Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
File:                     dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft (raw, json)
Hash identifier:          jy3oHBgLnFYc6GvgNddXC0Ug9Rk9ELZQ490P6zVR2WE=
Subject key identifier:   B4:21:2D:CD:19:8B:BF:2B:17:7B:40:42:7F:51:5F:5D:F7:18:74:1A
Authority key identifier: 74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76
Certificate issuer:       /CN=74b975898d10f1a5052133e1e25036c6114d8876
Certificate serial:       019757C8236418E2F219658885B444A40AC5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
Manifest number:          121E
Signing time:             Tue 10 Jun 2025 03:00:23 +0000
Manifest this update:     Tue 10 Jun 2025 03:00:23 +0000
Manifest next update:     Wed 11 Jun 2025 03:00:23 +0000
Files and hashes:         1: dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl (hash: rHihZp5xEYfnFuCLM5+7X0Uo3J0ZAjpVJyKCHGH31WQ=)
                          2: z_2rtoFCvPkDkADqibZPjoJmwkw.roa (hash: q/SzHtsnHuDBpVkpEWhHESnMoXOnwPbEJuDNiDhbwHs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 19:25:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:57:c8:23:64:18:e2:f2:19:65:88:85:b4:44:a4:0a:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74b975898d10f1a5052133e1e25036c6114d8876
        Validity
            Not Before: Jun 10 03:00:23 2025 GMT
            Not After : Jun 11 03:00:23 2025 GMT
        Subject: CN=b4212dcd198bbf2b177b40427f515f5df718741a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:2c:15:1f:bf:e3:ec:2c:20:83:26:25:5c:17:
                    7d:6d:be:60:db:3c:94:86:64:6c:67:95:d7:4c:21:
                    d2:55:04:db:9c:ae:04:3b:2f:e0:e6:b5:2d:62:64:
                    26:7a:e0:af:ab:9b:9a:27:19:b1:35:ee:2a:8e:13:
                    65:7a:2d:e2:5d:68:74:8c:a9:03:3d:30:85:71:c6:
                    eb:81:47:c6:a6:28:18:d4:cf:58:0c:69:f3:0f:a0:
                    3d:5c:e5:f5:cc:e0:47:58:89:5c:8b:a6:b3:16:17:
                    bc:9a:63:76:aa:2a:9a:b1:1e:5c:48:71:a2:4b:80:
                    15:5a:8a:c6:59:aa:10:38:c5:17:dd:0e:89:80:5c:
                    f2:bd:54:c8:55:66:eb:85:2d:1b:1c:1d:50:9c:af:
                    c9:8f:55:7b:20:51:ba:9c:94:80:78:b8:bf:3a:a3:
                    2d:21:31:ce:78:e0:9b:b8:16:75:08:7b:23:25:45:
                    da:04:be:52:f8:75:d8:36:f5:c3:fe:c5:78:e0:69:
                    c1:ea:93:0b:42:fa:f3:fc:27:bc:b3:6f:dc:6a:73:
                    3d:2c:30:cd:25:5d:92:53:a4:b1:85:62:1b:b2:cc:
                    1e:06:16:07:5b:16:95:78:0b:c2:67:5d:1f:d8:a9:
                    fc:8b:f2:2d:0c:8f:9f:66:b1:10:62:cb:dd:65:ea:
                    ca:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:21:2D:CD:19:8B:BF:2B:17:7B:40:42:7F:51:5F:5D:F7:18:74:1A
            X509v3 Authority Key Identifier:
                keyid:74:B9:75:89:8D:10:F1:A5:05:21:33:E1:E2:50:36:C6:11:4D:88:76

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLl1iY0Q8aUFITPh4lA2xhFNiHY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/90/9dcd0e-f319-4403-b164-b7c872dd9675/1/dLl1iY0Q8aUFITPh4lA2xhFNiHY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:b1:19:96:11:ae:4a:80:e2:0e:50:67:69:76:32:bf:50:30:
         fd:2e:01:04:9f:73:26:61:03:3b:4e:d7:46:91:30:11:be:c2:
         98:29:54:b3:fe:c6:28:57:2e:c5:73:9d:2a:83:19:ef:42:6a:
         83:13:04:09:0d:34:62:f5:82:61:e6:03:ff:47:fe:73:3c:33:
         73:b2:56:02:b7:21:6c:a9:c7:b7:5b:59:5d:20:f7:34:1e:dd:
         ee:af:05:aa:d4:bf:37:f9:74:af:82:18:38:98:b0:0f:a3:ac:
         8b:98:47:e6:ec:7c:61:6c:f9:77:2d:5d:0c:a2:13:e3:fa:c6:
         42:01:38:01:7f:f4:07:2b:f6:8f:bd:93:6c:8f:69:06:8d:ba:
         6d:c5:fb:e4:f8:0f:54:16:71:4b:6b:e5:88:af:71:a3:c3:77:
         7c:b3:bf:d9:17:76:7b:bd:57:66:ac:e3:2e:c9:b5:8b:76:5f:
         59:b6:29:a8:f5:2b:37:86:60:cf:66:2c:43:cd:f0:0d:b5:d9:
         01:4d:2c:9c:31:e1:45:2d:8f:43:98:7b:d1:eb:40:4f:8a:e0:
         48:66:f3:2f:72:a8:ac:47:0f:fe:15:ec:4d:5f:9a:65:43:6c:
         4f:7b:4b:26:ec:17:d2:7a:05:6c:e0:c8:6d:b5:11:b7:b0:c5:
         35:35:57:f0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdXyCNkGOLyGWWIhbREpArFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0Yjk3NTg5OGQxMGYxYTUwNTIxMzNlMWUyNTAzNmM2MTE0
ZDg4NzYwHhcNMjUwNjEwMDMwMDIzWhcNMjUwNjExMDMwMDIzWjAzMTEwLwYDVQQD
EyhiNDIxMmRjZDE5OGJiZjJiMTc3YjQwNDI3ZjUxNWY1ZGY3MTg3NDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwCwVH7/j7CwggyYlXBd9bb5g2zyU
hmRsZ5XXTCHSVQTbnK4EOy/g5rUtYmQmeuCvq5uaJxmxNe4qjhNlei3iXWh0jKkD
PTCFccbrgUfGpigY1M9YDGnzD6A9XOX1zOBHWIlci6azFhe8mmN2qiqasR5cSHGi
S4AVWorGWaoQOMUX3Q6JgFzyvVTIVWbrhS0bHB1QnK/Jj1V7IFG6nJSAeLi/OqMt
ITHOeOCbuBZ1CHsjJUXaBL5S+HXYNvXD/sV44GnB6pMLQvrz/Ce8s2/canM9LDDN
JV2SU6SxhWIbssweBhYHWxaVeAvCZ10f2Kn8i/ItDI+fZrEQYsvdZerK1QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLQhLc0Zi78rF3tAQn9RX133GHQaMB8GA1UdIwQY
MBaAFHS5dYmNEPGlBSEz4eJQNsYRTYh2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZExsMWlZMFE4YVVGSVRQaDRsQTJ4aEZOaUhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC85ZGNkMGUtZjMxOS00NDAzLWIxNjQt
YjdjODcyZGQ5Njc1LzEvZExsMWlZMFE4YVVGSVRQaDRsQTJ4aEZOaUhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC85ZGNkMGUtZjMxOS00NDAzLWIxNjQtYjdjODcyZGQ5Njc1
LzEvZExsMWlZMFE4YVVGSVRQaDRsQTJ4aEZOaUhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb7EZlhGu
SoDiDlBnaXYyv1Aw/S4BBJ9zJmEDO07XRpEwEb7CmClUs/7GKFcuxXOdKoMZ70Jq
gxMECQ00YvWCYeYD/0f+czwzc7JWArchbKnHt1tZXSD3NB7d7q8FqtS/N/l0r4IY
OJiwD6Osi5hH5ux8YWz5dy1dDKIT4/rGQgE4AX/0Byv2j72TbI9pBo26bcX75PgP
VBZxS2vliK9xo8N3fLO/2Rd2e71XZqzjLsm1i3ZfWbYpqPUrN4Zgz2YsQ83wDbXZ
AU0snDHhRS2PQ5h70etAT4rgSGbzL3KorEcP/hXsTV+aZUNsT3tLJuwX0noFbODI
bbURt7DFNTVX8A==
-----END CERTIFICATE-----
Generated at Tue Jun 10 05:29:53 2025 by rpki-client