Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft
File:                     Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft (raw, json)
Hash identifier:          9C/K/YCe8gV6O5W5ysFJh1uzvyGD/KWq1k07wE30WSs=
Subject key identifier:   A1:EE:AE:59:13:E8:40:1A:E0:19:7E:85:12:F5:D8:A8:59:EF:D6:E0
Authority key identifier: 0E:29:A4:82:DE:0D:56:74:6C:30:45:26:9F:99:20:52:04:F9:54:84
Certificate issuer:       /CN=0e29a482de0d56746c3045269f99205204f95484
Certificate serial:       019921B17E3B9B82D9E2D5458179DC1FE0DC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft
Manifest number:          1217
Signing time:             Sun 07 Sep 2025 01:01:44 +0000
Manifest this update:     Sun 07 Sep 2025 01:01:44 +0000
Manifest next update:     Mon 08 Sep 2025 01:01:44 +0000
Files and hashes:         1: Dimkgt4NVnRsMEUmn5kgUgT5VIQ.crl (hash: rX/LqqHYrcyIe2PAu1dRCebRx8DKRsJT9MBrTMNJoQo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 01:01:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:21:b1:7e:3b:9b:82:d9:e2:d5:45:81:79:dc:1f:e0:dc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0e29a482de0d56746c3045269f99205204f95484
        Validity
            Not Before: Sep  7 01:01:44 2025 GMT
            Not After : Sep  8 01:01:44 2025 GMT
        Subject: CN=a1eeae5913e8401ae0197e8512f5d8a859efd6e0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:91:68:92:50:7f:bf:46:f5:83:d9:f2:4e:85:
                    1b:b8:97:5a:72:2e:ab:1e:f3:86:06:13:07:ab:6b:
                    62:b0:eb:fc:59:0e:cc:c2:02:14:8c:43:e3:1e:d8:
                    38:33:8a:67:2a:9c:d9:55:cb:91:c4:36:f2:66:34:
                    4c:52:28:c2:2a:78:bc:00:a7:91:3c:3b:47:7e:c2:
                    f6:6a:ca:a8:f9:f1:b4:c5:b8:05:b6:93:16:c5:5c:
                    f9:00:01:fb:06:db:10:e2:41:db:56:66:1d:61:3e:
                    d4:16:ea:67:41:fd:c5:da:41:a3:a2:e5:15:be:06:
                    e2:bf:68:69:c0:ae:f1:ba:bd:13:d1:8b:18:2c:09:
                    26:0f:81:b9:58:17:fa:74:7f:93:f6:36:eb:f3:87:
                    cb:c2:55:57:86:c0:37:fb:9b:7c:99:8c:60:c9:77:
                    e4:2e:ab:07:fd:e5:ee:89:2e:82:1c:e3:3f:25:92:
                    00:81:01:fd:94:26:ea:37:60:31:17:c4:98:b0:fc:
                    89:3a:e3:d3:b4:f0:cb:03:57:f9:21:8c:b8:f2:96:
                    4f:ca:8a:62:3b:d0:26:31:dd:75:20:7c:fb:d8:14:
                    67:0a:16:ca:f0:08:1d:c2:29:15:17:77:4c:36:44:
                    0a:2e:4b:7d:de:aa:c3:01:b0:99:0c:f6:4c:0c:ed:
                    02:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A1:EE:AE:59:13:E8:40:1A:E0:19:7E:85:12:F5:D8:A8:59:EF:D6:E0
            X509v3 Authority Key Identifier:
                keyid:0E:29:A4:82:DE:0D:56:74:6C:30:45:26:9F:99:20:52:04:F9:54:84

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:2c:34:29:6a:a6:61:3d:d8:e8:76:97:a5:37:92:15:0b:13:
         76:6c:d0:d3:bb:d0:10:52:28:3f:37:a8:ca:a9:4e:7c:e0:3e:
         d0:fa:99:c7:49:32:84:92:e6:bf:87:7a:c9:42:89:15:7e:74:
         6b:70:7f:a9:4f:bb:dc:06:12:a7:41:49:01:d3:cf:fe:eb:01:
         44:fc:de:de:62:5b:fa:06:97:dd:34:27:61:db:8b:1f:49:df:
         e2:66:d9:62:0e:11:f7:f5:fc:30:19:fe:9d:4f:dc:f8:10:a7:
         37:8f:8a:8a:0c:1c:c1:65:3b:a4:99:78:ba:6f:5a:1e:48:6b:
         d6:9c:2f:b5:4d:4b:b0:48:94:55:ae:84:c1:7d:67:b3:65:8b:
         be:4a:22:c7:75:ef:03:e3:65:9f:00:f8:8c:fc:68:4c:9d:fc:
         c3:83:46:b9:5c:9c:ab:ff:e0:f5:39:04:e1:45:cf:1a:71:f7:
         40:7c:91:b1:c8:ca:97:03:e3:3a:fb:f3:5d:6a:e7:60:cc:c0:
         6e:4b:7a:a4:94:93:b7:c1:63:2c:a0:06:d3:ba:37:2a:28:37:
         14:65:82:e4:de:d0:9e:73:2f:25:ca:15:8c:3e:4d:0e:58:48:
         f3:83:f1:7a:55:a5:85:22:56:f7:c0:b2:7d:49:ba:a3:f7:e2:
         22:b9:12:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsX47m4LZ4tVFgXncH+DcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlMjlhNDgyZGUwZDU2NzQ2YzMwNDUyNjlmOTkyMDUyMDRm
OTU0ODQwHhcNMjUwOTA3MDEwMTQ0WhcNMjUwOTA4MDEwMTQ0WjAzMTEwLwYDVQQD
EyhhMWVlYWU1OTEzZTg0MDFhZTAxOTdlODUxMmY1ZDhhODU5ZWZkNmUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt5FoklB/v0b1g9nyToUbuJdaci6r
HvOGBhMHq2tisOv8WQ7MwgIUjEPjHtg4M4pnKpzZVcuRxDbyZjRMUijCKni8AKeR
PDtHfsL2asqo+fG0xbgFtpMWxVz5AAH7BtsQ4kHbVmYdYT7UFupnQf3F2kGjouUV
vgbiv2hpwK7xur0T0YsYLAkmD4G5WBf6dH+T9jbr84fLwlVXhsA3+5t8mYxgyXfk
LqsH/eXuiS6CHOM/JZIAgQH9lCbqN2AxF8SYsPyJOuPTtPDLA1f5IYy48pZPyopi
O9AmMd11IHz72BRnChbK8AgdwikVF3dMNkQKLkt93qrDAbCZDPZMDO0CuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKHurlkT6EAa4Bl+hRL12KhZ79bgMB8GA1UdIwQY
MBaAFA4ppILeDVZ0bDBFJp+ZIFIE+VSEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGlta2d0NE5WblJzTUVVbW41a2dVZ1Q1VklRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8xNGEyNzMtOGI3NS00NzZjLWI5ZTMt
OGJiZDkzOTQwZWVmLzEvRGlta2d0NE5WblJzTUVVbW41a2dVZ1Q1VklRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8xNGEyNzMtOGI3NS00NzZjLWI5ZTMtOGJiZDkzOTQwZWVm
LzEvRGlta2d0NE5WblJzTUVVbW41a2dVZ1Q1VklRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAayw0KWqm
YT3Y6HaXpTeSFQsTdmzQ07vQEFIoPzeoyqlOfOA+0PqZx0kyhJLmv4d6yUKJFX50
a3B/qU+73AYSp0FJAdPP/usBRPze3mJb+gaX3TQnYduLH0nf4mbZYg4R9/X8MBn+
nU/c+BCnN4+KigwcwWU7pJl4um9aHkhr1pwvtU1LsEiUVa6EwX1ns2WLvkoix3Xv
A+NlnwD4jPxoTJ38w4NGuVycq//g9TkE4UXPGnH3QHyRscjKlwPjOvvzXWrnYMzA
bkt6pJSTt8FjLKAG07o3Kig3FGWC5N7QnnMvJcoVjD5NDlhI84PxelWlhSJW98Cy
fUm6o/fiIrkStg==
-----END CERTIFICATE-----