Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
File:                     DUlCfYpEd823aAhhqexQ3HMhaYI.mft (raw, json)
Hash identifier:          wcWlG07pEI2ipi3lyknC0IvljxchuPh3A+yFBeApLR0=
Subject key identifier:   B8:A3:E9:CB:FD:92:28:B9:7A:AA:AD:97:49:B2:EC:4B:6F:68:D3:49
Authority key identifier: 0D:49:42:7D:8A:44:77:CD:B7:68:08:61:A9:EC:50:DC:73:21:69:82
Certificate issuer:       /CN=0d49427d8a4477cdb7680861a9ec50dc73216982
Certificate serial:       019873E2090246556EB380AE2B19F4C8A2B2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
Manifest number:          06A3
Signing time:             Mon 04 Aug 2025 07:00:49 +0000
Manifest this update:     Mon 04 Aug 2025 07:00:49 +0000
Manifest next update:     Tue 05 Aug 2025 07:00:49 +0000
Files and hashes:         1: DUlCfYpEd823aAhhqexQ3HMhaYI.crl (hash: dGdz3f0jwioZ1PX+0BX8OCzLntQ6f89A7ZIyp/akUPA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e2:09:02:46:55:6e:b3:80:ae:2b:19:f4:c8:a2:b2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0d49427d8a4477cdb7680861a9ec50dc73216982
        Validity
            Not Before: Aug  4 07:00:49 2025 GMT
            Not After : Aug  5 07:00:49 2025 GMT
        Subject: CN=b8a3e9cbfd9228b97aaaad9749b2ec4b6f68d349
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:40:5d:ec:0a:af:79:22:8e:5f:b4:94:75:07:
                    5b:c5:a4:c6:e0:90:06:38:2d:5c:c3:2f:e2:c9:ce:
                    76:d8:20:33:0a:1d:73:5e:23:38:85:3c:0f:96:ba:
                    f9:36:17:6b:44:96:58:f1:d0:ab:71:6b:be:3c:56:
                    99:42:4d:e7:f8:fa:9b:d4:3a:77:a1:58:15:2b:06:
                    35:d3:14:69:6a:6d:6d:77:8a:84:6d:d1:65:4f:32:
                    cb:23:21:ba:ab:88:e9:af:4c:a3:df:9f:af:18:bb:
                    93:74:e4:6b:d6:ac:38:12:9b:ce:0d:c9:4d:fe:b6:
                    bc:bb:78:c4:75:21:3f:0b:b6:cd:16:93:3d:72:7c:
                    0a:e3:47:6d:ad:82:41:ab:c6:56:6b:3a:d3:f5:bd:
                    96:a8:8a:ca:09:44:70:2b:4d:a9:e8:8b:57:2d:08:
                    aa:0b:80:6b:e8:d2:b0:3a:c9:1a:b8:b9:be:fb:b6:
                    16:fc:ba:63:d9:63:b3:79:b0:88:65:42:79:54:a0:
                    5a:9d:94:70:47:cc:08:a5:d6:11:de:15:88:b3:0e:
                    18:b6:a5:f8:1e:5b:20:e0:7d:61:6a:e6:1d:fd:fe:
                    2a:bf:2f:9e:2c:8b:24:1e:48:fc:5d:37:22:05:58:
                    75:43:6c:f5:73:28:03:c2:25:87:c3:1b:e4:c6:75:
                    16:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B8:A3:E9:CB:FD:92:28:B9:7A:AA:AD:97:49:B2:EC:4B:6F:68:D3:49
            X509v3 Authority Key Identifier:
                keyid:0D:49:42:7D:8A:44:77:CD:B7:68:08:61:A9:EC:50:DC:73:21:69:82

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DUlCfYpEd823aAhhqexQ3HMhaYI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/19/89dd25-546c-4f18-acc4-7a4057314167/1/DUlCfYpEd823aAhhqexQ3HMhaYI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:e9:57:88:41:e4:c2:9c:ed:2e:8e:1b:9f:e2:12:ea:7e:41:
         69:43:7f:78:b7:d9:86:ec:f9:56:e2:05:d1:2c:96:9d:a9:da:
         e5:19:a3:c9:eb:ff:87:8b:8e:20:b6:a7:be:37:0e:1c:24:b9:
         fc:13:dc:37:e2:b1:9e:fd:54:e7:71:62:04:f8:61:c6:fa:1a:
         2b:aa:f1:4d:df:2a:82:e4:63:19:0f:b0:3b:35:5a:ef:2a:55:
         bb:95:e6:31:f9:d4:76:6c:a3:da:fb:58:f0:f3:6e:92:98:4b:
         c3:cd:2e:db:b1:f1:bc:1a:9e:8a:25:aa:ac:91:d3:90:54:bd:
         2c:c6:03:c3:05:23:ff:27:67:6c:3e:4e:77:ac:d1:e5:23:31:
         53:39:e2:12:e5:36:53:d3:f4:12:e4:48:c0:9a:b1:3a:86:57:
         a3:e3:c7:f3:2a:0e:eb:e4:36:70:6d:a1:8c:61:66:88:8c:0c:
         80:12:c3:1a:60:cb:61:f0:35:dd:80:85:f3:b6:1d:14:fd:47:
         cf:8a:6c:ae:5c:86:fd:1a:d9:7a:62:dd:29:ac:d8:8d:6a:d8:
         53:13:ea:a9:91:38:2b:4a:6f:c7:50:91:66:6d:bb:97:aa:d9:
         63:1d:8e:91:e1:9b:f9:3e:9c:33:ae:98:75:68:84:c8:56:9b:
         86:3b:0c:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4gkCRlVus4CuKxn0yKKyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkNDk0MjdkOGE0NDc3Y2RiNzY4MDg2MWE5ZWM1MGRjNzMy
MTY5ODIwHhcNMjUwODA0MDcwMDQ5WhcNMjUwODA1MDcwMDQ5WjAzMTEwLwYDVQQD
EyhiOGEzZTljYmZkOTIyOGI5N2FhYWFkOTc0OWIyZWM0YjZmNjhkMzQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw0Bd7AqveSKOX7SUdQdbxaTG4JAG
OC1cwy/iyc522CAzCh1zXiM4hTwPlrr5NhdrRJZY8dCrcWu+PFaZQk3n+Pqb1Dp3
oVgVKwY10xRpam1td4qEbdFlTzLLIyG6q4jpr0yj35+vGLuTdORr1qw4EpvODclN
/ra8u3jEdSE/C7bNFpM9cnwK40dtrYJBq8ZWazrT9b2WqIrKCURwK02p6ItXLQiq
C4Br6NKwOskauLm++7YW/Lpj2WOzebCIZUJ5VKBanZRwR8wIpdYR3hWIsw4YtqX4
Hlsg4H1hauYd/f4qvy+eLIskHkj8XTciBVh1Q2z1cygDwiWHwxvkxnUWwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLij6cv9kii5eqqtl0my7EtvaNNJMB8GA1UdIwQY
MBaAFA1JQn2KRHfNt2gIYansUNxzIWmCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFVsQ2ZZcEVkODIzYUFoaHFleFEzSE1oYVlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS84OWRkMjUtNTQ2Yy00ZjE4LWFjYzQt
N2E0MDU3MzE0MTY3LzEvRFVsQ2ZZcEVkODIzYUFoaHFleFEzSE1oYVlJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS84OWRkMjUtNTQ2Yy00ZjE4LWFjYzQtN2E0MDU3MzE0MTY3
LzEvRFVsQ2ZZcEVkODIzYUFoaHFleFEzSE1oYVlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGelXiEHk
wpztLo4bn+IS6n5BaUN/eLfZhuz5VuIF0SyWnana5Rmjyev/h4uOILanvjcOHCS5
/BPcN+Kxnv1U53FiBPhhxvoaK6rxTd8qguRjGQ+wOzVa7ypVu5XmMfnUdmyj2vtY
8PNukphLw80u27HxvBqeiiWqrJHTkFS9LMYDwwUj/ydnbD5Od6zR5SMxUzniEuU2
U9P0EuRIwJqxOoZXo+PH8yoO6+Q2cG2hjGFmiIwMgBLDGmDLYfA13YCF87YdFP1H
z4psrlyG/RrZemLdKazYjWrYUxPqqZE4K0pvx1CRZm27l6rZYx2OkeGb+T6cM66Y
dWiEyFabhjsMAA==
-----END CERTIFICATE-----