Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.mft
File:                     5zcPsJ5SI60eRI9MDxYv6plae1Y.mft (raw, json)
Hash identifier:          S0LG344I9b9jcxTEda+4qqasc4MN6u0GxoDP9tI045k=
Subject key identifier:   6F:66:2F:08:0D:5A:DB:AD:9B:18:4D:F6:91:6D:9E:5B:D6:96:E0:B3
Authority key identifier: E7:37:0F:B0:9E:52:23:AD:1E:44:8F:4C:0F:16:2F:EA:99:5A:7B:56
Certificate issuer:       /CN=e7370fb09e5223ad1e448f4c0f162fea995a7b56
Certificate serial:       0198D660FE63562CD02AE1073DCEBAA90850
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5zcPsJ5SI60eRI9MDxYv6plae1Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.mft
Manifest number:          1469
Signing time:             Sat 23 Aug 2025 10:02:17 +0000
Manifest this update:     Sat 23 Aug 2025 10:02:17 +0000
Manifest next update:     Sun 24 Aug 2025 10:02:17 +0000
Files and hashes:         1: 5zcPsJ5SI60eRI9MDxYv6plae1Y.crl (hash: msKCqIWVoBNsBaDBIQjOHOGCqjhvqxk5Wi2Fo/Os6yg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5zcPsJ5SI60eRI9MDxYv6plae1Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:fe:63:56:2c:d0:2a:e1:07:3d:ce:ba:a9:08:50
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e7370fb09e5223ad1e448f4c0f162fea995a7b56
        Validity
            Not Before: Aug 23 10:02:17 2025 GMT
            Not After : Aug 24 10:02:17 2025 GMT
        Subject: CN=6f662f080d5adbad9b184df6916d9e5bd696e0b3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:e1:9c:24:a4:38:da:b0:57:c5:7b:5c:f8:02:
                    e3:8f:5d:89:5e:26:c4:28:14:27:43:bf:70:20:77:
                    0b:c7:db:a5:7f:ca:01:ed:da:aa:9f:f9:22:32:b7:
                    73:27:46:bc:d6:47:34:1d:a1:71:c2:a2:ec:c6:40:
                    78:36:3b:27:2b:4b:76:34:05:bc:4b:4b:97:89:ae:
                    f2:89:cd:5c:db:ff:15:8e:30:43:9a:51:51:e5:21:
                    10:04:63:fa:bf:97:eb:05:1c:2e:16:46:86:45:13:
                    2d:f7:ad:e3:e1:3f:4b:42:6d:46:0e:7e:4f:16:e8:
                    89:00:7c:11:1e:8f:c2:bd:ba:af:ed:5e:58:be:fd:
                    8e:b9:72:cb:0b:1e:65:89:97:af:f8:b3:33:8d:98:
                    20:73:db:2d:9e:71:3c:ae:87:12:53:24:63:15:5e:
                    71:9b:c1:d9:92:f4:2c:1f:c1:9d:c4:cc:3d:f4:9a:
                    72:92:0d:ff:1c:d3:30:81:fa:59:81:c0:7f:bd:64:
                    e2:0d:55:3a:fb:cf:7c:21:f9:84:30:7a:f5:4a:34:
                    a8:0d:ad:14:69:61:1f:36:f4:d2:df:6a:78:da:f1:
                    cc:af:f9:f8:77:8d:53:57:d3:ce:db:a7:5b:f0:6d:
                    b1:c7:a4:a7:e9:3d:95:d1:1d:2b:78:27:eb:c7:19:
                    a9:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:66:2F:08:0D:5A:DB:AD:9B:18:4D:F6:91:6D:9E:5B:D6:96:E0:B3
            X509v3 Authority Key Identifier:
                keyid:E7:37:0F:B0:9E:52:23:AD:1E:44:8F:4C:0F:16:2F:EA:99:5A:7B:56

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zcPsJ5SI60eRI9MDxYv6plae1Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/88/8f2293-7dba-437b-af85-97e355e51ef3/1/5zcPsJ5SI60eRI9MDxYv6plae1Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2d:25:00:2c:4a:77:cd:5e:96:c0:26:b7:e4:b0:6b:96:6d:36:
         ae:d7:c7:35:eb:c7:3e:9e:b7:a8:9d:a2:d8:9a:15:3e:8f:09:
         20:50:a9:e7:3b:59:5b:05:4c:85:f3:a6:6f:f5:83:ab:fe:8d:
         48:62:21:e0:35:15:c1:6a:45:93:cb:59:60:4d:f3:0e:88:a7:
         05:5e:09:23:49:4e:e8:96:9b:24:05:2f:b8:58:94:66:35:cd:
         f0:16:9c:da:78:c4:4b:fd:8e:78:36:00:22:17:16:f2:93:ad:
         cc:dc:d0:8c:33:ba:50:0c:f6:7e:24:f3:24:ca:df:c4:62:18:
         4d:4a:3c:4f:26:6d:e2:94:e7:0c:c4:5c:5c:03:3b:11:e6:71:
         22:58:a0:79:41:05:75:cd:8b:6f:0f:9f:78:15:ea:f3:19:75:
         59:02:24:2e:5f:6a:38:5f:5d:77:04:78:2e:78:0f:d0:87:57:
         0c:63:83:7b:1f:e6:a0:05:31:ea:20:bf:f9:4f:ba:57:e0:01:
         09:5e:50:76:ba:9d:41:65:15:43:a2:93:99:62:2e:cc:4f:58:
         63:72:b4:99:62:a1:0f:3d:c3:c0:64:27:10:53:36:3e:01:11:
         3a:92:d4:29:16:a0:8a:33:43:89:6d:a2:e6:72:68:f8:ab:dd:
         c3:5e:6b:4e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYP5jVizQKuEHPc66qQhQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3MzcwZmIwOWU1MjIzYWQxZTQ0OGY0YzBmMTYyZmVhOTk1
YTdiNTYwHhcNMjUwODIzMTAwMjE3WhcNMjUwODI0MTAwMjE3WjAzMTEwLwYDVQQD
Eyg2ZjY2MmYwODBkNWFkYmFkOWIxODRkZjY5MTZkOWU1YmQ2OTZlMGIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuOGcJKQ42rBXxXtc+ALjj12JXibE
KBQnQ79wIHcLx9ulf8oB7dqqn/kiMrdzJ0a81kc0HaFxwqLsxkB4NjsnK0t2NAW8
S0uXia7yic1c2/8VjjBDmlFR5SEQBGP6v5frBRwuFkaGRRMt963j4T9LQm1GDn5P
FuiJAHwRHo/Cvbqv7V5Yvv2OuXLLCx5liZev+LMzjZggc9stnnE8rocSUyRjFV5x
m8HZkvQsH8GdxMw99Jpykg3/HNMwgfpZgcB/vWTiDVU6+898IfmEMHr1SjSoDa0U
aWEfNvTS32p42vHMr/n4d41TV9PO26db8G2xx6Sn6T2V0R0reCfrxxmpNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG9mLwgNWtutmxhN9pFtnlvWluCzMB8GA1UdIwQY
MBaAFOc3D7CeUiOtHkSPTA8WL+qZWntWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXpjUHNKNVNJNjBlUkk5TUR4WXY2cGxhZTFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC84ZjIyOTMtN2RiYS00MzdiLWFmODUt
OTdlMzU1ZTUxZWYzLzEvNXpjUHNKNVNJNjBlUkk5TUR4WXY2cGxhZTFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC84ZjIyOTMtN2RiYS00MzdiLWFmODUtOTdlMzU1ZTUxZWYz
LzEvNXpjUHNKNVNJNjBlUkk5TUR4WXY2cGxhZTFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALSUALEp3
zV6WwCa35LBrlm02rtfHNevHPp63qJ2i2JoVPo8JIFCp5ztZWwVMhfOmb/WDq/6N
SGIh4DUVwWpFk8tZYE3zDoinBV4JI0lO6JabJAUvuFiUZjXN8Bac2njES/2OeDYA
IhcW8pOtzNzQjDO6UAz2fiTzJMrfxGIYTUo8TyZt4pTnDMRcXAM7EeZxIligeUEF
dc2Lbw+feBXq8xl1WQIkLl9qOF9ddwR4LngP0IdXDGODex/moAUx6iC/+U+6V+AB
CV5QdrqdQWUVQ6KTmWIuzE9YY3K0mWKhDz3DwGQnEFM2PgEROpLUKRagijNDiW2i
5nJo+Kvdw15rTg==
-----END CERTIFICATE-----