Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
File:                     aDjl4BZgX27c1MlhwZys9YFMeKM.mft (raw, json)
Hash identifier:          DWB5Gdw7ePNXDXQevPox0B5OlZFlYbRa0CwWiLqvBDU=
Subject key identifier:   EC:6F:33:C1:68:D3:C2:08:70:29:39:E7:E8:DE:4A:4B:F2:20:12:23
Authority key identifier: 68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3
Certificate issuer:       /CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
Certificate serial:       01976A059C7EE3E3A6698260BFC22BACD773
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
Manifest number:          0FC9
Signing time:             Fri 13 Jun 2025 16:00:42 +0000
Manifest this update:     Fri 13 Jun 2025 16:00:42 +0000
Manifest next update:     Sat 14 Jun 2025 16:00:42 +0000
Files and hashes:         1: aDjl4BZgX27c1MlhwZys9YFMeKM.crl (hash: I7coMFAB4c1MHLKXZIjGk3Iz9fnkr5u+M/btu+BwJ6w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6a:05:9c:7e:e3:e3:a6:69:82:60:bf:c2:2b:ac:d7:73
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
        Validity
            Not Before: Jun 13 16:00:42 2025 GMT
            Not After : Jun 14 16:00:42 2025 GMT
        Subject: CN=ec6f33c168d3c208702939e7e8de4a4bf2201223
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:2b:ec:12:61:18:99:92:51:c0:cb:64:4c:0f:
                    27:d8:11:1f:6c:4f:61:31:04:0f:29:c9:11:e3:40:
                    16:98:21:9a:a5:6a:54:10:9e:35:4a:e7:d9:72:8f:
                    e8:65:56:ba:89:f9:43:a1:7e:6b:ba:f5:2d:5d:fb:
                    03:a0:f3:d3:41:8d:dc:78:d8:f5:80:64:f6:ef:0f:
                    47:e7:ce:ad:89:2d:56:51:99:32:61:72:53:38:de:
                    8d:be:90:86:ba:37:6a:1c:ab:6a:68:de:9b:e4:fc:
                    92:3e:3f:dd:df:c2:02:59:5d:ec:29:db:30:fe:ae:
                    76:4a:2a:22:64:8d:93:ba:da:6e:05:f4:d2:14:21:
                    e5:2f:ab:38:e3:d2:0e:81:8a:ec:2d:8d:9e:fd:4e:
                    6a:9b:17:1f:2f:77:ae:cb:6a:b3:2c:ac:13:45:3a:
                    bc:34:a3:ad:a8:60:a9:50:cc:6f:1f:d1:d6:e6:c7:
                    63:8b:b4:42:74:dc:27:fe:35:4c:7c:44:93:9d:0e:
                    0e:83:ac:dd:6e:ba:28:ef:72:ff:b3:d1:17:ae:32:
                    58:df:89:33:87:d4:97:dd:f5:52:91:ec:86:cc:f1:
                    fc:e3:7f:c0:50:48:60:8a:31:85:f2:a7:87:2f:88:
                    18:7f:11:4c:e2:f9:7c:f5:5f:20:0b:3c:0a:bd:f5:
                    b2:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:6F:33:C1:68:D3:C2:08:70:29:39:E7:E8:DE:4A:4B:F2:20:12:23
            X509v3 Authority Key Identifier:
                keyid:68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d3:c8:95:fa:c6:14:0d:3d:45:51:e8:95:af:25:da:41:8d:20:
         6f:34:f2:04:12:59:a6:6b:41:ce:84:9c:65:b9:07:a6:b4:bf:
         37:43:d7:89:34:92:e9:5a:d5:1b:31:e7:10:e0:18:01:4c:10:
         1a:00:80:70:92:89:e4:a4:fb:c6:a2:da:dc:a8:90:91:42:6f:
         96:d2:0c:f2:72:0f:d3:0b:83:03:52:f6:c8:0f:01:95:2e:dd:
         ed:f9:4b:df:ee:59:79:ee:1c:c0:a8:f4:d4:d6:36:6d:59:ec:
         bd:0e:b8:d8:58:8d:21:fe:a4:98:ac:6b:25:41:6d:23:6a:fa:
         2e:50:dc:08:9d:c0:76:5e:12:37:98:2e:96:c7:36:dd:62:e7:
         c7:eb:75:c0:38:33:11:eb:86:81:7e:49:77:2a:51:1c:e2:e8:
         8e:b3:50:ed:a6:dd:4c:a2:06:6c:c6:e3:6e:dc:fa:7f:f8:a3:
         78:59:0d:b1:4e:bd:67:a9:71:1e:25:ce:fa:2e:4b:ef:c4:e5:
         64:fc:09:f4:5f:8e:3d:4f:43:e4:a3:87:41:c0:1d:db:97:0e:
         90:0e:ea:02:09:f3:dd:fc:96:eb:f8:2d:fe:ae:5a:29:a6:e2:
         64:08:b4:97:0f:4b:5a:78:9f:1d:2a:11:d3:40:98:39:a8:af:
         1d:b1:69:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdqBZx+4+OmaYJgv8IrrNdzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MzhlNWUwMTY2MDVmNmVkY2Q0Yzk2MWMxOWNhY2Y1ODE0
Yzc4YTMwHhcNMjUwNjEzMTYwMDQyWhcNMjUwNjE0MTYwMDQyWjAzMTEwLwYDVQQD
EyhlYzZmMzNjMTY4ZDNjMjA4NzAyOTM5ZTdlOGRlNGE0YmYyMjAxMjIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyvsEmEYmZJRwMtkTA8n2BEfbE9h
MQQPKckR40AWmCGapWpUEJ41SufZco/oZVa6iflDoX5ruvUtXfsDoPPTQY3ceNj1
gGT27w9H586tiS1WUZkyYXJTON6NvpCGujdqHKtqaN6b5PySPj/d38ICWV3sKdsw
/q52SioiZI2TutpuBfTSFCHlL6s449IOgYrsLY2e/U5qmxcfL3euy2qzLKwTRTq8
NKOtqGCpUMxvH9HW5sdji7RCdNwn/jVMfESTnQ4Og6zdbroo73L/s9EXrjJY34kz
h9SX3fVSkeyGzPH843/AUEhgijGF8qeHL4gYfxFM4vl89V8gCzwKvfWy4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOxvM8Fo08IIcCk55+jeSkvyIBIjMB8GA1UdIwQY
MBaAFGg45eAWYF9u3NTJYcGcrPWBTHijMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURqbDRCWmdYMjdjMU1saHdaeXM5WUZNZUtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC83N2YxOTQtZmY1Zi00YTIzLWI4ODIt
ZjRjYzI1YTU0NTNmLzEvYURqbDRCWmdYMjdjMU1saHdaeXM5WUZNZUtNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC83N2YxOTQtZmY1Zi00YTIzLWI4ODItZjRjYzI1YTU0NTNm
LzEvYURqbDRCWmdYMjdjMU1saHdaeXM5WUZNZUtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA08iV+sYU
DT1FUeiVryXaQY0gbzTyBBJZpmtBzoScZbkHprS/N0PXiTSS6VrVGzHnEOAYAUwQ
GgCAcJKJ5KT7xqLa3KiQkUJvltIM8nIP0wuDA1L2yA8BlS7d7flL3+5Zee4cwKj0
1NY2bVnsvQ642FiNIf6kmKxrJUFtI2r6LlDcCJ3Adl4SN5gulsc23WLnx+t1wDgz
EeuGgX5JdypRHOLojrNQ7abdTKIGbMbjbtz6f/ijeFkNsU69Z6lxHiXO+i5L78Tl
ZPwJ9F+OPU9D5KOHQcAd25cOkA7qAgnz3fyW6/gt/q5aKabiZAi0lw9LWnifHSoR
00CYOaivHbFp6Q==
-----END CERTIFICATE-----
Generated at Fri Jun 13 23:19:47 2025 by rpki-client