Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
File:                     zrxhguhz_3oDHIiV79xXw2hx3XI.mft (raw, json)
Hash identifier:          +cQKJxfs2R4tBjqFMA9a7MIyLNTqt5eNHRvhatRJBbY=
Subject key identifier:   61:25:77:5A:69:EE:F0:A7:52:93:BF:E8:13:DD:3F:9B:CD:FB:2B:D3
Authority key identifier: CE:BC:61:82:E8:73:FF:7A:03:1C:88:95:EF:DC:57:C3:68:71:DD:72
Certificate issuer:       /CN=cebc6182e873ff7a031c8895efdc57c36871dd72
Certificate serial:       01976961A82C0316A7B1445F7AB2C3B43F32
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
Manifest number:          0121
Signing time:             Fri 13 Jun 2025 13:01:37 +0000
Manifest this update:     Fri 13 Jun 2025 13:01:37 +0000
Manifest next update:     Sat 14 Jun 2025 13:01:37 +0000
Files and hashes:         1: zrxhguhz_3oDHIiV79xXw2hx3XI.crl (hash: oMJY7QF7VqYYmVjAS1j347we53YJuJt4eyHZT4OyJW4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:01:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:61:a8:2c:03:16:a7:b1:44:5f:7a:b2:c3:b4:3f:32
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cebc6182e873ff7a031c8895efdc57c36871dd72
        Validity
            Not Before: Jun 13 13:01:37 2025 GMT
            Not After : Jun 14 13:01:37 2025 GMT
        Subject: CN=6125775a69eef0a75293bfe813dd3f9bcdfb2bd3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:97:27:57:5a:37:87:29:fd:ab:9d:e2:36:4d:
                    25:e6:18:bb:e0:e0:e8:0c:dd:a4:a1:87:af:6e:bb:
                    98:d0:f7:c3:9e:25:bf:e6:f2:8b:b4:2d:e0:d1:11:
                    56:9c:20:04:5a:94:8a:07:fa:dc:c5:8a:16:9a:6f:
                    31:eb:99:5b:30:3f:0e:e6:1f:00:60:9e:d0:fd:01:
                    f0:90:11:08:eb:f3:3b:81:95:b0:3a:eb:be:0d:99:
                    63:f5:ad:da:a5:de:18:3c:ce:0b:18:7e:de:9a:6e:
                    fc:df:34:5d:5b:c7:e8:68:80:2c:18:de:6e:b3:9c:
                    b7:d5:36:df:f3:b6:08:cd:29:ff:57:03:3b:d8:3e:
                    03:f1:56:64:02:2e:47:c1:79:9e:65:a6:d9:7d:73:
                    4b:9a:3b:66:e5:d5:60:3a:64:2f:1a:68:2a:45:2f:
                    67:50:f4:c9:7c:71:9e:75:aa:0d:67:f2:3e:dc:38:
                    27:6e:ed:54:8f:2a:98:7b:c4:0d:e9:ca:e1:7c:dc:
                    7b:5a:57:dd:d5:6b:47:b8:ae:b3:0c:66:37:e2:9a:
                    e2:b6:e4:ab:6f:a8:c4:6c:80:49:12:f8:a8:06:dc:
                    d7:a5:9d:c2:3d:6d:43:a4:b5:0d:00:cf:f8:89:99:
                    a9:d6:7f:23:c6:f2:e2:aa:4d:1f:ea:10:8c:10:1d:
                    cb:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:25:77:5A:69:EE:F0:A7:52:93:BF:E8:13:DD:3F:9B:CD:FB:2B:D3
            X509v3 Authority Key Identifier:
                keyid:CE:BC:61:82:E8:73:FF:7A:03:1C:88:95:EF:DC:57:C3:68:71:DD:72

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         af:63:26:b7:f2:47:bb:7a:34:57:82:33:9b:c6:35:f6:e1:87:
         f6:f8:07:cc:69:63:1e:d3:5b:94:46:ad:af:87:00:93:69:29:
         59:c2:22:67:a5:86:c6:7a:46:76:62:3e:1c:6d:e6:b3:6a:db:
         37:f3:73:11:8d:c6:b1:41:b2:0a:00:59:54:f3:4f:7c:15:7a:
         c0:77:d9:ce:ec:b0:59:7f:6f:f3:d9:d6:f6:c8:57:b3:3f:02:
         62:14:89:0a:0e:72:d2:4a:ca:20:8c:6e:6f:ed:3e:61:f0:5c:
         a3:c2:80:ff:ad:8a:ae:03:7d:9c:c6:db:8c:36:97:a3:69:30:
         f3:55:2a:70:05:7a:55:95:b6:d8:c0:76:77:61:42:71:80:49:
         85:49:ea:46:6d:db:12:66:ab:d9:a7:67:5d:27:16:15:18:b8:
         e5:a1:5c:10:dd:f6:f5:58:cd:05:80:20:9f:3e:59:bf:a0:15:
         aa:45:39:90:49:0e:15:cc:eb:ee:a5:46:46:44:b6:41:71:73:
         26:49:d6:d1:64:ba:51:ce:27:4e:69:11:2e:89:b4:55:f2:b0:
         cd:f7:c0:d7:51:46:64:fc:f7:7f:e9:dd:da:32:3c:86:ca:95:
         49:98:6f:a4:7e:7a:d5:ab:d8:19:d1:14:44:cc:8f:35:c1:62:
         5d:cf:cb:fa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpYagsAxansURferLDtD8yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlYmM2MTgyZTg3M2ZmN2EwMzFjODg5NWVmZGM1N2MzNjg3
MWRkNzIwHhcNMjUwNjEzMTMwMTM3WhcNMjUwNjE0MTMwMTM3WjAzMTEwLwYDVQQD
Eyg2MTI1Nzc1YTY5ZWVmMGE3NTI5M2JmZTgxM2RkM2Y5YmNkZmIyYmQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoJcnV1o3hyn9q53iNk0l5hi74ODo
DN2koYevbruY0PfDniW/5vKLtC3g0RFWnCAEWpSKB/rcxYoWmm8x65lbMD8O5h8A
YJ7Q/QHwkBEI6/M7gZWwOuu+DZlj9a3apd4YPM4LGH7emm783zRdW8foaIAsGN5u
s5y31Tbf87YIzSn/VwM72D4D8VZkAi5HwXmeZabZfXNLmjtm5dVgOmQvGmgqRS9n
UPTJfHGedaoNZ/I+3Dgnbu1UjyqYe8QN6crhfNx7Wlfd1WtHuK6zDGY34prituSr
b6jEbIBJEvioBtzXpZ3CPW1DpLUNAM/4iZmp1n8jxvLiqk0f6hCMEB3L2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGEld1pp7vCnUpO/6BPdP5vN+yvTMB8GA1UdIwQY
MBaAFM68YYLoc/96AxyIle/cV8Nocd1yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenJ4aGd1aHpfM29ESElpVjc5eFh3Mmh4M1hJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS80MDdiYWQtYWVkOC00NWUxLWIzZWEt
MmIzNjkxNThhOGIzLzEvenJ4aGd1aHpfM29ESElpVjc5eFh3Mmh4M1hJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS80MDdiYWQtYWVkOC00NWUxLWIzZWEtMmIzNjkxNThhOGIz
LzEvenJ4aGd1aHpfM29ESElpVjc5eFh3Mmh4M1hJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr2Mmt/JH
u3o0V4Izm8Y19uGH9vgHzGljHtNblEatr4cAk2kpWcIiZ6WGxnpGdmI+HG3ms2rb
N/NzEY3GsUGyCgBZVPNPfBV6wHfZzuywWX9v89nW9shXsz8CYhSJCg5y0krKIIxu
b+0+YfBco8KA/62KrgN9nMbbjDaXo2kw81UqcAV6VZW22MB2d2FCcYBJhUnqRm3b
Emar2adnXScWFRi45aFcEN329VjNBYAgnz5Zv6AVqkU5kEkOFczr7qVGRkS2QXFz
JknW0WS6Uc4nTmkRLom0VfKwzffA11FGZPz3f+nd2jI8hsqVSZhvpH561avYGdEU
RMyPNcFiXc/L+g==
-----END CERTIFICATE-----
Generated at Fri Jun 13 21:31:49 2025 by rpki-client