Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
File:                     ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft (raw, json)
Hash identifier:          0q1GhqECHaITC24KFZwYE51/ckR7NdtQkdYwhcY4yT4=
Subject key identifier:   DF:9B:D1:DA:0E:B9:8E:54:14:D7:3E:9A:58:54:BC:AF:F2:93:1A:87
Authority key identifier: 7B:0D:46:C5:82:2C:AD:92:53:EA:53:A1:00:F3:D9:36:22:4A:E6:87
Certificate issuer:       /CN=7b0d46c5822cad9253ea53a100f3d936224ae687
Certificate serial:       019764DF117F7E31F256B8D85C175AF35EC5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
Manifest number:          03BB
Signing time:             Thu 12 Jun 2025 16:00:29 +0000
Manifest this update:     Thu 12 Jun 2025 16:00:29 +0000
Manifest next update:     Fri 13 Jun 2025 16:00:29 +0000
Files and hashes:         1: ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl (hash: Gip++w12QsMTWFSERmXHXugFYqrH0PBOoq4zkI3OtQw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 15:17:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:df:11:7f:7e:31:f2:56:b8:d8:5c:17:5a:f3:5e:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7b0d46c5822cad9253ea53a100f3d936224ae687
        Validity
            Not Before: Jun 12 16:00:29 2025 GMT
            Not After : Jun 13 16:00:29 2025 GMT
        Subject: CN=df9bd1da0eb98e5414d73e9a5854bcaff2931a87
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:26:ab:b5:60:49:93:0c:e1:65:8d:1b:94:1d:
                    cc:30:71:ca:6f:40:eb:62:0b:4f:93:49:8f:64:25:
                    4a:60:81:c7:0f:3f:a7:f3:7d:37:f0:6f:00:2f:5c:
                    17:0e:ef:54:3c:3a:70:c1:e9:91:07:78:9e:9d:03:
                    2c:7c:2b:45:90:60:81:3a:20:d9:3f:df:91:03:cd:
                    91:b9:f6:93:51:18:6e:fa:a6:18:48:3a:56:d7:ca:
                    ff:ce:c9:ed:71:b2:f2:f3:0f:83:ec:b2:28:70:63:
                    21:f9:cd:b1:ca:0b:5d:88:3c:08:99:3b:15:f5:10:
                    10:ad:96:20:34:c5:4a:43:b7:7d:85:7f:5f:5f:c0:
                    12:99:23:f3:c7:8d:5c:d0:96:66:11:80:01:e3:24:
                    8b:09:52:6f:d2:20:8f:5b:0c:52:04:e7:a6:e7:65:
                    36:04:ba:a9:28:f7:b4:f8:01:f1:6e:13:75:c7:b9:
                    74:88:99:5e:f8:c7:4c:c9:0f:8e:3a:db:65:d3:73:
                    4d:e9:56:34:35:25:69:ff:2c:73:6f:c5:9a:d0:73:
                    86:88:e9:81:93:7b:72:79:65:6b:0a:1b:99:39:4f:
                    9a:6e:a0:d8:ba:77:5c:75:b3:82:90:ff:9f:56:42:
                    e4:da:bf:66:f0:fd:ad:12:cb:d3:0a:b2:a2:7b:2a:
                    88:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DF:9B:D1:DA:0E:B9:8E:54:14:D7:3E:9A:58:54:BC:AF:F2:93:1A:87
            X509v3 Authority Key Identifier:
                keyid:7B:0D:46:C5:82:2C:AD:92:53:EA:53:A1:00:F3:D9:36:22:4A:E6:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c5:00:63:d7:c9:15:37:be:d5:d7:0f:31:ef:0c:50:0a:80:c7:
         f3:14:0e:5f:33:05:31:99:af:29:8e:fc:ee:d5:ea:9c:66:67:
         07:11:6b:96:64:3e:28:7d:1c:d0:dd:16:db:52:a2:32:14:a8:
         1f:1f:c6:8f:4d:66:33:3d:33:18:81:6e:44:f7:b2:0c:0b:73:
         02:a6:5b:7a:32:bd:e8:91:7c:41:b1:cc:20:c5:5f:10:df:31:
         12:6f:ae:5a:44:ff:9c:44:8e:10:0f:be:5a:47:83:08:24:5e:
         65:44:16:3e:d0:e1:c0:47:43:9d:c2:b2:ef:02:33:54:d0:e6:
         94:17:1b:67:e6:20:0a:44:82:e1:27:ef:03:41:6c:f6:f6:c0:
         28:46:b9:f9:43:05:3f:34:96:cb:0d:f9:41:78:2d:19:6b:e5:
         9b:e2:7f:e3:f6:b5:88:5f:be:2a:89:ef:ec:5b:ad:c7:e8:7b:
         8a:79:d3:6a:80:e0:c8:bc:56:da:42:7d:37:89:f2:fb:e2:04:
         35:18:7f:69:ef:cc:65:b2:23:94:63:3e:05:a4:b9:ff:32:c6:
         7a:7b:ec:ef:a1:9a:f1:cb:a7:e7:bd:a1:74:cc:36:c6:bd:34:
         f0:e9:9e:28:80:c9:3b:89:44:db:cf:ee:3a:f2:47:70:b3:96:
         47:0d:a6:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdk3xF/fjHyVrjYXBda817FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiMGQ0NmM1ODIyY2FkOTI1M2VhNTNhMTAwZjNkOTM2MjI0
YWU2ODcwHhcNMjUwNjEyMTYwMDI5WhcNMjUwNjEzMTYwMDI5WjAzMTEwLwYDVQQD
EyhkZjliZDFkYTBlYjk4ZTU0MTRkNzNlOWE1ODU0YmNhZmYyOTMxYTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyartWBJkwzhZY0blB3MMHHKb0Dr
YgtPk0mPZCVKYIHHDz+n83038G8AL1wXDu9UPDpwwemRB3ienQMsfCtFkGCBOiDZ
P9+RA82RufaTURhu+qYYSDpW18r/zsntcbLy8w+D7LIocGMh+c2xygtdiDwImTsV
9RAQrZYgNMVKQ7d9hX9fX8ASmSPzx41c0JZmEYAB4ySLCVJv0iCPWwxSBOem52U2
BLqpKPe0+AHxbhN1x7l0iJle+MdMyQ+OOttl03NN6VY0NSVp/yxzb8Wa0HOGiOmB
k3tyeWVrChuZOU+abqDYundcdbOCkP+fVkLk2r9m8P2tEsvTCrKieyqIwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN+b0doOuY5UFNc+mlhUvK/ykxqHMB8GA1UdIwQY
MBaAFHsNRsWCLK2SU+pToQDz2TYiSuaHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXcxR3hZSXNyWkpUNmxPaEFQUFpOaUpLNW9jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9jMjU0NDQtMjY3MS00YWQyLTkwNTAt
YmFhNTllY2UyYjYzLzEvZXcxR3hZSXNyWkpUNmxPaEFQUFpOaUpLNW9jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9jMjU0NDQtMjY3MS00YWQyLTkwNTAtYmFhNTllY2UyYjYz
LzEvZXcxR3hZSXNyWkpUNmxPaEFQUFpOaUpLNW9jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxQBj18kV
N77V1w8x7wxQCoDH8xQOXzMFMZmvKY787tXqnGZnBxFrlmQ+KH0c0N0W21KiMhSo
Hx/Gj01mMz0zGIFuRPeyDAtzAqZbejK96JF8QbHMIMVfEN8xEm+uWkT/nESOEA++
WkeDCCReZUQWPtDhwEdDncKy7wIzVNDmlBcbZ+YgCkSC4SfvA0Fs9vbAKEa5+UMF
PzSWyw35QXgtGWvlm+J/4/a1iF++Konv7Futx+h7innTaoDgyLxW2kJ9N4ny++IE
NRh/ae/MZbIjlGM+BaS5/zLGenvs76Ga8cun572hdMw2xr008OmeKIDJO4lE28/u
OvJHcLOWRw2mOA==
-----END CERTIFICATE-----
Generated at Fri Jun 13 00:34:17 2025 by rpki-client