Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft
File:                     gz8MJRPUNTtAzvg5F57r-HOCRcY.mft (raw, json)
Hash identifier:          UwzDrq67q2EeWbMQ+UnyVtkXhtqiJefH/6KqQfL9WzU=
Subject key identifier:   9A:02:A4:D4:8B:08:5F:A4:62:09:7B:86:41:0D:7D:FE:16:76:BA:78
Authority key identifier: 83:3F:0C:25:13:D4:35:3B:40:CE:F8:39:17:9E:EB:F8:73:82:45:C6
Certificate issuer:       /CN=833f0c2513d4353b40cef839179eebf8738245c6
Certificate serial:       0197BA7DA841477F42924197655C1E27EF3C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft
Manifest number:          108B
Signing time:             Sun 29 Jun 2025 07:01:26 +0000
Manifest this update:     Sun 29 Jun 2025 07:01:26 +0000
Manifest next update:     Mon 30 Jun 2025 07:01:26 +0000
Files and hashes:         1: gz8MJRPUNTtAzvg5F57r-HOCRcY.crl (hash: eg5sLpTec4SASO1iUoWqbJdWKgNBHWhvzuc/xSIIL98=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Jun 2025 04:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:ba:7d:a8:41:47:7f:42:92:41:97:65:5c:1e:27:ef:3c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=833f0c2513d4353b40cef839179eebf8738245c6
        Validity
            Not Before: Jun 29 07:01:26 2025 GMT
            Not After : Jun 30 07:01:26 2025 GMT
        Subject: CN=9a02a4d48b085fa462097b86410d7dfe1676ba78
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:1e:e9:d1:ee:07:fb:a1:f1:8f:f1:43:5f:9b:
                    0e:2d:47:97:b1:9c:c5:49:6c:e0:44:3d:43:25:2f:
                    05:21:75:15:6a:6c:9e:cc:bc:c1:a5:4b:c9:fd:c0:
                    86:40:48:c9:2c:e0:f9:ab:f0:82:60:d3:12:0c:20:
                    f9:73:47:2a:bf:f2:2b:b4:5a:de:e8:72:3f:79:b3:
                    4d:55:50:f4:12:c2:13:00:9a:b7:a8:5a:0b:09:49:
                    8f:93:a5:78:a3:08:92:86:0d:fc:d2:11:17:3a:8f:
                    7a:92:b8:92:0c:bd:2c:a5:00:11:b9:fc:20:9b:39:
                    1f:09:de:d9:1e:45:89:2b:7f:07:0a:b1:21:d5:aa:
                    f7:5c:db:db:f0:cb:2c:09:b5:64:3d:98:76:7d:3c:
                    87:5e:5a:c9:0d:d9:d0:cb:0b:5d:d7:77:b3:e9:af:
                    15:7b:26:ba:17:81:82:41:0c:9e:c3:e4:d7:e1:ac:
                    58:d0:0c:66:49:b6:cd:af:25:97:c1:fc:de:47:1e:
                    2a:1a:a4:26:9d:3e:f3:05:c4:24:7a:43:90:50:02:
                    46:4a:47:1d:e6:37:33:a9:54:c2:17:ac:72:98:3e:
                    eb:8b:2a:eb:d9:24:3b:2f:39:cf:0d:9e:fb:86:b2:
                    fa:02:b0:f1:40:73:bf:97:f7:03:01:21:1f:cc:72:
                    d8:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9A:02:A4:D4:8B:08:5F:A4:62:09:7B:86:41:0D:7D:FE:16:76:BA:78
            X509v3 Authority Key Identifier:
                keyid:83:3F:0C:25:13:D4:35:3B:40:CE:F8:39:17:9E:EB:F8:73:82:45:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz8MJRPUNTtAzvg5F57r-HOCRcY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/9f2fc8-8f2c-47e0-97da-ed07ecf2dc36/1/gz8MJRPUNTtAzvg5F57r-HOCRcY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b6:c8:27:fc:89:52:6d:b6:2b:4d:2e:e6:52:bf:d7:80:49:95:
         6c:26:87:f8:4d:92:89:61:35:be:4d:fb:b4:80:74:09:23:8d:
         9e:24:70:bb:e6:bc:e2:07:84:cc:c7:e5:b7:ff:b3:a0:18:71:
         01:f1:a9:47:a3:ba:45:78:08:4d:34:3d:93:6b:07:f3:d3:bf:
         1d:6a:07:19:28:3a:98:ae:b0:4a:eb:09:43:3b:4b:c8:8c:40:
         53:9e:d3:c9:d5:e6:68:bf:e5:53:28:b2:bd:0a:48:06:2d:e1:
         57:85:e3:1d:d9:6c:d0:88:23:39:50:e8:e6:9b:71:39:1e:3f:
         5e:a2:7f:e5:cd:d5:68:88:5b:7e:19:4a:df:ba:a3:e0:b9:5d:
         5d:c0:3c:4e:f8:75:c3:31:81:d0:92:db:fa:ae:9c:e9:e8:80:
         18:5e:36:ae:5f:d2:b3:e8:62:7c:b1:16:1b:a4:43:60:c2:a8:
         05:08:55:32:70:6c:69:08:16:87:70:6d:17:1a:58:e5:dd:4f:
         94:17:cb:f6:f7:c6:58:52:4d:fb:2c:89:f9:17:52:e1:12:60:
         65:fd:c2:87:88:09:d1:5b:be:3b:96:d1:d8:3a:52:65:1d:c5:
         1d:3b:0f:ca:92:3b:df:c2:7c:a9:ed:ce:bc:1d:94:73:d0:a7:
         6d:d9:25:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6fahBR39CkkGXZVweJ+88MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2YwYzI1MTNkNDM1M2I0MGNlZjgzOTE3OWVlYmY4NzM4
MjQ1YzYwHhcNMjUwNjI5MDcwMTI2WhcNMjUwNjMwMDcwMTI2WjAzMTEwLwYDVQQD
Eyg5YTAyYTRkNDhiMDg1ZmE0NjIwOTdiODY0MTBkN2RmZTE2NzZiYTc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsh7p0e4H+6Hxj/FDX5sOLUeXsZzF
SWzgRD1DJS8FIXUVamyezLzBpUvJ/cCGQEjJLOD5q/CCYNMSDCD5c0cqv/IrtFre
6HI/ebNNVVD0EsITAJq3qFoLCUmPk6V4owiShg380hEXOo96kriSDL0spQARufwg
mzkfCd7ZHkWJK38HCrEh1ar3XNvb8MssCbVkPZh2fTyHXlrJDdnQywtd13ez6a8V
eya6F4GCQQyew+TX4axY0AxmSbbNryWXwfzeRx4qGqQmnT7zBcQkekOQUAJGSkcd
5jczqVTCF6xymD7riyrr2SQ7LznPDZ77hrL6ArDxQHO/l/cDASEfzHLYKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJoCpNSLCF+kYgl7hkENff4Wdrp4MB8GA1UdIwQY
MBaAFIM/DCUT1DU7QM74ORee6/hzgkXGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o4TUpSUFVOVHRBenZnNUY1N3ItSE9DUmNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi85ZjJmYzgtOGYyYy00N2UwLTk3ZGEt
ZWQwN2VjZjJkYzM2LzEvZ3o4TUpSUFVOVHRBenZnNUY1N3ItSE9DUmNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi85ZjJmYzgtOGYyYy00N2UwLTk3ZGEtZWQwN2VjZjJkYzM2
LzEvZ3o4TUpSUFVOVHRBenZnNUY1N3ItSE9DUmNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtsgn/IlS
bbYrTS7mUr/XgEmVbCaH+E2SiWE1vk37tIB0CSONniRwu+a84geEzMflt/+zoBhx
AfGpR6O6RXgITTQ9k2sH89O/HWoHGSg6mK6wSusJQztLyIxAU57TydXmaL/lUyiy
vQpIBi3hV4XjHdls0IgjOVDo5ptxOR4/XqJ/5c3VaIhbfhlK37qj4LldXcA8Tvh1
wzGB0JLb+q6c6eiAGF42rl/Ss+hifLEWG6RDYMKoBQhVMnBsaQgWh3BtFxpY5d1P
lBfL9vfGWFJN+yyJ+RdS4RJgZf3Ch4gJ0Vu+O5bR2DpSZR3FHTsPypI738J8qe3O
vB2Uc9CnbdklQA==
-----END CERTIFICATE-----