Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/f666de-77b5-4480-9242-b254b994dcdc/1/SwzK47EZgtZx464payKbCvw1mwc.mft
File:                     SwzK47EZgtZx464payKbCvw1mwc.mft (raw, json)
Hash identifier:          XSU+RRSfLD/fuOOdvCcduAKmKXs2KCuuynMEUv+dyf0=
Subject key identifier:   6B:2B:54:72:01:F9:C8:A7:32:56:E5:CC:13:64:74:19:BD:FB:75:F1
Authority key identifier: 4B:0C:CA:E3:B1:19:82:D6:71:E3:AE:29:6B:22:9B:0A:FC:35:9B:07
Certificate issuer:       /CN=4b0ccae3b11982d671e3ae296b229b0afc359b07
Certificate serial:       01967D2143E5A2AEA5C209011CE86C9EF13C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SwzK47EZgtZx464payKbCvw1mwc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/00/f666de-77b5-4480-9242-b254b994dcdc/1/SwzK47EZgtZx464payKbCvw1mwc.mft
Manifest number:          0F0B
Signing time:             Mon 28 Apr 2025 16:00:54 +0000
Manifest this update:     Mon 28 Apr 2025 16:00:54 +0000
Manifest next update:     Tue 29 Apr 2025 16:00:54 +0000
Files and hashes:         1: SwzK47EZgtZx464payKbCvw1mwc.crl (hash: 4EsluQrRRrk8eOycViYpNzgIcPCGFUsvegMZFuyHR10=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/00/f666de-77b5-4480-9242-b254b994dcdc/1/SwzK47EZgtZx464payKbCvw1mwc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/00/f666de-77b5-4480-9242-b254b994dcdc/1/SwzK47EZgtZx464payKbCvw1mwc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SwzK47EZgtZx464payKbCvw1mwc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 29 Apr 2025 15:01:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:7d:21:43:e5:a2:ae:a5:c2:09:01:1c:e8:6c:9e:f1:3c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b0ccae3b11982d671e3ae296b229b0afc359b07
        Validity
            Not Before: Apr 28 16:00:54 2025 GMT
            Not After : Apr 29 16:00:54 2025 GMT
        Subject: CN=6b2b547201f9c8a73256e5cc13647419bdfb75f1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:80:b4:d7:e0:15:3e:01:cc:55:0c:16:ae:96:
                    0d:48:9f:10:ed:4d:49:79:34:4d:5f:25:96:a8:d3:
                    7e:3a:5b:b6:43:eb:bf:83:95:b4:94:88:ac:64:af:
                    ce:c3:c0:ee:21:9a:46:5f:20:a1:ab:49:de:89:7e:
                    23:f6:8b:c5:26:26:7f:95:a7:6a:d0:fd:93:d5:b9:
                    6b:bd:d5:b1:5f:f6:bf:4d:06:25:06:77:53:0e:15:
                    62:2e:27:67:ca:79:c7:26:cd:82:65:9a:47:bc:63:
                    4a:6e:6b:fd:16:40:ef:05:7c:6a:60:b1:89:f2:89:
                    5d:b3:91:7a:87:23:94:7f:04:f4:56:7a:95:f0:de:
                    38:a1:e5:d5:9c:e1:00:26:ac:2d:12:58:f8:4f:61:
                    a7:4c:5a:81:f5:5a:86:44:4f:4f:19:b7:1d:a8:78:
                    56:e0:2f:64:c6:c1:8b:a5:85:0e:41:81:f3:20:39:
                    e7:e9:1b:01:49:a3:b9:cb:5d:fb:aa:a2:74:d7:74:
                    64:94:b8:d4:a1:98:02:b9:ff:43:15:1f:3c:d3:c5:
                    89:93:0f:f5:8d:e9:da:8c:b7:fa:e6:6b:f7:06:76:
                    d3:4c:0b:56:23:8e:b9:0d:7d:00:91:02:e7:57:56:
                    e4:f6:62:32:da:82:b9:1f:01:d3:75:a2:f6:2d:18:
                    03:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:2B:54:72:01:F9:C8:A7:32:56:E5:CC:13:64:74:19:BD:FB:75:F1
            X509v3 Authority Key Identifier:
                keyid:4B:0C:CA:E3:B1:19:82:D6:71:E3:AE:29:6B:22:9B:0A:FC:35:9B:07

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SwzK47EZgtZx464payKbCvw1mwc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/f666de-77b5-4480-9242-b254b994dcdc/1/SwzK47EZgtZx464payKbCvw1mwc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/00/f666de-77b5-4480-9242-b254b994dcdc/1/SwzK47EZgtZx464payKbCvw1mwc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:ac:05:e1:51:80:d5:5c:b2:63:b4:bd:9e:a4:62:31:99:3d:
         18:9a:51:7a:65:2d:51:7f:07:b8:a7:ca:50:0b:c3:04:7c:34:
         ae:1c:b5:a0:48:16:ac:85:19:c4:a3:b9:08:75:6b:32:f8:75:
         13:e4:7d:ff:48:99:d7:67:dc:69:12:8e:c8:62:f6:b1:39:a5:
         17:0d:9f:e0:dd:f3:39:16:32:ee:0f:20:e5:ab:d9:b4:5e:71:
         7c:5c:a9:05:c2:1a:3b:db:2c:82:d7:6b:cc:50:55:37:27:ae:
         d8:f0:0b:67:5c:0e:14:ce:3d:b2:8a:71:af:a3:0e:69:a2:41:
         42:5f:cb:6a:14:c9:1b:ef:7b:7a:08:c1:a0:3d:d1:b5:94:a4:
         2d:81:50:5c:ef:3f:61:9a:0b:4d:64:ae:3e:19:00:c3:43:67:
         c8:4d:4f:d2:a4:33:86:08:38:79:8b:f7:4d:a4:49:83:05:53:
         a0:dd:eb:8f:69:77:c1:a3:57:17:43:1f:90:15:70:6d:aa:dd:
         c5:c8:39:c4:16:e6:dd:fb:d1:34:0b:bc:a3:e2:be:40:e7:60:
         d1:72:46:54:aa:64:68:43:3f:c0:83:29:40:2c:f5:f5:a9:c3:
         f1:96:45:f8:97:b8:a7:9d:d4:e6:33:62:ba:65:6a:6d:33:8d:
         3d:c2:c4:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ9IUPloq6lwgkBHOhsnvE8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiMGNjYWUzYjExOTgyZDY3MWUzYWUyOTZiMjI5YjBhZmMz
NTliMDcwHhcNMjUwNDI4MTYwMDU0WhcNMjUwNDI5MTYwMDU0WjAzMTEwLwYDVQQD
Eyg2YjJiNTQ3MjAxZjljOGE3MzI1NmU1Y2MxMzY0NzQxOWJkZmI3NWYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2YC01+AVPgHMVQwWrpYNSJ8Q7U1J
eTRNXyWWqNN+Olu2Q+u/g5W0lIisZK/Ow8DuIZpGXyChq0neiX4j9ovFJiZ/ladq
0P2T1blrvdWxX/a/TQYlBndTDhViLidnynnHJs2CZZpHvGNKbmv9FkDvBXxqYLGJ
8olds5F6hyOUfwT0VnqV8N44oeXVnOEAJqwtElj4T2GnTFqB9VqGRE9PGbcdqHhW
4C9kxsGLpYUOQYHzIDnn6RsBSaO5y137qqJ013RklLjUoZgCuf9DFR8808WJkw/1
jenajLf65mv3BnbTTAtWI465DX0AkQLnV1bk9mIy2oK5HwHTdaL2LRgDEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGsrVHIB+cinMlblzBNkdBm9+3XxMB8GA1UdIwQY
MBaAFEsMyuOxGYLWceOuKWsimwr8NZsHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3d6SzQ3RVpndFp4NDY0cGF5S2JDdncxbXdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9mNjY2ZGUtNzdiNS00NDgwLTkyNDIt
YjI1NGI5OTRkY2RjLzEvU3d6SzQ3RVpndFp4NDY0cGF5S2JDdncxbXdjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9mNjY2ZGUtNzdiNS00NDgwLTkyNDItYjI1NGI5OTRkY2Rj
LzEvU3d6SzQ3RVpndFp4NDY0cGF5S2JDdncxbXdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW6wF4VGA
1VyyY7S9nqRiMZk9GJpRemUtUX8HuKfKUAvDBHw0rhy1oEgWrIUZxKO5CHVrMvh1
E+R9/0iZ12fcaRKOyGL2sTmlFw2f4N3zORYy7g8g5avZtF5xfFypBcIaO9ssgtdr
zFBVNyeu2PALZ1wOFM49sopxr6MOaaJBQl/LahTJG+97egjBoD3RtZSkLYFQXO8/
YZoLTWSuPhkAw0NnyE1P0qQzhgg4eYv3TaRJgwVToN3rj2l3waNXF0MfkBVwbard
xcg5xBbm3fvRNAu8o+K+QOdg0XJGVKpkaEM/wIMpQCz19anD8ZZF+Je4p53U5jNi
umVqbTONPcLEHw==
-----END CERTIFICATE-----