Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/e7277e-f8db-4e32-bddd-9815249aadef/1/MtYmm4lSBJZffsl_Gdi12ckwt40.mft
File:                     MtYmm4lSBJZffsl_Gdi12ckwt40.mft (raw, json)
Hash identifier:          yFVcCACrb7Kp8++qh1zOL7MuYlsyk7ps+agSDwMN1IM=
Subject key identifier:   20:42:10:80:58:0A:65:03:54:F9:30:9F:D0:25:11:38:52:71:04:A0
Authority key identifier: 32:D6:26:9B:89:52:04:96:5F:7E:C9:7F:19:D8:B5:D9:C9:30:B7:8D
Certificate issuer:       /CN=32d6269b895204965f7ec97f19d8b5d9c930b78d
Certificate serial:       0197B6A1CC4F4DF206CB3553B1DC7C6FC87E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MtYmm4lSBJZffsl_Gdi12ckwt40.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/e7277e-f8db-4e32-bddd-9815249aadef/1/MtYmm4lSBJZffsl_Gdi12ckwt40.mft
Manifest number:          69
Signing time:             Sat 28 Jun 2025 13:02:26 +0000
Manifest this update:     Sat 28 Jun 2025 13:02:26 +0000
Manifest next update:     Sun 29 Jun 2025 13:02:26 +0000
Files and hashes:         1: MtYmm4lSBJZffsl_Gdi12ckwt40.crl (hash: mpxcUQfnhJYeB8fUHFKdyZG+jZKJNj6Hdad+esgDDuY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/e7277e-f8db-4e32-bddd-9815249aadef/1/MtYmm4lSBJZffsl_Gdi12ckwt40.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/e7277e-f8db-4e32-bddd-9815249aadef/1/MtYmm4lSBJZffsl_Gdi12ckwt40.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MtYmm4lSBJZffsl_Gdi12ckwt40.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 10:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a1:cc:4f:4d:f2:06:cb:35:53:b1:dc:7c:6f:c8:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=32d6269b895204965f7ec97f19d8b5d9c930b78d
        Validity
            Not Before: Jun 28 13:02:26 2025 GMT
            Not After : Jun 29 13:02:26 2025 GMT
        Subject: CN=20421080580a650354f9309fd0251138527104a0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f2:a8:9e:5f:7e:36:b6:1f:9b:cc:3d:22:19:02:
                    e4:5d:aa:79:28:bc:8e:7b:c2:2c:51:bc:b4:78:88:
                    57:13:84:d4:3b:a8:8f:9c:e1:bf:ce:bb:84:82:e5:
                    dd:f6:1b:15:95:56:02:f7:69:bb:44:1e:04:19:f3:
                    2c:18:66:04:62:ff:c4:15:97:c9:68:9d:f1:df:ab:
                    f4:ca:d0:d1:91:c2:7f:c5:6b:ce:65:22:2e:01:09:
                    a8:32:52:8b:1e:8e:2a:2a:69:30:42:0d:bd:9a:a8:
                    cb:35:d8:73:ec:93:1d:3a:99:ef:b1:ca:0e:0c:3b:
                    84:ab:61:a7:6a:a6:fb:fb:37:e2:35:ca:b8:d7:0f:
                    b3:30:ae:67:97:c4:7b:07:57:2b:23:21:50:de:1c:
                    3e:44:39:8e:b8:d6:c3:dc:ea:2a:ca:7a:b6:3e:2b:
                    2f:63:ce:15:5c:8a:6e:8c:68:76:05:7a:c1:dd:6c:
                    bd:ec:b4:85:e2:7e:83:0d:62:3c:76:f7:4a:c1:1d:
                    bd:03:93:2d:5a:c6:3d:50:19:95:a0:f1:13:f7:8e:
                    c8:22:e3:bd:e2:23:e2:80:82:f8:bd:00:7f:1a:8b:
                    9b:c7:73:bc:9e:c6:a3:b1:ae:00:23:59:88:c1:33:
                    64:28:93:d2:7b:68:2a:b5:8e:b7:03:eb:d8:3b:74:
                    3b:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                20:42:10:80:58:0A:65:03:54:F9:30:9F:D0:25:11:38:52:71:04:A0
            X509v3 Authority Key Identifier:
                keyid:32:D6:26:9B:89:52:04:96:5F:7E:C9:7F:19:D8:B5:D9:C9:30:B7:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtYmm4lSBJZffsl_Gdi12ckwt40.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/e7277e-f8db-4e32-bddd-9815249aadef/1/MtYmm4lSBJZffsl_Gdi12ckwt40.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/e7277e-f8db-4e32-bddd-9815249aadef/1/MtYmm4lSBJZffsl_Gdi12ckwt40.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:74:79:5c:43:30:b7:1e:1e:16:83:31:3b:88:07:6a:fd:16:
         68:a4:8e:44:b8:e1:7e:92:ec:c9:d4:1b:25:2e:bd:5d:1f:91:
         1d:34:d6:ab:ec:e9:39:b7:93:d9:03:c1:49:12:61:a6:62:81:
         78:1e:92:58:bf:9e:66:63:4a:de:87:0c:14:21:8c:fd:f2:e2:
         c3:ca:46:01:5e:74:bf:aa:b8:19:e3:c0:f8:ce:70:52:22:59:
         26:a5:a6:00:7c:fb:3d:5f:a2:7e:1c:ed:13:80:1a:d3:f1:ec:
         b9:75:ff:c5:10:b6:1f:e0:60:3c:d9:91:ac:88:ca:9f:53:5a:
         d6:01:5f:e8:45:21:33:94:14:35:71:96:f6:71:52:92:6c:fb:
         7e:e5:99:c2:7f:ea:f8:af:72:3a:cb:af:4f:0c:d0:27:32:d3:
         87:b3:3f:1a:1d:1e:69:6b:ff:ab:d7:89:58:f7:8e:76:4a:ec:
         3c:fb:2b:90:01:f4:5b:cc:84:80:41:7c:34:ab:21:1f:e5:36:
         d5:93:5c:36:c7:27:b4:b0:e4:f6:0b:3e:71:de:48:35:5b:92:
         3f:2a:02:08:49:55:f5:7f:f9:4b:e6:3a:5d:78:d1:52:9c:b5:
         77:e8:4a:72:27:8b:54:c8:53:8b:1c:bd:a5:8c:c7:cf:eb:c2:
         d8:68:6d:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2ocxPTfIGyzVTsdx8b8h+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyZDYyNjliODk1MjA0OTY1ZjdlYzk3ZjE5ZDhiNWQ5Yzkz
MGI3OGQwHhcNMjUwNjI4MTMwMjI2WhcNMjUwNjI5MTMwMjI2WjAzMTEwLwYDVQQD
EygyMDQyMTA4MDU4MGE2NTAzNTRmOTMwOWZkMDI1MTEzODUyNzEwNGEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8qieX342th+bzD0iGQLkXap5KLyO
e8IsUby0eIhXE4TUO6iPnOG/zruEguXd9hsVlVYC92m7RB4EGfMsGGYEYv/EFZfJ
aJ3x36v0ytDRkcJ/xWvOZSIuAQmoMlKLHo4qKmkwQg29mqjLNdhz7JMdOpnvscoO
DDuEq2Gnaqb7+zfiNcq41w+zMK5nl8R7B1crIyFQ3hw+RDmOuNbD3Ooqynq2Pisv
Y84VXIpujGh2BXrB3Wy97LSF4n6DDWI8dvdKwR29A5MtWsY9UBmVoPET947IIuO9
4iPigIL4vQB/Goubx3O8nsajsa4AI1mIwTNkKJPSe2gqtY63A+vYO3Q7TQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCBCEIBYCmUDVPkwn9AlEThScQSgMB8GA1UdIwQY
MBaAFDLWJpuJUgSWX37JfxnYtdnJMLeNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTXRZbW00bFNCSlpmZnNsX0dkaTEyY2t3dDQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9lNzI3N2UtZjhkYi00ZTMyLWJkZGQt
OTgxNTI0OWFhZGVmLzEvTXRZbW00bFNCSlpmZnNsX0dkaTEyY2t3dDQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9lNzI3N2UtZjhkYi00ZTMyLWJkZGQtOTgxNTI0OWFhZGVm
LzEvTXRZbW00bFNCSlpmZnNsX0dkaTEyY2t3dDQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUHR5XEMw
tx4eFoMxO4gHav0WaKSORLjhfpLsydQbJS69XR+RHTTWq+zpObeT2QPBSRJhpmKB
eB6SWL+eZmNK3ocMFCGM/fLiw8pGAV50v6q4GePA+M5wUiJZJqWmAHz7PV+ifhzt
E4Aa0/HsuXX/xRC2H+BgPNmRrIjKn1Na1gFf6EUhM5QUNXGW9nFSkmz7fuWZwn/q
+K9yOsuvTwzQJzLTh7M/Gh0eaWv/q9eJWPeOdkrsPPsrkAH0W8yEgEF8NKshH+U2
1ZNcNscntLDk9gs+cd5INVuSPyoCCElV9X/5S+Y6XXjRUpy1d+hKcieLVMhTixy9
pYzHz+vC2GhtJA==
-----END CERTIFICATE-----