Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.mft
File:                     IujBtA7lecGDeWRV9Aklc9mVodI.mft (raw, json)
Hash identifier:          EAx/eRH0qMjyL/qgUPT12pUuY0LoaWwIhukKuPFzQ+o=
Subject key identifier:   3D:10:1F:CD:39:83:3A:FC:53:9F:83:6D:20:D4:9B:DF:B5:AE:E6:68
Authority key identifier: 22:E8:C1:B4:0E:E5:79:C1:83:79:64:55:F4:09:25:73:D9:95:A1:D2
Certificate issuer:       /CN=22e8c1b40ee579c183796455f4092573d995a1d2
Certificate serial:       0199FDD934C1F77B5CC8702EE1A830665F79
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IujBtA7lecGDeWRV9Aklc9mVodI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.mft
Manifest number:          0B45
Signing time:             Sun 19 Oct 2025 19:01:34 +0000
Manifest this update:     Sun 19 Oct 2025 19:01:34 +0000
Manifest next update:     Mon 20 Oct 2025 19:01:34 +0000
Files and hashes:         1: IujBtA7lecGDeWRV9Aklc9mVodI.crl (hash: 7PHKzjWVVXp4RXNY7yWKcvzDgj3qxdVfPsTGVL+pd0U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IujBtA7lecGDeWRV9Aklc9mVodI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:18:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fd:d9:34:c1:f7:7b:5c:c8:70:2e:e1:a8:30:66:5f:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=22e8c1b40ee579c183796455f4092573d995a1d2
        Validity
            Not Before: Oct 19 19:01:34 2025 GMT
            Not After : Oct 20 19:01:34 2025 GMT
        Subject: CN=3d101fcd39833afc539f836d20d49bdfb5aee668
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:9c:2f:bc:e0:18:a2:2c:f3:97:45:ce:10:9c:
                    06:23:03:63:b7:e9:cc:2d:52:b8:fb:93:86:58:09:
                    79:a3:04:d3:b6:e0:49:4f:1d:98:2f:2b:69:77:a1:
                    b9:49:6f:47:a7:56:46:c0:21:9f:3d:c7:4a:6a:44:
                    31:03:a6:aa:3b:ab:d7:a8:24:d2:40:27:36:64:5b:
                    b4:4d:32:40:9d:c3:2c:c6:68:a6:bf:44:db:28:1e:
                    ab:85:ee:a5:f7:8c:98:02:8f:38:26:70:48:90:23:
                    c6:2f:44:ba:c4:85:1e:6b:4a:ee:a1:e9:18:65:3d:
                    37:a5:da:2d:a5:7e:26:3f:76:6e:f4:e5:5a:ff:42:
                    23:fa:2e:f6:6a:d7:e8:24:0c:37:9e:63:72:98:ff:
                    07:0f:35:2a:bd:f8:b0:af:a3:eb:f9:a6:0f:91:29:
                    f2:ae:d2:c2:7d:cb:24:bb:c8:b5:82:eb:03:48:f3:
                    c5:cc:5b:6b:c0:41:72:d4:05:62:d4:c0:a3:e4:64:
                    b7:13:96:a5:39:6f:bb:bc:24:7f:66:01:12:0f:79:
                    f2:23:32:8b:f4:09:10:bd:ef:63:42:63:0c:cf:3e:
                    c2:b6:f8:3f:22:d1:8b:a5:b9:40:19:e7:af:61:e0:
                    24:7c:bf:df:11:1c:73:64:84:0c:f3:56:22:7e:f6:
                    54:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:10:1F:CD:39:83:3A:FC:53:9F:83:6D:20:D4:9B:DF:B5:AE:E6:68
            X509v3 Authority Key Identifier:
                keyid:22:E8:C1:B4:0E:E5:79:C1:83:79:64:55:F4:09:25:73:D9:95:A1:D2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IujBtA7lecGDeWRV9Aklc9mVodI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/14/929d07-7e3b-4c9a-af91-e212fd43897a/1/IujBtA7lecGDeWRV9Aklc9mVodI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:55:75:7e:15:e2:6d:19:9d:00:2b:43:83:81:3f:4d:7c:1d:
         0e:0a:dc:aa:07:8f:45:aa:6f:e8:91:6b:85:8c:3b:13:1f:34:
         ec:6e:30:97:ff:5f:06:67:6d:e6:d3:36:b6:d8:75:d8:73:11:
         c5:af:cf:ad:ae:93:75:78:bf:91:66:5d:e0:85:33:1d:39:16:
         a1:02:62:eb:bb:ce:e0:0d:50:6a:d2:d7:d8:e0:4c:63:f6:a3:
         0d:f4:90:85:f2:31:bf:9c:76:75:e8:ef:e6:4c:47:2f:d9:95:
         e5:0b:ff:b9:58:e6:c0:6a:01:6b:1e:d8:23:14:b7:87:b2:5a:
         bc:9b:3b:40:40:fa:88:a5:db:b8:0d:e7:8a:10:56:b6:6f:35:
         b7:52:c0:72:89:51:d9:0e:e3:d3:d1:02:e2:74:7d:45:75:a6:
         d3:07:dc:f2:15:56:e1:15:b7:9c:06:10:63:a7:26:70:0a:ac:
         cf:14:34:7b:4a:6f:2b:93:1b:f4:e4:ca:6f:74:0f:11:d7:d5:
         40:da:67:5f:fa:a6:0c:37:66:ae:47:d2:96:57:c4:6d:5a:aa:
         3e:8d:36:2f:98:56:b1:2b:9e:1f:da:57:67:ef:52:b7:a1:2e:
         0e:b8:9f:17:12:4d:23:cc:ed:9b:c2:ee:ea:9f:a3:74:ef:c2:
         0a:cc:20:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn92TTB93tcyHAu4agwZl95MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyZThjMWI0MGVlNTc5YzE4Mzc5NjQ1NWY0MDkyNTczZDk5
NWExZDIwHhcNMjUxMDE5MTkwMTM0WhcNMjUxMDIwMTkwMTM0WjAzMTEwLwYDVQQD
EygzZDEwMWZjZDM5ODMzYWZjNTM5ZjgzNmQyMGQ0OWJkZmI1YWVlNjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypwvvOAYoizzl0XOEJwGIwNjt+nM
LVK4+5OGWAl5owTTtuBJTx2YLytpd6G5SW9Hp1ZGwCGfPcdKakQxA6aqO6vXqCTS
QCc2ZFu0TTJAncMsxmimv0TbKB6rhe6l94yYAo84JnBIkCPGL0S6xIUea0ruoekY
ZT03pdotpX4mP3Zu9OVa/0Ij+i72atfoJAw3nmNymP8HDzUqvfiwr6Pr+aYPkSny
rtLCfcsku8i1gusDSPPFzFtrwEFy1AVi1MCj5GS3E5alOW+7vCR/ZgESD3nyIzKL
9AkQve9jQmMMzz7Ctvg/ItGLpblAGeevYeAkfL/fERxzZIQM81YifvZUxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD0QH805gzr8U5+DbSDUm9+1ruZoMB8GA1UdIwQY
MBaAFCLowbQO5XnBg3lkVfQJJXPZlaHSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXVqQnRBN2xlY0dEZVdSVjlBa2xjOW1Wb2RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC85MjlkMDctN2UzYi00YzlhLWFmOTEt
ZTIxMmZkNDM4OTdhLzEvSXVqQnRBN2xlY0dEZVdSVjlBa2xjOW1Wb2RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC85MjlkMDctN2UzYi00YzlhLWFmOTEtZTIxMmZkNDM4OTdh
LzEvSXVqQnRBN2xlY0dEZVdSVjlBa2xjOW1Wb2RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAElV1fhXi
bRmdACtDg4E/TXwdDgrcqgePRapv6JFrhYw7Ex807G4wl/9fBmdt5tM2tth12HMR
xa/Pra6TdXi/kWZd4IUzHTkWoQJi67vO4A1QatLX2OBMY/ajDfSQhfIxv5x2dejv
5kxHL9mV5Qv/uVjmwGoBax7YIxS3h7JavJs7QED6iKXbuA3nihBWtm81t1LAcolR
2Q7j09EC4nR9RXWm0wfc8hVW4RW3nAYQY6cmcAqszxQ0e0pvK5Mb9OTKb3QPEdfV
QNpnX/qmDDdmrkfSllfEbVqqPo02L5hWsSueH9pXZ+9St6EuDrifFxJNI8ztm8Lu
6p+jdO/CCswgrw==
-----END CERTIFICATE-----