Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
File:                     pU3VdP7HLUOUwlU2uoUyydOPQLo.mft (raw, json)
Hash identifier:          5yC+P3TWenpFmMAsXxV4GNb/YkWznicjkQWhCeqfut4=
Subject key identifier:   05:67:80:F0:A5:35:E1:AF:2A:BF:FF:B3:2A:FD:7D:A1:D8:B0:5F:3A
Authority key identifier: A5:4D:D5:74:FE:C7:2D:43:94:C2:55:36:BA:85:32:C9:D3:8F:40:BA
Certificate issuer:       /CN=a54dd574fec72d4394c25536ba8532c9d38f40ba
Certificate serial:       01974A7A544D3B662CD88CF0965E6AF97927
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
Manifest number:          0892
Signing time:             Sat 07 Jun 2025 13:00:20 +0000
Manifest this update:     Sat 07 Jun 2025 13:00:20 +0000
Manifest next update:     Sun 08 Jun 2025 13:00:20 +0000
Files and hashes:         1: pU3VdP7HLUOUwlU2uoUyydOPQLo.crl (hash: kEoDG9PWMs7t2mt5pZQDTbzg+B+rfVsCBLTd5+kwi/A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 13:00:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7a:54:4d:3b:66:2c:d8:8c:f0:96:5e:6a:f9:79:27
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a54dd574fec72d4394c25536ba8532c9d38f40ba
        Validity
            Not Before: Jun  7 13:00:20 2025 GMT
            Not After : Jun  8 13:00:20 2025 GMT
        Subject: CN=056780f0a535e1af2abfffb32afd7da1d8b05f3a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:14:09:7d:c2:0e:06:c0:5f:b8:0a:60:0e:86:
                    12:97:71:d1:d6:1f:92:ac:23:27:88:b3:58:ad:2e:
                    ce:ef:3f:bc:88:de:a8:f2:06:ad:dc:6d:e0:c8:fa:
                    27:bc:21:7a:b4:a1:e5:8e:89:c8:7c:d0:09:ad:65:
                    98:f8:9d:d4:0b:6e:74:fd:3d:66:79:56:e6:fd:4c:
                    16:d5:33:76:e5:52:33:85:85:25:43:fa:56:40:af:
                    c3:2f:42:f9:2b:50:64:fc:42:e1:eb:ac:70:bd:76:
                    37:18:26:12:79:af:ed:f9:c7:c0:53:53:af:62:dd:
                    7e:ad:59:88:6d:07:d9:19:27:66:d0:30:d2:2e:07:
                    73:c3:4d:02:8b:67:bf:77:bb:6d:05:26:84:f4:85:
                    2b:d4:a5:c0:c7:71:a1:f4:fb:e8:fe:f4:ce:05:c9:
                    38:f6:3c:b5:c7:e1:74:16:53:eb:b2:e3:72:63:cb:
                    94:98:be:a3:88:9c:bb:34:b0:39:ec:ef:ae:96:8c:
                    96:9a:e7:5e:b4:a0:e6:43:6d:e8:8d:9d:9b:b8:cb:
                    68:31:6d:30:3e:8a:ac:58:ba:51:d7:c9:e9:26:b9:
                    73:0f:d9:de:e1:62:da:34:51:29:c9:2f:d5:ad:a3:
                    92:a2:7d:0d:d5:58:d8:10:b5:cd:c2:c4:97:09:72:
                    7e:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:67:80:F0:A5:35:E1:AF:2A:BF:FF:B3:2A:FD:7D:A1:D8:B0:5F:3A
            X509v3 Authority Key Identifier:
                keyid:A5:4D:D5:74:FE:C7:2D:43:94:C2:55:36:BA:85:32:C9:D3:8F:40:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pU3VdP7HLUOUwlU2uoUyydOPQLo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6934b5-96c0-476d-bf54-237f65b64327/1/pU3VdP7HLUOUwlU2uoUyydOPQLo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8f:6b:73:9b:c1:6c:c8:99:af:40:9c:81:62:6a:4e:0b:ea:c9:
         03:c1:85:e0:33:f4:61:c9:2b:83:d0:68:73:b9:79:41:8c:5e:
         64:57:7c:fc:20:83:e0:42:9c:19:c5:01:c3:56:2b:64:70:6e:
         eb:25:a4:da:8c:de:4c:5d:8d:45:45:52:97:11:3f:88:fb:18:
         42:3e:be:b0:12:bd:61:2a:fb:3f:1c:62:8f:3f:af:0a:7f:7a:
         89:0c:da:be:9f:52:c5:bc:86:20:86:70:b6:bd:db:02:08:6f:
         e7:b8:41:b4:d0:ad:b5:a7:49:01:fa:be:f6:d9:9b:fa:89:5d:
         21:1c:c8:06:e3:17:50:68:7a:52:04:03:37:b9:7d:24:f7:45:
         20:b4:b1:d6:c6:82:5e:47:6f:a5:16:96:48:30:e9:99:81:f8:
         6e:7d:8f:56:82:07:4b:da:2a:67:83:3e:48:55:3c:11:38:c7:
         12:0e:1b:01:3d:60:e7:a4:83:98:40:a5:c3:a4:23:7e:54:d3:
         e3:b2:00:a2:5c:cf:d6:fd:e1:d1:b4:53:b9:e0:a1:9f:30:38:
         4e:89:06:04:7f:e4:3a:43:1d:66:6d:7e:db:0d:cf:a9:35:35:
         ec:a4:d5:99:d8:36:5f:ad:4a:5a:e8:01:cf:e3:87:a4:74:56:
         9a:e1:95:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKelRNO2Ys2Izwll5q+XknMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1NGRkNTc0ZmVjNzJkNDM5NGMyNTUzNmJhODUzMmM5ZDM4
ZjQwYmEwHhcNMjUwNjA3MTMwMDIwWhcNMjUwNjA4MTMwMDIwWjAzMTEwLwYDVQQD
EygwNTY3ODBmMGE1MzVlMWFmMmFiZmZmYjMyYWZkN2RhMWQ4YjA1ZjNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBQJfcIOBsBfuApgDoYSl3HR1h+S
rCMniLNYrS7O7z+8iN6o8gat3G3gyPonvCF6tKHljonIfNAJrWWY+J3UC250/T1m
eVbm/UwW1TN25VIzhYUlQ/pWQK/DL0L5K1Bk/ELh66xwvXY3GCYSea/t+cfAU1Ov
Yt1+rVmIbQfZGSdm0DDSLgdzw00Ci2e/d7ttBSaE9IUr1KXAx3Gh9Pvo/vTOBck4
9jy1x+F0FlPrsuNyY8uUmL6jiJy7NLA57O+uloyWmudetKDmQ23ojZ2buMtoMW0w
PoqsWLpR18npJrlzD9ne4WLaNFEpyS/VraOSon0N1VjYELXNwsSXCXJ+2QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAVngPClNeGvKr//syr9faHYsF86MB8GA1UdIwQY
MBaAFKVN1XT+xy1DlMJVNrqFMsnTj0C6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFUzVmRQN0hMVU9Vd2xVMnVvVXl5ZE9QUUxvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS82OTM0YjUtOTZjMC00NzZkLWJmNTQt
MjM3ZjY1YjY0MzI3LzEvcFUzVmRQN0hMVU9Vd2xVMnVvVXl5ZE9QUUxvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS82OTM0YjUtOTZjMC00NzZkLWJmNTQtMjM3ZjY1YjY0MzI3
LzEvcFUzVmRQN0hMVU9Vd2xVMnVvVXl5ZE9QUUxvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj2tzm8Fs
yJmvQJyBYmpOC+rJA8GF4DP0Yckrg9Boc7l5QYxeZFd8/CCD4EKcGcUBw1YrZHBu
6yWk2ozeTF2NRUVSlxE/iPsYQj6+sBK9YSr7Pxxijz+vCn96iQzavp9SxbyGIIZw
tr3bAghv57hBtNCttadJAfq+9tmb+oldIRzIBuMXUGh6UgQDN7l9JPdFILSx1saC
XkdvpRaWSDDpmYH4bn2PVoIHS9oqZ4M+SFU8ETjHEg4bAT1g56SDmEClw6QjflTT
47IAolzP1v3h0bRTueChnzA4TokGBH/kOkMdZm1+2w3PqTU17KTVmdg2X61KWugB
z+OHpHRWmuGVRw==
-----END CERTIFICATE-----