Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft
File:                     6YMf0OexWxfgoKfcz8q7Bj18R8o.mft (raw, json)
Hash identifier:          QdHCfSfgir7wqmUxTUf/dW7ZuNuzif/Ene1H+7JpzVU=
Subject key identifier:   95:6A:E4:81:82:A5:47:1A:23:B7:10:30:59:38:FB:EA:97:47:B9:8E
Authority key identifier: E9:83:1F:D0:E7:B1:5B:17:E0:A0:A7:DC:CF:CA:BB:06:3D:7C:47:CA
Certificate issuer:       /CN=e9831fd0e7b15b17e0a0a7dccfcabb063d7c47ca
Certificate serial:       0197B6A0D1B4A1FBBF8A57BBF66368D8B495
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft
Manifest number:          0396
Signing time:             Sat 28 Jun 2025 13:01:22 +0000
Manifest this update:     Sat 28 Jun 2025 13:01:22 +0000
Manifest next update:     Sun 29 Jun 2025 13:01:22 +0000
Files and hashes:         1: 6YMf0OexWxfgoKfcz8q7Bj18R8o.crl (hash: Sp02jVMlCyneoFRwlQZZo2vg+nKPXjm4n79EZ8+VhOA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 10:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a0:d1:b4:a1:fb:bf:8a:57:bb:f6:63:68:d8:b4:95
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e9831fd0e7b15b17e0a0a7dccfcabb063d7c47ca
        Validity
            Not Before: Jun 28 13:01:22 2025 GMT
            Not After : Jun 29 13:01:22 2025 GMT
        Subject: CN=956ae48182a5471a23b710305938fbea9747b98e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:cc:4d:1f:89:8c:62:c4:92:15:50:67:c4:96:
                    55:2c:d6:db:6d:e4:95:32:c9:be:30:11:b1:92:58:
                    9d:5d:13:ed:61:ff:f7:50:82:0f:a5:b7:4a:e9:a4:
                    fd:3e:19:85:04:b5:2d:6a:4f:b1:b4:f1:98:de:90:
                    46:a2:73:b5:71:a4:6d:fb:93:ce:d5:84:96:c0:4c:
                    23:1f:de:61:4c:c8:8d:2c:31:da:c8:c2:aa:03:6a:
                    0d:b9:5a:42:01:00:d8:8f:5d:1b:98:e3:24:f5:3d:
                    17:fe:b3:dc:f8:66:c1:29:a3:cb:5d:28:09:58:d9:
                    61:60:9d:f1:d5:6a:9e:23:08:01:c5:06:86:fc:31:
                    17:21:0d:27:ba:b4:20:4f:21:6c:7e:da:74:ab:dd:
                    40:f0:c1:04:eb:4f:50:60:f4:59:64:ac:75:c1:ac:
                    8d:32:aa:02:97:bf:20:4e:59:78:82:ee:e8:1c:6e:
                    37:60:0b:7c:bf:98:15:40:55:5d:1f:0d:20:71:9c:
                    a1:75:67:05:28:c7:a2:93:18:94:3d:65:28:98:a4:
                    78:7d:5e:d1:3d:26:0e:86:60:63:ff:8c:89:0a:61:
                    3f:3a:61:5f:6d:08:08:7b:5a:04:f8:3b:88:53:53:
                    70:a1:38:31:bb:e0:9a:0d:2c:ad:37:df:04:ab:fb:
                    8f:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:6A:E4:81:82:A5:47:1A:23:B7:10:30:59:38:FB:EA:97:47:B9:8E
            X509v3 Authority Key Identifier:
                keyid:E9:83:1F:D0:E7:B1:5B:17:E0:A0:A7:DC:CF:CA:BB:06:3D:7C:47:CA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6YMf0OexWxfgoKfcz8q7Bj18R8o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/94fd8a-3b65-4af7-885d-0147e13a993e/1/6YMf0OexWxfgoKfcz8q7Bj18R8o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:08:31:40:c8:db:c5:9a:2c:0f:71:3d:6b:c7:d4:f9:44:fb:
         67:3c:a5:cd:d0:b0:bf:b9:d7:16:c1:68:eb:1f:19:6b:23:d4:
         d4:e3:1f:54:30:4e:65:69:9d:9e:5e:ac:37:7c:ae:b3:15:08:
         21:7b:84:24:b3:f8:78:7e:b7:f9:8f:b8:c3:b6:94:dc:31:a4:
         2f:90:69:dc:b1:65:9c:e4:e4:5d:e5:96:08:93:ec:58:a0:85:
         a3:5d:c3:c7:3c:33:d8:17:2a:46:c8:21:8c:4d:22:bc:67:5b:
         8d:ea:cc:1a:22:cc:59:bb:51:01:42:f5:ae:dd:f9:bb:64:8e:
         bb:e2:d6:f3:9f:3b:00:de:82:dd:62:4c:c3:11:a6:29:ef:80:
         bc:2e:24:c7:fa:b6:69:7e:a4:73:15:cf:1d:ab:dd:66:f0:0a:
         f2:91:80:fa:a7:5f:d6:e9:8b:2c:e3:b1:3d:ee:e9:17:eb:a6:
         11:77:b8:90:45:d9:28:04:34:cc:76:3d:d6:0c:33:6f:fc:12:
         24:ce:06:32:54:1d:cc:0d:ad:bf:0c:6d:7f:68:39:99:28:e6:
         5f:97:c9:bd:d7:90:91:8e:d2:f4:cc:00:b2:d2:9c:ce:23:f2:
         ce:6a:e5:bc:68:6f:db:b4:aa:45:e3:9a:0b:57:df:ff:fa:1a:
         6a:9c:e1:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2oNG0ofu/ile79mNo2LSVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5ODMxZmQwZTdiMTViMTdlMGEwYTdkY2NmY2FiYjA2M2Q3
YzQ3Y2EwHhcNMjUwNjI4MTMwMTIyWhcNMjUwNjI5MTMwMTIyWjAzMTEwLwYDVQQD
Eyg5NTZhZTQ4MTgyYTU0NzFhMjNiNzEwMzA1OTM4ZmJlYTk3NDdiOThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1sxNH4mMYsSSFVBnxJZVLNbbbeSV
Msm+MBGxklidXRPtYf/3UIIPpbdK6aT9PhmFBLUtak+xtPGY3pBGonO1caRt+5PO
1YSWwEwjH95hTMiNLDHayMKqA2oNuVpCAQDYj10bmOMk9T0X/rPc+GbBKaPLXSgJ
WNlhYJ3x1WqeIwgBxQaG/DEXIQ0nurQgTyFsftp0q91A8MEE609QYPRZZKx1wayN
MqoCl78gTll4gu7oHG43YAt8v5gVQFVdHw0gcZyhdWcFKMeikxiUPWUomKR4fV7R
PSYOhmBj/4yJCmE/OmFfbQgIe1oE+DuIU1NwoTgxu+CaDSytN98Eq/uP8wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJVq5IGCpUcaI7cQMFk4++qXR7mOMB8GA1UdIwQY
MBaAFOmDH9DnsVsX4KCn3M/KuwY9fEfKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNllNZjBPZXhXeGZnb0tmY3o4cTdCajE4UjhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi85NGZkOGEtM2I2NS00YWY3LTg4NWQt
MDE0N2UxM2E5OTNlLzEvNllNZjBPZXhXeGZnb0tmY3o4cTdCajE4UjhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi85NGZkOGEtM2I2NS00YWY3LTg4NWQtMDE0N2UxM2E5OTNl
LzEvNllNZjBPZXhXeGZnb0tmY3o4cTdCajE4UjhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgwgxQMjb
xZosD3E9a8fU+UT7ZzylzdCwv7nXFsFo6x8ZayPU1OMfVDBOZWmdnl6sN3yusxUI
IXuEJLP4eH63+Y+4w7aU3DGkL5Bp3LFlnOTkXeWWCJPsWKCFo13Dxzwz2BcqRsgh
jE0ivGdbjerMGiLMWbtRAUL1rt35u2SOu+LW8587AN6C3WJMwxGmKe+AvC4kx/q2
aX6kcxXPHavdZvAK8pGA+qdf1umLLOOxPe7pF+umEXe4kEXZKAQ0zHY91gwzb/wS
JM4GMlQdzA2tvwxtf2g5mSjmX5fJvdeQkY7S9MwAstKcziPyzmrlvGhv27SqReOa
C1ff//oaapzhUQ==
-----END CERTIFICATE-----