Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
File:                     aDjl4BZgX27c1MlhwZys9YFMeKM.mft (raw, json)
Hash identifier:          D96Q+rWqM9VNorGE1HMVxvYXEeV27RqzI/yhA8vu8GA=
Subject key identifier:   6A:FD:56:F2:A4:BB:6E:31:23:1A:44:4A:21:62:AF:61:29:3C:29:2B
Authority key identifier: 68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3
Certificate issuer:       /CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
Certificate serial:       019756B5EEEF27C05D63C43411A1A5652831
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
Manifest number:          0FBF
Signing time:             Mon 09 Jun 2025 22:00:52 +0000
Manifest this update:     Mon 09 Jun 2025 22:00:52 +0000
Manifest next update:     Tue 10 Jun 2025 22:00:52 +0000
Files and hashes:         1: aDjl4BZgX27c1MlhwZys9YFMeKM.crl (hash: /cM4mYY+Tbrd4KhotjxMuy7BrBpnUxjYiX0yOCv9OEM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 15:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:56:b5:ee:ef:27:c0:5d:63:c4:34:11:a1:a5:65:28:31
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
        Validity
            Not Before: Jun  9 22:00:52 2025 GMT
            Not After : Jun 10 22:00:52 2025 GMT
        Subject: CN=6afd56f2a4bb6e31231a444a2162af61293c292b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:69:a0:fe:ee:8f:37:71:fb:03:1e:7c:35:3e:
                    f3:29:b9:80:97:fb:97:64:cc:e5:95:4a:c2:0b:9e:
                    a5:1b:7d:02:c9:62:0e:e4:f1:49:87:de:79:02:99:
                    86:54:64:4b:8f:a8:ff:02:2e:bd:a3:07:4a:8d:6f:
                    a5:fb:96:80:ba:1c:28:bc:b8:bf:39:2e:bd:7c:95:
                    30:22:8d:b4:a3:0a:16:12:1d:e3:58:a3:4f:21:a5:
                    d9:12:77:2e:e9:c1:2e:96:36:f7:24:0e:85:e9:99:
                    4f:e7:60:16:4e:05:8d:b3:ab:36:d5:98:8f:62:58:
                    0e:db:31:1c:39:ff:26:65:00:32:87:2a:13:aa:cc:
                    21:c6:1b:50:a6:7d:52:29:1f:02:e7:3c:0f:dd:24:
                    22:31:d5:2c:c6:4e:03:9d:17:fa:e6:7a:11:38:35:
                    f6:e7:de:8a:f0:09:90:da:58:7c:f4:9e:2d:e0:35:
                    e5:f2:24:c9:bc:58:15:5e:39:11:91:a0:c2:a8:3f:
                    96:ef:24:c8:40:0a:b4:26:87:70:56:c7:75:ef:db:
                    9a:93:67:a8:78:5e:6d:a4:ec:bc:64:cc:45:90:f4:
                    d8:dc:ca:cc:ac:e7:ae:29:b6:a6:9e:82:ef:6e:13:
                    1e:e8:c3:01:ae:4a:e4:e9:25:a0:89:c1:48:a8:e6:
                    ed:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:FD:56:F2:A4:BB:6E:31:23:1A:44:4A:21:62:AF:61:29:3C:29:2B
            X509v3 Authority Key Identifier:
                keyid:68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cc:76:23:b3:a2:0a:6b:f4:6e:f4:e2:2e:9d:71:10:97:38:d6:
         ed:9b:76:59:76:dd:fe:db:10:0a:17:f8:3a:78:54:21:1f:8f:
         e0:3b:19:d7:fb:e1:26:75:c5:c4:77:8d:4e:ad:22:48:e8:c5:
         28:54:ba:47:ef:d2:cb:12:47:bd:2b:ff:a2:1a:03:19:92:89:
         e8:68:e0:30:34:8b:b6:d9:3b:21:64:48:f5:c4:78:2f:3a:5f:
         66:d6:e9:76:8e:88:39:a9:06:eb:63:e1:1b:13:68:48:ec:ea:
         40:3a:e5:80:ec:a3:12:32:9a:c6:5b:8f:e9:51:23:e6:65:8b:
         82:17:22:ee:fc:c1:50:7b:0d:21:a8:89:d2:92:17:d9:61:3c:
         51:9a:4a:d9:72:80:07:54:27:36:f9:c4:8a:cf:21:35:3d:0f:
         3e:93:9b:54:32:b1:9c:0a:b2:85:22:11:b3:9c:e2:bb:9d:9b:
         bb:5a:65:24:f2:ac:62:f3:39:df:70:e8:c4:0d:73:ca:94:45:
         0a:e2:3e:e4:88:35:cf:ee:8b:92:fb:90:fd:b8:50:21:30:84:
         2c:f5:61:fb:34:7f:ce:05:76:27:4a:66:41:22:57:18:f0:f9:
         91:46:95:c7:90:00:70:1d:4b:f3:0a:f7:84:73:23:f2:d3:d0:
         67:91:ce:be
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdWte7vJ8BdY8Q0EaGlZSgxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MzhlNWUwMTY2MDVmNmVkY2Q0Yzk2MWMxOWNhY2Y1ODE0
Yzc4YTMwHhcNMjUwNjA5MjIwMDUyWhcNMjUwNjEwMjIwMDUyWjAzMTEwLwYDVQQD
Eyg2YWZkNTZmMmE0YmI2ZTMxMjMxYTQ0NGEyMTYyYWY2MTI5M2MyOTJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Wmg/u6PN3H7Ax58NT7zKbmAl/uX
ZMzllUrCC56lG30CyWIO5PFJh955ApmGVGRLj6j/Ai69owdKjW+l+5aAuhwovLi/
OS69fJUwIo20owoWEh3jWKNPIaXZEncu6cEuljb3JA6F6ZlP52AWTgWNs6s21ZiP
YlgO2zEcOf8mZQAyhyoTqswhxhtQpn1SKR8C5zwP3SQiMdUsxk4DnRf65noRODX2
596K8AmQ2lh89J4t4DXl8iTJvFgVXjkRkaDCqD+W7yTIQAq0JodwVsd179uak2eo
eF5tpOy8ZMxFkPTY3MrMrOeuKbamnoLvbhMe6MMBrkrk6SWgicFIqObtqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGr9VvKku24xIxpESiFir2EpPCkrMB8GA1UdIwQY
MBaAFGg45eAWYF9u3NTJYcGcrPWBTHijMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURqbDRCWmdYMjdjMU1saHdaeXM5WUZNZUtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC83N2YxOTQtZmY1Zi00YTIzLWI4ODIt
ZjRjYzI1YTU0NTNmLzEvYURqbDRCWmdYMjdjMU1saHdaeXM5WUZNZUtNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC83N2YxOTQtZmY1Zi00YTIzLWI4ODItZjRjYzI1YTU0NTNm
LzEvYURqbDRCWmdYMjdjMU1saHdaeXM5WUZNZUtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzHYjs6IK
a/Ru9OIunXEQlzjW7Zt2WXbd/tsQChf4OnhUIR+P4DsZ1/vhJnXFxHeNTq0iSOjF
KFS6R+/SyxJHvSv/ohoDGZKJ6GjgMDSLttk7IWRI9cR4LzpfZtbpdo6IOakG62Ph
GxNoSOzqQDrlgOyjEjKaxluP6VEj5mWLghci7vzBUHsNIaiJ0pIX2WE8UZpK2XKA
B1QnNvnEis8hNT0PPpObVDKxnAqyhSIRs5ziu52bu1plJPKsYvM533DoxA1zypRF
CuI+5Ig1z+6LkvuQ/bhQITCELPVh+zR/zgV2J0pmQSJXGPD5kUaVx5AAcB1L8wr3
hHMj8tPQZ5HOvg==
-----END CERTIFICATE-----
Generated at Tue Jun 10 01:25:14 2025 by rpki-client