Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
File:                     yjzk270E4HrOGTf4ChWvc5m4Aw4.mft (raw, json)
Hash identifier:          yJOUohM5hccdVX9EMxd0LJV1IRiAOJrwWl+qIhSTE+I=
Subject key identifier:   E0:20:FB:77:65:CE:65:1E:16:CA:63:B0:AB:2F:01:35:31:12:EA:57
Authority key identifier: CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E
Certificate issuer:       /CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e
Certificate serial:       01974D7BBEEDF696550CB79372879B2D14AD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
Manifest number:          0515
Signing time:             Sun 08 Jun 2025 03:00:44 +0000
Manifest this update:     Sun 08 Jun 2025 03:00:44 +0000
Manifest next update:     Mon 09 Jun 2025 03:00:44 +0000
Files and hashes:         1: yjzk270E4HrOGTf4ChWvc5m4Aw4.crl (hash: 0vXv2TKsWH8HKJb6/8U6m/fjY4A3wVGdOyWK4iCR2P0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 20:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4d:7b:be:ed:f6:96:55:0c:b7:93:72:87:9b:2d:14:ad
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e
        Validity
            Not Before: Jun  8 03:00:44 2025 GMT
            Not After : Jun  9 03:00:44 2025 GMT
        Subject: CN=e020fb7765ce651e16ca63b0ab2f01353112ea57
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:95:d5:a4:a9:58:9c:e4:8a:0d:ef:1d:d8:b5:
                    a2:9c:3d:36:e0:ef:e6:a2:04:13:61:55:dd:ae:9f:
                    ab:44:c5:96:09:57:20:7e:32:e4:51:40:04:d4:61:
                    02:0d:98:06:98:13:81:cd:9b:34:85:76:e9:88:0f:
                    7d:dc:fc:56:82:fc:16:18:19:7d:8e:4e:5a:05:aa:
                    c0:ac:e1:b4:2d:b5:d9:ba:fd:aa:ba:90:f7:a8:e2:
                    25:c8:91:14:5e:e5:da:b9:07:56:66:a2:4a:74:1c:
                    7a:63:4a:3e:db:b9:2f:c2:c9:cf:3e:67:4c:91:8c:
                    64:e4:83:37:14:60:bf:b3:84:70:75:16:e5:52:c0:
                    cf:bb:f0:5c:b3:52:88:9b:cf:f3:14:0f:91:66:dd:
                    ae:9b:24:53:19:fc:1e:10:70:63:c1:c4:ef:69:52:
                    d7:f3:ad:84:8a:00:bf:51:2a:6f:4b:9d:3b:9f:2d:
                    88:dd:74:15:8b:1b:f6:d4:79:42:4c:76:8d:7e:09:
                    59:45:06:ad:d6:48:e2:aa:b6:7a:49:1b:dd:b4:40:
                    22:15:f6:9b:04:9c:a1:36:d2:a5:81:6b:b7:dc:d4:
                    4f:57:c4:01:f4:96:47:a8:00:64:5e:da:17:50:dd:
                    e1:bd:8e:f1:bb:90:10:35:da:9a:63:16:44:af:66:
                    4e:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:20:FB:77:65:CE:65:1E:16:CA:63:B0:AB:2F:01:35:31:12:EA:57
            X509v3 Authority Key Identifier:
                keyid:CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         24:7b:b9:a2:02:1e:2b:f2:56:2b:bd:ef:45:0f:66:49:ea:80:
         22:68:14:b5:69:ab:46:f2:ea:a3:92:a8:21:4a:7a:67:b5:59:
         04:ba:84:34:44:11:b6:ad:db:63:3f:37:48:8b:0b:1e:85:5c:
         2d:e9:6b:22:6c:39:72:bb:bb:0e:e1:5a:75:ef:20:6e:f7:f0:
         c2:dc:65:2b:e9:94:61:ae:ae:6d:30:41:b8:f2:06:f2:5a:4a:
         cd:94:d8:94:11:3d:e4:74:42:55:e0:4b:a8:fc:54:a4:20:40:
         a0:8f:02:b7:94:85:64:9f:a0:5f:4e:01:32:e5:5c:31:27:4e:
         4b:56:a7:b9:95:9f:76:cb:c9:af:36:7a:12:a8:9d:8f:93:cf:
         d0:3e:90:69:e3:b3:8e:01:a8:fd:20:83:3c:23:98:56:76:59:
         4f:ee:3b:c4:21:d9:68:52:91:30:d5:0d:a9:7c:dd:39:34:52:
         a0:38:3d:84:d3:04:b9:f5:d2:6f:fd:1d:b0:78:3c:a5:6d:58:
         32:48:36:4b:fe:15:f5:6e:b1:25:cf:98:6b:ec:58:7e:e1:9d:
         b1:b9:ae:3e:79:32:a4:5c:2e:73:ce:78:ba:aa:0f:3a:ad:8e:
         ff:d9:0b:9c:67:78:3b:c2:37:9f:7a:4f:6d:9a:5e:f9:08:34:
         23:3b:b9:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdNe77t9pZVDLeTcoebLRStMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhM2NlNGRiYmQwNGUwN2FjZTE5MzdmODBhMTVhZjczOTli
ODAzMGUwHhcNMjUwNjA4MDMwMDQ0WhcNMjUwNjA5MDMwMDQ0WjAzMTEwLwYDVQQD
EyhlMDIwZmI3NzY1Y2U2NTFlMTZjYTYzYjBhYjJmMDEzNTMxMTJlYTU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpXVpKlYnOSKDe8d2LWinD024O/m
ogQTYVXdrp+rRMWWCVcgfjLkUUAE1GECDZgGmBOBzZs0hXbpiA993PxWgvwWGBl9
jk5aBarArOG0LbXZuv2qupD3qOIlyJEUXuXauQdWZqJKdBx6Y0o+27kvwsnPPmdM
kYxk5IM3FGC/s4RwdRblUsDPu/Bcs1KIm8/zFA+RZt2umyRTGfweEHBjwcTvaVLX
862EigC/USpvS507ny2I3XQVixv21HlCTHaNfglZRQat1kjiqrZ6SRvdtEAiFfab
BJyhNtKlgWu33NRPV8QB9JZHqABkXtoXUN3hvY7xu5AQNdqaYxZEr2ZORwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOAg+3dlzmUeFspjsKsvATUxEupXMB8GA1UdIwQY
MBaAFMo85Nu9BOB6zhk3+AoVr3OZuAMOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWp6azI3MEU0SHJPR1RmNENoV3ZjNW00QXc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9hNWQ5YTMtYzQ1NC00YjdlLTgwMGQt
NjE3Y2QzZGYzOTViLzEveWp6azI3MEU0SHJPR1RmNENoV3ZjNW00QXc0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS9hNWQ5YTMtYzQ1NC00YjdlLTgwMGQtNjE3Y2QzZGYzOTVi
LzEveWp6azI3MEU0SHJPR1RmNENoV3ZjNW00QXc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJHu5ogIe
K/JWK73vRQ9mSeqAImgUtWmrRvLqo5KoIUp6Z7VZBLqENEQRtq3bYz83SIsLHoVc
LelrImw5cru7DuFade8gbvfwwtxlK+mUYa6ubTBBuPIG8lpKzZTYlBE95HRCVeBL
qPxUpCBAoI8Ct5SFZJ+gX04BMuVcMSdOS1anuZWfdsvJrzZ6Eqidj5PP0D6QaeOz
jgGo/SCDPCOYVnZZT+47xCHZaFKRMNUNqXzdOTRSoDg9hNMEufXSb/0dsHg8pW1Y
Mkg2S/4V9W6xJc+Ya+xYfuGdsbmuPnkypFwuc854uqoPOq2O/9kLnGd4O8I3n3pP
bZpe+Qg0Izu5fg==
-----END CERTIFICATE-----