Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft
File:                     Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft (raw, json)
Hash identifier:          C4a4ua+mkWWKs/UehXH2ePFtH5wAQ9PsG2Isu5bv+Yk=
Subject key identifier:   32:52:25:D0:1F:5B:02:4C:8A:37:08:B8:E2:45:7A:0C:DA:FD:0B:9B
Authority key identifier: 0E:29:A4:82:DE:0D:56:74:6C:30:45:26:9F:99:20:52:04:F9:54:84
Certificate issuer:       /CN=0e29a482de0d56746c3045269f99205204f95484
Certificate serial:       01958C60776BE4E16DD49E91609F1021B629
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft
Manifest number:          103C
Signing time:             Wed 12 Mar 2025 22:01:26 +0000
Manifest this update:     Wed 12 Mar 2025 22:01:26 +0000
Manifest next update:     Thu 13 Mar 2025 22:01:26 +0000
Files and hashes:         1: Dimkgt4NVnRsMEUmn5kgUgT5VIQ.crl (hash: eguGWWbd7J/GlLcUNsUL9qB2YW4OjwKz56OnFWrLVnI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 13 Mar 2025 19:14:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:8c:60:77:6b:e4:e1:6d:d4:9e:91:60:9f:10:21:b6:29
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0e29a482de0d56746c3045269f99205204f95484
        Validity
            Not Before: Mar 12 22:01:26 2025 GMT
            Not After : Mar 13 22:01:26 2025 GMT
        Subject: CN=325225d01f5b024c8a3708b8e2457a0cdafd0b9b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:52:ec:9c:a3:cd:79:50:8a:b4:f0:05:da:e9:
                    2e:da:f0:47:a6:4e:d4:8c:e6:aa:89:87:44:16:6f:
                    59:a5:ce:40:b9:3c:38:ca:35:2d:db:aa:2f:53:64:
                    34:55:17:b8:57:93:74:97:b1:12:29:74:26:0d:12:
                    f5:74:07:2a:56:64:12:06:79:8e:56:9b:33:32:0e:
                    d4:19:e0:00:6c:24:06:71:f1:7a:3a:f7:ec:01:06:
                    74:45:64:fa:13:6c:d1:e8:28:fc:c1:87:f8:f6:e6:
                    41:55:9f:61:a1:5f:3c:5a:99:81:df:f6:93:fc:30:
                    fc:8d:85:77:91:47:8e:c2:9b:74:39:b2:3f:1c:3e:
                    9e:09:f1:f9:a3:f9:2a:88:47:f5:93:74:ea:1e:3a:
                    d1:cc:51:e0:b4:bf:72:25:d3:19:a6:fe:b5:76:19:
                    88:4d:c1:c9:11:d1:78:fb:02:38:0f:2d:f1:06:77:
                    9d:ac:cd:43:b4:41:35:5e:04:0a:2f:b6:ef:6b:fe:
                    24:66:85:91:72:d8:cc:de:09:c2:ca:8a:37:4b:03:
                    7f:d2:97:7f:9d:8b:94:84:e7:f3:68:6d:74:81:18:
                    3f:e6:65:4c:15:7b:71:91:8b:db:ea:bd:b2:b5:13:
                    d5:42:94:7d:9d:4a:b0:3f:56:23:ae:af:c2:55:63:
                    86:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                32:52:25:D0:1F:5B:02:4C:8A:37:08:B8:E2:45:7A:0C:DA:FD:0B:9B
            X509v3 Authority Key Identifier:
                keyid:0E:29:A4:82:DE:0D:56:74:6C:30:45:26:9F:99:20:52:04:F9:54:84

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/14a273-8b75-476c-b9e3-8bbd93940eef/1/Dimkgt4NVnRsMEUmn5kgUgT5VIQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:82:b3:ca:7b:6e:53:02:ec:f3:34:dc:f2:96:62:08:c4:ad:
         b1:d0:94:c2:98:ba:cd:9f:5e:96:fa:ef:02:97:94:35:f0:ce:
         e4:0b:45:2b:df:d6:c3:af:29:70:26:46:07:a9:58:b5:31:6d:
         ee:be:5b:50:8d:af:d5:62:3b:0f:7c:e6:09:1d:21:aa:17:de:
         a7:1c:44:05:18:87:58:3a:2b:d5:82:f6:e2:36:a6:e5:1f:46:
         c2:14:b7:9a:68:ec:ba:7c:4c:91:bc:84:5a:91:7f:d4:b4:2a:
         52:cd:07:cd:fb:6e:c5:1d:ad:7d:8d:2a:f8:27:53:a5:7c:6e:
         41:60:c8:62:f5:7c:50:da:87:74:9a:40:1d:86:53:21:f7:76:
         97:22:56:1a:d0:4f:ed:db:6a:e3:dd:8d:98:4f:5c:a6:45:4b:
         c8:95:70:16:f6:24:37:4b:37:6c:d0:f2:7d:40:32:6c:09:13:
         9b:e3:cc:95:56:b3:74:aa:a1:ed:59:11:39:db:ab:6b:0c:aa:
         c7:05:21:63:cf:86:84:79:13:a9:6a:2f:27:08:35:b9:b8:1c:
         09:f0:8c:25:72:90:c1:08:1a:37:7b:ad:df:0e:f3:57:48:89:
         07:18:e0:4e:47:5d:11:b9:25:d3:85:b3:55:6f:03:cb:bf:e8:
         ac:28:cb:6c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWMYHdr5OFt1J6RYJ8QIbYpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlMjlhNDgyZGUwZDU2NzQ2YzMwNDUyNjlmOTkyMDUyMDRm
OTU0ODQwHhcNMjUwMzEyMjIwMTI2WhcNMjUwMzEzMjIwMTI2WjAzMTEwLwYDVQQD
EygzMjUyMjVkMDFmNWIwMjRjOGEzNzA4YjhlMjQ1N2EwY2RhZmQwYjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVLsnKPNeVCKtPAF2uku2vBHpk7U
jOaqiYdEFm9Zpc5AuTw4yjUt26ovU2Q0VRe4V5N0l7ESKXQmDRL1dAcqVmQSBnmO
VpszMg7UGeAAbCQGcfF6OvfsAQZ0RWT6E2zR6Cj8wYf49uZBVZ9hoV88WpmB3/aT
/DD8jYV3kUeOwpt0ObI/HD6eCfH5o/kqiEf1k3TqHjrRzFHgtL9yJdMZpv61dhmI
TcHJEdF4+wI4Dy3xBnedrM1DtEE1XgQKL7bva/4kZoWRctjM3gnCyoo3SwN/0pd/
nYuUhOfzaG10gRg/5mVMFXtxkYvb6r2ytRPVQpR9nUqwP1Yjrq/CVWOGoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDJSJdAfWwJMijcIuOJFegza/QubMB8GA1UdIwQY
MBaAFA4ppILeDVZ0bDBFJp+ZIFIE+VSEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGlta2d0NE5WblJzTUVVbW41a2dVZ1Q1VklRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8xNGEyNzMtOGI3NS00NzZjLWI5ZTMt
OGJiZDkzOTQwZWVmLzEvRGlta2d0NE5WblJzTUVVbW41a2dVZ1Q1VklRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8xNGEyNzMtOGI3NS00NzZjLWI5ZTMtOGJiZDkzOTQwZWVm
LzEvRGlta2d0NE5WblJzTUVVbW41a2dVZ1Q1VklRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATIKzyntu
UwLs8zTc8pZiCMStsdCUwpi6zZ9elvrvApeUNfDO5AtFK9/Ww68pcCZGB6lYtTFt
7r5bUI2v1WI7D3zmCR0hqhfepxxEBRiHWDor1YL24jam5R9GwhS3mmjsunxMkbyE
WpF/1LQqUs0HzftuxR2tfY0q+CdTpXxuQWDIYvV8UNqHdJpAHYZTIfd2lyJWGtBP
7dtq492NmE9cpkVLyJVwFvYkN0s3bNDyfUAybAkTm+PMlVazdKqh7VkROdurawyq
xwUhY8+GhHkTqWovJwg1ubgcCfCMJXKQwQgaN3ut3w7zV0iJBxjgTkddEbkl04Wz
VW8Dy7/orCjLbA==
-----END CERTIFICATE-----