Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.mft
File:                     68Xg5EXZRzFUru10Rpss-6NmTjU.mft (raw, json)
Hash identifier:          i1/r7AVwlhDM/BGt7qU3s6ahrfomfOAlRIbSiUaQfFs=
Subject key identifier:   D6:E9:7D:FA:40:71:E7:76:EE:7E:CA:87:20:90:9F:FF:FF:92:E9:FE
Authority key identifier: EB:C5:E0:E4:45:D9:47:31:54:AE:ED:74:46:9B:2C:FB:A3:66:4E:35
Certificate issuer:       /CN=ebc5e0e445d9473154aeed74469b2cfba3664e35
Certificate serial:       0198D65F5D5611159DA1478A4487125FC435
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/68Xg5EXZRzFUru10Rpss-6NmTjU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.mft
Manifest number:          098E
Signing time:             Sat 23 Aug 2025 10:00:30 +0000
Manifest this update:     Sat 23 Aug 2025 10:00:30 +0000
Manifest next update:     Sun 24 Aug 2025 10:00:30 +0000
Files and hashes:         1: 68Xg5EXZRzFUru10Rpss-6NmTjU.crl (hash: AIEh8vCQ7rzBY3ifN5OylACKj34Z3aCncPcdWlJYNY8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/68Xg5EXZRzFUru10Rpss-6NmTjU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:5d:56:11:15:9d:a1:47:8a:44:87:12:5f:c4:35
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ebc5e0e445d9473154aeed74469b2cfba3664e35
        Validity
            Not Before: Aug 23 10:00:30 2025 GMT
            Not After : Aug 24 10:00:30 2025 GMT
        Subject: CN=d6e97dfa4071e776ee7eca8720909fffff92e9fe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:56:9d:4e:92:f9:21:ae:38:2e:75:cd:0e:d7:
                    a1:6e:38:50:75:1b:d8:86:78:ba:0e:0a:7e:e1:32:
                    51:65:7c:75:2b:27:75:1a:01:b4:40:33:0c:66:2b:
                    12:6d:fb:b2:e4:c2:2e:7e:7a:d9:79:1c:f6:2b:3c:
                    ac:9a:35:36:2a:68:5d:17:54:c1:84:3c:ed:79:36:
                    fc:38:04:c2:00:17:76:95:3d:06:9d:80:a1:79:ab:
                    fc:a8:b3:89:63:24:44:a0:03:a7:18:1d:67:93:5e:
                    88:39:29:b1:50:e1:15:5d:59:30:38:78:d8:73:3c:
                    40:68:1f:c9:74:f4:96:90:e3:aa:1e:64:fb:77:e2:
                    80:9b:d9:e2:6c:75:83:ff:cc:ba:10:77:2e:2f:61:
                    6b:7c:82:96:66:79:51:09:99:d0:78:70:ca:67:3b:
                    e5:3a:8b:70:a1:5c:78:c2:af:2f:29:41:df:da:d2:
                    42:79:c0:58:b2:b2:63:91:f6:64:c1:ee:60:c0:ed:
                    82:f6:db:2e:71:1e:73:31:2a:99:11:c0:5b:ad:5a:
                    9e:16:e1:53:ae:3c:af:6c:1f:0a:cb:03:a6:67:2d:
                    0b:c3:e7:d2:6a:bd:44:fd:58:a9:d3:38:6a:04:ab:
                    8f:b8:08:cd:01:9d:58:e9:f1:61:b1:9a:9d:71:ff:
                    f7:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:E9:7D:FA:40:71:E7:76:EE:7E:CA:87:20:90:9F:FF:FF:92:E9:FE
            X509v3 Authority Key Identifier:
                keyid:EB:C5:E0:E4:45:D9:47:31:54:AE:ED:74:46:9B:2C:FB:A3:66:4E:35

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68Xg5EXZRzFUru10Rpss-6NmTjU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:85:5b:c2:1c:3b:69:74:9c:c8:79:45:36:03:a0:e2:80:fc:
         ce:68:38:58:ec:87:69:fb:67:75:dd:74:b9:c9:32:c7:1e:0d:
         a6:1c:fa:04:c9:4a:23:c3:40:67:1d:94:c6:ae:91:b0:83:fc:
         35:ff:89:05:ff:71:f4:11:75:16:8d:30:f9:ba:0b:a4:a3:4b:
         7e:2d:fd:cf:41:c9:59:e0:10:89:c9:65:c6:e5:d9:f8:f9:1b:
         91:55:16:84:65:54:e1:e2:22:f8:a0:39:1c:52:d2:a7:62:da:
         a2:70:35:c2:9a:f9:72:ea:f5:95:45:df:b4:2d:84:db:70:3b:
         d3:8b:cc:53:28:79:f6:2d:6f:91:a5:d5:73:fd:a1:07:c0:ed:
         e0:87:98:7e:a4:53:b6:dd:a5:3e:ac:e3:9e:4a:47:71:03:2c:
         68:56:04:e2:03:8f:07:3e:fc:7a:59:7f:37:f1:d0:1a:35:d9:
         91:02:25:7e:6b:72:37:44:d4:f6:8d:5c:c0:eb:fe:cb:cf:0b:
         1a:b7:b2:c3:77:90:ca:c1:9e:7c:cf:47:d7:63:24:f8:97:6f:
         a6:d9:f4:b5:4b:c8:b1:f9:cf:85:6d:14:36:00:98:23:a6:52:
         8b:dc:e7:59:c4:c7:f9:2d:46:2e:c1:8f:77:d3:63:ca:9d:cb:
         00:1a:79:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX11WERWdoUeKRIcSX8Q1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGViYzVlMGU0NDVkOTQ3MzE1NGFlZWQ3NDQ2OWIyY2ZiYTM2
NjRlMzUwHhcNMjUwODIzMTAwMDMwWhcNMjUwODI0MTAwMDMwWjAzMTEwLwYDVQQD
EyhkNmU5N2RmYTQwNzFlNzc2ZWU3ZWNhODcyMDkwOWZmZmZmOTJlOWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1adTpL5Ia44LnXNDtehbjhQdRvY
hni6Dgp+4TJRZXx1Kyd1GgG0QDMMZisSbfuy5MIufnrZeRz2KzysmjU2KmhdF1TB
hDzteTb8OATCABd2lT0GnYCheav8qLOJYyREoAOnGB1nk16IOSmxUOEVXVkwOHjY
czxAaB/JdPSWkOOqHmT7d+KAm9nibHWD/8y6EHcuL2FrfIKWZnlRCZnQeHDKZzvl
OotwoVx4wq8vKUHf2tJCecBYsrJjkfZkwe5gwO2C9tsucR5zMSqZEcBbrVqeFuFT
rjyvbB8KywOmZy0Lw+fSar1E/Vip0zhqBKuPuAjNAZ1Y6fFhsZqdcf/3EwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNbpffpAced27n7KhyCQn///kun+MB8GA1UdIwQY
MBaAFOvF4ORF2UcxVK7tdEabLPujZk41MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNjhYZzVFWFpSekZVcnUxMFJwc3MtNk5tVGpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8zMmFiZWUtY2Y3YS00NGY5LTg3NjUt
OGRlYzJlMTYzYTg2LzEvNjhYZzVFWFpSekZVcnUxMFJwc3MtNk5tVGpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS8zMmFiZWUtY2Y3YS00NGY5LTg3NjUtOGRlYzJlMTYzYTg2
LzEvNjhYZzVFWFpSekZVcnUxMFJwc3MtNk5tVGpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFYVbwhw7
aXScyHlFNgOg4oD8zmg4WOyHaftndd10uckyxx4Nphz6BMlKI8NAZx2Uxq6RsIP8
Nf+JBf9x9BF1Fo0w+boLpKNLfi39z0HJWeAQicllxuXZ+PkbkVUWhGVU4eIi+KA5
HFLSp2LaonA1wpr5cur1lUXftC2E23A704vMUyh59i1vkaXVc/2hB8Dt4IeYfqRT
tt2lPqzjnkpHcQMsaFYE4gOPBz78ell/N/HQGjXZkQIlfmtyN0TU9o1cwOv+y88L
Greyw3eQysGefM9H12Mk+Jdvptn0tUvIsfnPhW0UNgCYI6ZSi9znWcTH+S1GLsGP
d9Njyp3LABp56A==
-----END CERTIFICATE-----