Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft
File:                     MlPNw--1IdnV5wqcxeRxsBWGA2o.mft (raw, json)
Hash identifier:          nUCK/HWIt0eYCtVmiOqdVNM0vMxhkSgjZxSxalGhVDY=
Subject key identifier:   C1:88:E3:F1:0C:BB:AB:E4:BC:5B:0A:8B:77:76:8E:EA:A7:25:BA:00
Authority key identifier: 32:53:CD:C3:EF:B5:21:D9:D5:E7:0A:9C:C5:E4:71:B0:15:86:03:6A
Certificate issuer:       /CN=3253cdc3efb521d9d5e70a9cc5e471b01586036a
Certificate serial:       01975FB91142BC09844EEFE8A50335022119
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MlPNw--1IdnV5wqcxeRxsBWGA2o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft
Manifest number:          08AC
Signing time:             Wed 11 Jun 2025 16:00:53 +0000
Manifest this update:     Wed 11 Jun 2025 16:00:53 +0000
Manifest next update:     Thu 12 Jun 2025 16:00:53 +0000
Files and hashes:         1: MlPNw--1IdnV5wqcxeRxsBWGA2o.crl (hash: oHP0atD1mD0sgpGmf2diHEmMqBrEij2uNpXhpMPCqyI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MlPNw--1IdnV5wqcxeRxsBWGA2o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 15:40:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5f:b9:11:42:bc:09:84:4e:ef:e8:a5:03:35:02:21:19
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3253cdc3efb521d9d5e70a9cc5e471b01586036a
        Validity
            Not Before: Jun 11 16:00:53 2025 GMT
            Not After : Jun 12 16:00:53 2025 GMT
        Subject: CN=c188e3f10cbbabe4bc5b0a8b77768eeaa725ba00
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:4c:6b:ff:ec:7e:92:06:e0:a6:c2:22:9b:7f:
                    bd:8c:11:21:fd:e6:99:c4:7e:27:a7:81:a7:54:8e:
                    a8:28:2e:61:8f:56:06:8f:20:90:20:28:09:7b:55:
                    30:b8:d3:8b:47:d9:f3:61:39:f9:f0:24:46:e9:a0:
                    25:f2:6c:36:cb:f9:50:bd:1c:50:73:8e:52:05:14:
                    60:70:17:91:a9:cb:db:e6:06:41:85:f6:da:01:a6:
                    95:72:b9:30:30:33:47:f9:69:9d:ce:fd:eb:0b:f0:
                    4e:7d:08:30:d5:ce:d6:ce:00:46:d3:c2:4e:9a:2b:
                    2c:1c:d9:34:02:8e:24:fe:4e:00:18:1e:ac:4b:a9:
                    41:a3:93:54:53:e3:4c:e3:3e:3f:a1:65:1e:00:d9:
                    8a:86:a2:98:7e:cd:5f:c7:90:51:8f:1a:ed:a1:c1:
                    a2:be:63:d5:74:01:4b:76:d3:42:09:45:72:79:ae:
                    8d:54:3c:34:2f:1f:a0:6d:94:8d:d0:3c:3a:6f:c8:
                    28:c7:fb:b4:2a:81:8a:e9:67:3f:c2:70:4f:4d:83:
                    0b:eb:e4:df:34:f6:cd:3e:c2:17:9f:cc:d2:b1:62:
                    b3:a8:f1:e7:b1:c5:21:86:60:bd:03:b4:67:f0:8f:
                    95:48:08:71:2c:87:dc:1f:be:6d:a4:d6:de:33:6e:
                    32:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:88:E3:F1:0C:BB:AB:E4:BC:5B:0A:8B:77:76:8E:EA:A7:25:BA:00
            X509v3 Authority Key Identifier:
                keyid:32:53:CD:C3:EF:B5:21:D9:D5:E7:0A:9C:C5:E4:71:B0:15:86:03:6A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlPNw--1IdnV5wqcxeRxsBWGA2o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/51a115-de86-4407-a963-1c5c20d13ef8/1/MlPNw--1IdnV5wqcxeRxsBWGA2o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:7e:46:04:69:28:09:cb:d1:71:61:71:f9:43:62:0a:9e:cf:
         a9:1b:46:37:d5:4c:8a:13:ab:56:0a:18:de:22:ee:59:72:31:
         06:2e:13:93:ab:d3:86:96:f6:82:ab:54:a1:c4:4b:da:2c:3d:
         25:39:6e:ae:8f:26:56:63:79:1f:fc:67:33:51:1b:7b:d6:21:
         7e:4f:b6:78:4c:75:94:39:98:b4:b5:e4:5a:72:9e:a5:f6:40:
         11:d2:51:30:f8:75:f9:8d:05:e2:62:cf:54:40:92:72:3b:de:
         23:78:72:d3:b9:ec:b0:73:56:b6:c9:16:93:35:b3:51:bd:5d:
         a2:ce:19:fe:6c:2a:da:dc:57:54:33:63:02:9b:0f:98:71:86:
         9a:2b:09:75:8c:b9:36:48:fe:99:73:96:b7:2c:9f:03:a1:6b:
         39:41:a1:51:30:bf:7d:2c:64:10:ad:5d:5d:f4:af:8b:6d:c7:
         86:69:49:64:bc:e8:e5:34:8d:c9:5e:ab:cc:a5:58:1b:ff:79:
         66:c8:5b:90:98:53:cb:e6:6b:37:9f:0c:3f:3f:b9:de:0a:b0:
         6b:fa:f3:07:95:36:12:7e:7a:d0:b0:30:59:d2:ed:31:26:74:
         d6:e4:0d:72:81:4b:75:f1:2c:2c:1b:c7:aa:95:0e:a0:a7:da:
         a2:02:29:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdfuRFCvAmETu/opQM1AiEZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNTNjZGMzZWZiNTIxZDlkNWU3MGE5Y2M1ZTQ3MWIwMTU4
NjAzNmEwHhcNMjUwNjExMTYwMDUzWhcNMjUwNjEyMTYwMDUzWjAzMTEwLwYDVQQD
EyhjMTg4ZTNmMTBjYmJhYmU0YmM1YjBhOGI3Nzc2OGVlYWE3MjViYTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokxr/+x+kgbgpsIim3+9jBEh/eaZ
xH4np4GnVI6oKC5hj1YGjyCQICgJe1UwuNOLR9nzYTn58CRG6aAl8mw2y/lQvRxQ
c45SBRRgcBeRqcvb5gZBhfbaAaaVcrkwMDNH+Wmdzv3rC/BOfQgw1c7WzgBG08JO
missHNk0Ao4k/k4AGB6sS6lBo5NUU+NM4z4/oWUeANmKhqKYfs1fx5BRjxrtocGi
vmPVdAFLdtNCCUVyea6NVDw0Lx+gbZSN0Dw6b8gox/u0KoGK6Wc/wnBPTYML6+Tf
NPbNPsIXn8zSsWKzqPHnscUhhmC9A7Rn8I+VSAhxLIfcH75tpNbeM24ySwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMGI4/EMu6vkvFsKi3d2juqnJboAMB8GA1UdIwQY
MBaAFDJTzcPvtSHZ1ecKnMXkcbAVhgNqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWxQTnctLTFJZG5WNXdxY3hlUnhzQldHQTJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS81MWExMTUtZGU4Ni00NDA3LWE5NjMt
MWM1YzIwZDEzZWY4LzEvTWxQTnctLTFJZG5WNXdxY3hlUnhzQldHQTJvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS81MWExMTUtZGU4Ni00NDA3LWE5NjMtMWM1YzIwZDEzZWY4
LzEvTWxQTnctLTFJZG5WNXdxY3hlUnhzQldHQTJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABn5GBGko
CcvRcWFx+UNiCp7PqRtGN9VMihOrVgoY3iLuWXIxBi4Tk6vThpb2gqtUocRL2iw9
JTluro8mVmN5H/xnM1Ebe9Yhfk+2eEx1lDmYtLXkWnKepfZAEdJRMPh1+Y0F4mLP
VECScjveI3hy07nssHNWtskWkzWzUb1dos4Z/mwq2txXVDNjApsPmHGGmisJdYy5
Nkj+mXOWtyyfA6FrOUGhUTC/fSxkEK1dXfSvi23HhmlJZLzo5TSNyV6rzKVYG/95
ZshbkJhTy+ZrN58MPz+53gqwa/rzB5U2En560LAwWdLtMSZ01uQNcoFLdfEsLBvH
qpUOoKfaogIpBA==
-----END CERTIFICATE-----
Generated at Wed Jun 11 23:11:24 2025 by rpki-client