Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.mft
File:                     UgO7TxlYEfjXcjygGgsv-963Whs.mft (raw, json)
Hash identifier:          r1RClhZy6SXko+EMt9bq+sSvlAgUHLgP3L51UxCJUpU=
Subject key identifier:   00:80:57:B1:2E:1B:A2:84:5C:0F:0C:FF:C0:29:AA:AF:60:53:08:04
Authority key identifier: 52:03:BB:4F:19:58:11:F8:D7:72:3C:A0:1A:0B:2F:FB:DE:B7:5A:1B
Certificate issuer:       /CN=5203bb4f195811f8d7723ca01a0b2ffbdeb75a1b
Certificate serial:       019752A214CE68BE1A2B3234B4ED127F1561
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UgO7TxlYEfjXcjygGgsv-963Whs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.mft
Manifest number:          01B6
Signing time:             Mon 09 Jun 2025 03:00:43 +0000
Manifest this update:     Mon 09 Jun 2025 03:00:43 +0000
Manifest next update:     Tue 10 Jun 2025 03:00:43 +0000
Files and hashes:         1: UgO7TxlYEfjXcjygGgsv-963Whs.crl (hash: 2/zSooXWa8LvlejDXKgz4NdGdTrYOyMHYdqSXZF99R0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UgO7TxlYEfjXcjygGgsv-963Whs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 02:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:52:a2:14:ce:68:be:1a:2b:32:34:b4:ed:12:7f:15:61
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5203bb4f195811f8d7723ca01a0b2ffbdeb75a1b
        Validity
            Not Before: Jun  9 03:00:43 2025 GMT
            Not After : Jun 10 03:00:43 2025 GMT
        Subject: CN=008057b12e1ba2845c0f0cffc029aaaf60530804
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:73:15:91:e5:9b:f1:c4:54:9c:a3:be:61:5c:
                    07:d4:77:e2:2b:14:3c:dd:a6:8b:f8:b1:ac:ca:e8:
                    1c:25:8a:32:36:f0:36:ab:6b:4b:cb:cf:93:9d:16:
                    d7:e2:7c:f1:b9:09:8d:e7:c3:b5:5e:93:56:91:33:
                    19:02:c2:79:16:9f:ae:9a:3e:e3:1a:38:70:6c:73:
                    1d:4e:46:38:a1:6b:c5:7f:ea:48:de:a7:73:dc:58:
                    1c:c6:dd:0e:ce:76:2e:1b:69:8d:25:05:cd:5f:3e:
                    4a:b6:2f:ea:e7:9c:ff:36:37:8d:cb:de:c5:3a:41:
                    30:19:f4:65:f3:13:95:c5:56:b5:73:ba:79:a5:47:
                    14:23:c6:6b:81:cd:72:85:d9:e0:e6:a3:9d:b6:0a:
                    75:b4:95:d3:ef:3b:b6:13:80:11:bc:9d:68:af:71:
                    92:4e:62:dc:98:33:ba:87:da:bb:ec:47:a4:8c:7e:
                    24:96:7f:ae:96:ec:ee:86:e0:f5:6d:45:e9:b5:50:
                    2b:83:13:ac:d0:7c:b9:1a:28:6b:cb:05:71:60:8f:
                    97:80:1b:c5:3a:72:b0:59:41:83:0d:b7:af:ae:dc:
                    37:fa:c3:74:00:fe:c8:99:e4:5d:a0:72:90:bc:79:
                    3b:18:40:d0:98:a2:88:e5:2b:e8:74:c5:bf:d5:76:
                    00:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:80:57:B1:2E:1B:A2:84:5C:0F:0C:FF:C0:29:AA:AF:60:53:08:04
            X509v3 Authority Key Identifier:
                keyid:52:03:BB:4F:19:58:11:F8:D7:72:3C:A0:1A:0B:2F:FB:DE:B7:5A:1B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgO7TxlYEfjXcjygGgsv-963Whs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:2e:73:55:0a:13:10:6f:1f:0f:36:83:bf:01:ff:91:d0:24:
         90:14:9b:f4:75:16:df:19:48:0f:ca:c9:c2:34:af:af:90:2b:
         c6:2d:b2:7e:32:7f:4f:89:49:d9:22:0e:4a:3a:94:6a:42:67:
         7c:c5:1c:58:4b:0e:00:e3:4f:f4:85:87:bb:e9:25:86:c6:42:
         12:5c:30:9c:2a:8a:ce:3c:fc:8a:14:03:01:87:0a:74:06:d6:
         f6:21:3f:8f:3c:d2:68:29:e9:1f:6a:c5:b3:22:64:ad:20:30:
         47:2f:62:73:bb:c9:6f:5a:d3:db:ce:3b:ee:8c:0a:70:2c:53:
         dc:96:bc:78:e7:c5:c2:9a:a2:43:f7:bc:15:45:47:d0:47:dd:
         ba:b7:0d:82:13:15:c9:a4:a2:83:6c:1c:65:51:88:33:d5:2a:
         aa:7c:72:3b:bf:fe:d8:d3:69:ed:ec:95:c6:f1:c0:87:c8:67:
         78:d9:95:80:8e:dc:31:dd:67:9a:77:15:f2:f1:fa:07:1f:28:
         13:7f:05:7e:dd:b3:52:bd:af:98:43:f5:78:fc:e5:ee:5d:7a:
         a5:2f:a4:46:95:7f:06:45:dd:73:a0:2d:bb:ae:b7:55:0d:17:
         e6:ea:9d:41:e6:41:38:1f:24:c9:59:52:04:b6:cc:5d:89:2a:
         e4:00:0c:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdSohTOaL4aKzI0tO0SfxVhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyMDNiYjRmMTk1ODExZjhkNzcyM2NhMDFhMGIyZmZiZGVi
NzVhMWIwHhcNMjUwNjA5MDMwMDQzWhcNMjUwNjEwMDMwMDQzWjAzMTEwLwYDVQQD
EygwMDgwNTdiMTJlMWJhMjg0NWMwZjBjZmZjMDI5YWFhZjYwNTMwODA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2nMVkeWb8cRUnKO+YVwH1HfiKxQ8
3aaL+LGsyugcJYoyNvA2q2tLy8+TnRbX4nzxuQmN58O1XpNWkTMZAsJ5Fp+umj7j
GjhwbHMdTkY4oWvFf+pI3qdz3Fgcxt0OznYuG2mNJQXNXz5Kti/q55z/NjeNy97F
OkEwGfRl8xOVxVa1c7p5pUcUI8Zrgc1yhdng5qOdtgp1tJXT7zu2E4ARvJ1or3GS
TmLcmDO6h9q77EekjH4kln+uluzuhuD1bUXptVArgxOs0Hy5GihrywVxYI+XgBvF
OnKwWUGDDbevrtw3+sN0AP7ImeRdoHKQvHk7GEDQmKKI5SvodMW/1XYAOQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFACAV7EuG6KEXA8M/8Apqq9gUwgEMB8GA1UdIwQY
MBaAFFIDu08ZWBH413I8oBoLL/vet1obMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWdPN1R4bFlFZmpYY2p5Z0dnc3YtOTYzV2hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC8wYTkyYTEtZTU5NC00MWVlLTg1NWMt
MmJhNmEwMjJkNGM5LzEvVWdPN1R4bFlFZmpYY2p5Z0dnc3YtOTYzV2hzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC8wYTkyYTEtZTU5NC00MWVlLTg1NWMtMmJhNmEwMjJkNGM5
LzEvVWdPN1R4bFlFZmpYY2p5Z0dnc3YtOTYzV2hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABi5zVQoT
EG8fDzaDvwH/kdAkkBSb9HUW3xlID8rJwjSvr5Arxi2yfjJ/T4lJ2SIOSjqUakJn
fMUcWEsOAONP9IWHu+klhsZCElwwnCqKzjz8ihQDAYcKdAbW9iE/jzzSaCnpH2rF
syJkrSAwRy9ic7vJb1rT28477owKcCxT3Ja8eOfFwpqiQ/e8FUVH0EfdurcNghMV
yaSig2wcZVGIM9UqqnxyO7/+2NNp7eyVxvHAh8hneNmVgI7cMd1nmncV8vH6Bx8o
E38Fft2zUr2vmEP1ePzl7l16pS+kRpV/BkXdc6Atu663VQ0X5uqdQeZBOB8kyVlS
BLbMXYkq5AAM2w==
-----END CERTIFICATE-----
Generated at Mon Jun 9 12:43:07 2025 by rpki-client