Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft
File:                     0phnd6RO0JQPKaeVx19Fpi9EuzM.mft (raw, json)
Hash identifier:          Qv5oBfpFgGamEIw+FPs5dZItHsV8j190GvakrDSvJtY=
Subject key identifier:   61:DC:25:9E:F8:80:8B:62:A9:C8:E2:1D:9B:F8:3B:4F:CC:17:53:E6
Authority key identifier: D2:98:67:77:A4:4E:D0:94:0F:29:A7:95:C7:5F:45:A6:2F:44:BB:33
Certificate issuer:       /CN=d2986777a44ed0940f29a795c75f45a62f44bb33
Certificate serial:       019761A8436311D8DBA9C836E5550CCB94C1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft
Manifest number:          0573
Signing time:             Thu 12 Jun 2025 01:01:46 +0000
Manifest this update:     Thu 12 Jun 2025 01:01:46 +0000
Manifest next update:     Fri 13 Jun 2025 01:01:46 +0000
Files and hashes:         1: 0phnd6RO0JQPKaeVx19Fpi9EuzM.crl (hash: uXDCK3r9om+Jop0sk0yFYhdKWiOevbAI67RFiG2ALtI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 01:01:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:61:a8:43:63:11:d8:db:a9:c8:36:e5:55:0c:cb:94:c1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d2986777a44ed0940f29a795c75f45a62f44bb33
        Validity
            Not Before: Jun 12 01:01:46 2025 GMT
            Not After : Jun 13 01:01:46 2025 GMT
        Subject: CN=61dc259ef8808b62a9c8e21d9bf83b4fcc1753e6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:85:0a:6f:ee:6f:87:49:63:e8:4d:67:b4:d6:
                    84:8e:ec:d0:bb:96:b8:34:fe:bc:de:69:6d:89:bd:
                    e0:2f:60:5a:24:f2:8d:36:dc:1a:81:11:af:ac:8c:
                    c4:7d:81:8d:cc:e3:ac:66:c4:9f:cd:60:2a:de:5d:
                    b4:f2:69:92:31:41:e4:a2:f8:04:f9:26:3c:bb:4c:
                    f1:15:0c:7d:0a:c5:4f:c3:e7:21:6f:95:93:73:94:
                    ce:61:e4:9e:11:d9:6c:27:c0:30:83:2c:ba:2a:93:
                    22:42:62:74:d2:a8:6f:48:7c:30:6b:13:60:4d:13:
                    0b:11:f4:3b:4b:ec:b4:e8:32:79:e1:db:23:66:ee:
                    0c:53:24:6f:48:05:a1:35:31:9d:09:38:b0:60:57:
                    ee:57:e6:fb:cc:3b:4f:f0:50:cc:ac:25:84:00:70:
                    13:d8:98:0a:c8:35:c9:50:5d:8f:71:84:78:89:19:
                    8e:cd:6b:84:98:c7:86:eb:ed:83:ab:de:c0:d9:eb:
                    24:3f:fb:5e:39:44:94:4b:3a:1c:62:95:1f:0d:e7:
                    e6:09:74:0c:dc:33:f0:f2:b7:6c:e7:ca:d1:d6:db:
                    46:ea:e3:4a:38:c3:b9:b1:75:4d:b3:49:b3:26:c0:
                    91:79:19:d7:35:c1:78:18:bd:a9:36:82:2c:0a:af:
                    91:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:DC:25:9E:F8:80:8B:62:A9:C8:E2:1D:9B:F8:3B:4F:CC:17:53:E6
            X509v3 Authority Key Identifier:
                keyid:D2:98:67:77:A4:4E:D0:94:0F:29:A7:95:C7:5F:45:A6:2F:44:BB:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:78:78:0f:65:e8:4e:24:91:69:93:d4:63:b2:1b:3f:df:e4:
         5b:3d:1d:99:d6:c1:20:9d:28:32:5c:7f:4b:9c:58:7b:b5:9a:
         fb:25:a4:15:96:d5:d5:af:53:48:ee:d1:71:8b:b0:2c:a0:11:
         97:34:11:96:da:0c:48:7f:d2:77:1d:ec:cd:20:59:c9:34:8b:
         43:5c:39:0a:fb:c2:7d:d6:d0:28:b3:ac:a9:d7:e2:d6:1b:6a:
         b2:3b:3a:a7:85:1d:9a:ea:58:c1:46:6d:c1:70:8e:0b:c9:0b:
         0d:f4:81:96:27:76:2e:a8:42:f9:99:b8:05:e9:16:0f:c8:8b:
         76:49:45:27:67:10:09:fb:45:0c:7c:c4:4c:e6:22:45:de:94:
         03:08:29:01:73:68:88:a3:0a:40:b6:d0:11:45:9b:80:0f:96:
         ba:96:d9:92:bb:43:af:e9:ff:66:26:a1:35:f2:28:fb:a5:7b:
         4c:9f:c6:cb:23:5d:dc:9a:64:2b:3d:97:9d:0e:4a:36:0f:9f:
         d4:60:9c:e2:42:80:51:43:0b:68:95:3b:aa:88:37:e0:f6:97:
         14:26:47:ae:ad:5f:ea:64:7d:0a:4e:32:22:29:c2:0f:d0:a8:
         ce:b4:67:c1:ec:33:e9:b5:59:1a:3d:a9:7b:ba:1e:d6:c4:1b:
         40:3f:85:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdhqENjEdjbqcg25VUMy5TBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyOTg2Nzc3YTQ0ZWQwOTQwZjI5YTc5NWM3NWY0NWE2MmY0
NGJiMzMwHhcNMjUwNjEyMDEwMTQ2WhcNMjUwNjEzMDEwMTQ2WjAzMTEwLwYDVQQD
Eyg2MWRjMjU5ZWY4ODA4YjYyYTljOGUyMWQ5YmY4M2I0ZmNjMTc1M2U2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6oUKb+5vh0lj6E1ntNaEjuzQu5a4
NP683mltib3gL2BaJPKNNtwagRGvrIzEfYGNzOOsZsSfzWAq3l208mmSMUHkovgE
+SY8u0zxFQx9CsVPw+chb5WTc5TOYeSeEdlsJ8Awgyy6KpMiQmJ00qhvSHwwaxNg
TRMLEfQ7S+y06DJ54dsjZu4MUyRvSAWhNTGdCTiwYFfuV+b7zDtP8FDMrCWEAHAT
2JgKyDXJUF2PcYR4iRmOzWuEmMeG6+2Dq97A2eskP/teOUSUSzocYpUfDefmCXQM
3DPw8rds58rR1ttG6uNKOMO5sXVNs0mzJsCReRnXNcF4GL2pNoIsCq+RLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGHcJZ74gItiqcjiHZv4O0/MF1PmMB8GA1UdIwQY
MBaAFNKYZ3ekTtCUDymnlcdfRaYvRLszMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHBobmQ2Uk8wSlFQS2FlVngxOUZwaTlFdXpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS85NzczZGMtZDhlOC00ODBkLTk4ZjIt
YzAwY2JjMTQ5MmJmLzEvMHBobmQ2Uk8wSlFQS2FlVngxOUZwaTlFdXpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYS85NzczZGMtZDhlOC00ODBkLTk4ZjItYzAwY2JjMTQ5MmJm
LzEvMHBobmQ2Uk8wSlFQS2FlVngxOUZwaTlFdXpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI3h4D2Xo
TiSRaZPUY7IbP9/kWz0dmdbBIJ0oMlx/S5xYe7Wa+yWkFZbV1a9TSO7RcYuwLKAR
lzQRltoMSH/Sdx3szSBZyTSLQ1w5CvvCfdbQKLOsqdfi1htqsjs6p4UdmupYwUZt
wXCOC8kLDfSBlid2LqhC+Zm4BekWD8iLdklFJ2cQCftFDHzETOYiRd6UAwgpAXNo
iKMKQLbQEUWbgA+WupbZkrtDr+n/ZiahNfIo+6V7TJ/GyyNd3JpkKz2XnQ5KNg+f
1GCc4kKAUUMLaJU7qog34PaXFCZHrq1f6mR9Ck4yIinCD9CozrRnwewz6bVZGj2p
e7oe1sQbQD+FeQ==
-----END CERTIFICATE-----
Generated at Thu Jun 12 11:39:32 2025 by rpki-client