb:d8:9d:9b:0d:79:e7:fc:
         d0:9d:d8:99:46:fe:44:31:19:74:51:f5:4a:7e:45:67:8a:51:
         bc:c3:2e:6d:ac:ee:e2:94:4a:40:c8:5a:39:0c:e7:68:e9:cb:
         bf:68:15:25:8a:76:8b:ec:e5:f2:4f:6d:a0:6e:83:da:72:68:
         b7:aa:19:e5:af:02:3a:89:83:27:d6:38:52:ff:98:c1:00:3b:
         bf:c0:80:4c:98:36:24:f7:20:f0:16:16:eb:88:45:18:36:e8:
         69:28:ee:d4:c6:e6:d4:1a:12:b1:ec:ef:2c:02:97:ed:5d:7d:
         56:0a:8b:b8:f3:d4:7a:73:7d:5e:9f:a2:88:5f:be:38:74:cf:
         9e:30:b5:be:c8:f6:e7:7d:52:ae:af:d2:c2:85:73:07:6c:d3:
         b8:d2:d4:e7:75:57:8c:07:59:8c:8a:d1:52:b7:c9:27:27:b0:
         6d:91:a8:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdrTySiTb4IenGn72/uoW6fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2Y2NmOWNlOTdkMTIzMmUwMTYyZmNjZDQzZjYwYzRlNzk4
MzFlMWEwHhcNMjUwNjEzMjIwMDM4WhcNMjUwNjE0MjIwMDM4WjAzMTEwLwYDVQQD
EyhiOWNmNGViZmYwZGVlNGViOGQ3YTQ1YzNlOGUxZDFjODNmZjgwN2YyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWrcQ2hdYaG9tGBILuSRiL5mWKpK
Q9gsd3bie47cUdEcrquTUlk4um9N73FMViChKQgsWKheFcXCA/u46neJQJVhb2JN
dPd5DCPNGKINyQ+Mw6qtykeKtSOb+nNEs+bEcCyokZ7oW4Q/UHA34cu7kNpOcScI
pTi+ZglXGqPt1Ejcc702Cb/Ipl8ioELZkAzItYcdUEIMIG9CvzK2NBYNkq49u1Me
/R7h+CedpCQA+8n/yvmDLorFjuu6Nfl0EpQuSw0x+9+4jO9Pj3xdcu/5dTfwNvVo
14Z2tCVmv7wEUz1Hkb453S1N61ZeRZqIGfI3YSOe8Kg6vttUrNgkp3QHhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLnPTr/w3uTrjXpFw+jh0cg/+AfyMB8GA1UdIwQY
MBaAFMbM+c6X0SMuAWL8zUP2DE55gx4aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHN6NXpwZlJJeTRCWXZ6TlFfWU1Ubm1ESGhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8xODZiZjItZmI4OC00NzI4LWJmNjct
NWExZTVmYTczZTRkLzEveHN6NXpwZlJJeTRCWXZ6TlFfWU1Ubm1ESGhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi8xODZiZjItZmI4OC00NzI4LWJmNjctNWExZTVmYTczZTRk
LzEveHN6NXpwZlJJeTRCWXZ6TlFfWU1Ubm1ESGhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARex5AlLU
ibVgsPLhgR9wKUTbe/pWOn1tJS1O/EUJl0Rbk8QXVAsQFassHk9KPtQdBD/NCo0W
UXe4tSqnA/HaVIMPL1nTNcUnBT1/XRioSKGsmfvYnZsNeef80J3YmUb+RDEZdFH1
Sn5FZ4pRvMMubazu4pRKQMhaOQznaOnLv2gVJYp2i+zl8k9toG6D2nJot6oZ5a8C
OomDJ9Y4Uv+YwQA7v8CATJg2JPcg8BYW64hFGDboaSju1Mbm1BoSsezvLAKX7V19
VgqLuPPUenN9Xp+iiF++OHTPnjC1vsj2531Srq/SwoVzB2zTuNLU53VXjAdZjIrR
UrfJJyewbZGojA==
-----END CERTIFICATE-----