Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.mft
File:                     daRvv8jeUjM5XHPeUflVO7doRgU.mft (raw, json)
Hash identifier:          ckUoJKswfQWa0Nsdnn5hui3b1BlvctkmgWRERMA/qOs=
Subject key identifier:   0C:D8:57:1F:61:2E:11:84:3D:F9:AB:AC:BB:74:BE:AF:3E:55:E6:97
Authority key identifier: 75:A4:6F:BF:C8:DE:52:33:39:5C:73:DE:51:F9:55:3B:B7:68:46:05
Certificate issuer:       /CN=75a46fbfc8de5233395c73de51f9553bb7684605
Certificate serial:       019A285556D90878E47D1181A3289A81510A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/daRvv8jeUjM5XHPeUflVO7doRgU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.mft
Manifest number:          16F4
Signing time:             Tue 28 Oct 2025 01:01:12 +0000
Manifest this update:     Tue 28 Oct 2025 01:01:12 +0000
Manifest next update:     Wed 29 Oct 2025 01:01:12 +0000
Files and hashes:         1: daRvv8jeUjM5XHPeUflVO7doRgU.crl (hash: oUWmHZMAm7l53MDyu5xYiOzM3RP0KV+I8oOeBVJmUlM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/daRvv8jeUjM5XHPeUflVO7doRgU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 29 Oct 2025 00:00:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:28:55:56:d9:08:78:e4:7d:11:81:a3:28:9a:81:51:0a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=75a46fbfc8de5233395c73de51f9553bb7684605
        Validity
            Not Before: Oct 28 01:01:12 2025 GMT
            Not After : Oct 29 01:01:12 2025 GMT
        Subject: CN=0cd8571f612e11843df9abacbb74beaf3e55e697
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:15:1a:67:ac:eb:78:00:a9:18:92:d2:52:c9:
                    27:a2:06:8d:63:e7:ae:66:53:7d:1d:b4:ff:09:20:
                    24:c2:02:62:ac:7a:46:82:d2:ca:00:6d:2a:df:63:
                    fc:01:0e:14:fe:06:d3:ad:10:a7:0e:09:02:c3:29:
                    53:07:e6:12:7b:54:74:4f:b9:4c:63:e4:59:68:26:
                    18:4d:d5:4a:29:51:9c:7b:d1:c7:d7:fe:91:31:cb:
                    87:6e:a8:b2:a7:d3:3b:34:52:a7:0a:9d:e9:b9:d2:
                    3d:2d:e3:46:c8:a7:d6:09:21:31:d5:02:f5:bd:02:
                    f8:f4:d8:f5:e3:03:47:58:34:f5:fe:3f:18:c4:34:
                    4f:fd:30:31:c8:11:a4:e0:28:c2:31:98:c9:e2:e1:
                    f5:94:53:be:01:f9:4e:b0:1e:57:5b:68:3f:dc:d8:
                    28:5f:76:ef:cd:3d:3f:86:72:ef:83:3d:12:78:d7:
                    69:76:ad:37:98:ff:76:9a:ac:4a:00:51:64:8a:89:
                    e7:25:c1:ee:e5:26:67:db:02:5e:b9:89:f0:42:ad:
                    fe:43:b6:ef:61:bb:15:b7:b0:26:4a:d8:5e:d4:f9:
                    bd:aa:c8:10:07:c5:33:f0:69:f2:81:93:b6:30:be:
                    ab:60:ad:d0:e4:9f:84:59:ae:af:9e:d6:ac:d2:ca:
                    20:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0C:D8:57:1F:61:2E:11:84:3D:F9:AB:AC:BB:74:BE:AF:3E:55:E6:97
            X509v3 Authority Key Identifier:
                keyid:75:A4:6F:BF:C8:DE:52:33:39:5C:73:DE:51:F9:55:3B:B7:68:46:05

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/daRvv8jeUjM5XHPeUflVO7doRgU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/427e2c-96f6-4e43-914a-8c7c54f3c5b0/1/daRvv8jeUjM5XHPeUflVO7doRgU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c2:1b:d5:35:43:d2:1f:d5:be:fd:f6:6d:6f:59:8f:ab:1f:7a:
         b3:b6:f6:f7:45:f8:03:a0:73:3e:1b:e6:c4:53:53:43:bc:e1:
         ac:6d:c7:e9:3c:0c:a6:91:f2:32:c2:5b:22:ef:96:ba:e7:9d:
         4e:f2:15:0e:c7:69:a4:42:e9:47:e1:4b:13:0c:cb:bd:e6:8d:
         45:ef:ac:35:4b:46:41:53:72:73:53:eb:81:81:8f:d4:e8:5f:
         5e:f1:b3:64:ee:00:b5:78:fc:bd:a2:c5:24:70:43:20:c7:4d:
         81:cc:58:bf:69:fc:62:6f:66:dd:59:6d:95:a0:84:ec:42:de:
         06:32:eb:45:b4:cf:f4:db:20:91:43:5c:66:2b:00:dd:e5:99:
         b3:48:ef:81:d5:09:0d:ca:63:cf:f8:e7:96:4a:0c:80:31:f5:
         ea:af:8b:03:2b:c1:cf:f3:e9:11:16:fa:fb:3d:1b:2a:27:0b:
         37:03:e9:cf:e9:fe:29:e8:43:1e:a1:3e:4d:61:74:a4:78:d4:
         7a:32:df:20:e8:3f:01:94:a9:a7:b8:6e:b4:e3:d2:ec:4f:15:
         50:3b:dc:a4:53:1b:8b:26:ce:dc:a2:14:4e:d7:dc:fd:93:b7:
         87:48:26:87:64:f8:f1:2b:0f:9c:44:f2:3e:0f:20:81:a5:cb:
         a3:d3:49:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZooVVbZCHjkfRGBoyiagVEKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1YTQ2ZmJmYzhkZTUyMzMzOTVjNzNkZTUxZjk1NTNiYjc2
ODQ2MDUwHhcNMjUxMDI4MDEwMTEyWhcNMjUxMDI5MDEwMTEyWjAzMTEwLwYDVQQD
EygwY2Q4NTcxZjYxMmUxMTg0M2RmOWFiYWNiYjc0YmVhZjNlNTVlNjk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAohUaZ6zreACpGJLSUsknogaNY+eu
ZlN9HbT/CSAkwgJirHpGgtLKAG0q32P8AQ4U/gbTrRCnDgkCwylTB+YSe1R0T7lM
Y+RZaCYYTdVKKVGce9HH1/6RMcuHbqiyp9M7NFKnCp3pudI9LeNGyKfWCSEx1QL1
vQL49Nj14wNHWDT1/j8YxDRP/TAxyBGk4CjCMZjJ4uH1lFO+AflOsB5XW2g/3Ngo
X3bvzT0/hnLvgz0SeNdpdq03mP92mqxKAFFkionnJcHu5SZn2wJeuYnwQq3+Q7bv
YbsVt7AmSthe1Pm9qsgQB8Uz8GnygZO2ML6rYK3Q5J+EWa6vntas0sogswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAzYVx9hLhGEPfmrrLt0vq8+VeaXMB8GA1UdIwQY
MBaAFHWkb7/I3lIzOVxz3lH5VTu3aEYFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGFSdnY4amVVak01WEhQZVVmbFZPN2RvUmdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS80MjdlMmMtOTZmNi00ZTQzLTkxNGEt
OGM3YzU0ZjNjNWIwLzEvZGFSdnY4amVVak01WEhQZVVmbFZPN2RvUmdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS80MjdlMmMtOTZmNi00ZTQzLTkxNGEtOGM3YzU0ZjNjNWIw
LzEvZGFSdnY4amVVak01WEhQZVVmbFZPN2RvUmdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwhvVNUPS
H9W+/fZtb1mPqx96s7b290X4A6BzPhvmxFNTQ7zhrG3H6TwMppHyMsJbIu+Wuued
TvIVDsdppELpR+FLEwzLveaNRe+sNUtGQVNyc1PrgYGP1OhfXvGzZO4AtXj8vaLF
JHBDIMdNgcxYv2n8Ym9m3VltlaCE7ELeBjLrRbTP9NsgkUNcZisA3eWZs0jvgdUJ
Dcpjz/jnlkoMgDH16q+LAyvBz/PpERb6+z0bKicLNwPpz+n+KehDHqE+TWF0pHjU
ejLfIOg/AZSpp7hutOPS7E8VUDvcpFMbiybO3KIUTtfc/ZO3h0gmh2T48SsPnETy
Pg8ggaXLo9NJ8w==
-----END CERTIFICATE-----