Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
File:                     Yefv0ZrydUeUJswZJcW8Ls7ums4.mft (raw, json)
Hash identifier:          GMY2eO0GXPhn29hwxH4QblEfU3K2oXrhZI/xv0eeyuU=
Subject key identifier:   D1:83:A7:CF:6D:C3:76:EA:FF:95:DC:41:26:35:09:39:47:55:94:BA
Authority key identifier: 61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE
Certificate issuer:       /CN=61e7efd19af275479426cc1925c5bc2eceee9ace
Certificate serial:       019880C23819003570991B6CF92C49394B73
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
Manifest number:          152F
Signing time:             Wed 06 Aug 2025 19:01:08 +0000
Manifest this update:     Wed 06 Aug 2025 19:01:08 +0000
Manifest next update:     Thu 07 Aug 2025 19:01:08 +0000
Files and hashes:         1: Yefv0ZrydUeUJswZJcW8Ls7ums4.crl (hash: VW/b4acj3g0KESl3R2Yzenu8gTZe6UQbWOInbE83o/c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 19:01:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:80:c2:38:19:00:35:70:99:1b:6c:f9:2c:49:39:4b:73
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=61e7efd19af275479426cc1925c5bc2eceee9ace
        Validity
            Not Before: Aug  6 19:01:08 2025 GMT
            Not After : Aug  7 19:01:08 2025 GMT
        Subject: CN=d183a7cf6dc376eaff95dc4126350939475594ba
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:aa:f8:5e:ef:d0:48:8e:3a:c1:78:d6:f4:f4:
                    ad:df:55:08:3d:c2:b7:c0:14:71:87:dc:1d:76:1e:
                    83:c3:37:2b:25:37:7c:68:4c:48:34:5a:75:ff:8b:
                    ab:33:48:7e:73:50:f4:62:9d:7a:c2:78:1c:14:4f:
                    a1:93:71:d2:1f:73:1a:6f:f0:60:23:3b:b2:18:18:
                    42:cb:49:c8:7f:cd:23:74:63:bf:17:74:62:d1:2c:
                    0c:11:67:89:a8:9b:12:20:88:65:92:70:8f:1c:3b:
                    2e:df:1b:a4:12:be:85:c7:88:c8:7f:73:3d:56:e8:
                    ba:a2:2e:8b:7e:e8:6b:dd:f5:83:ac:f6:3a:6b:07:
                    ba:ff:ce:d3:19:ff:25:cf:65:e3:37:16:40:28:8c:
                    f5:73:43:54:12:f9:16:de:a4:bb:c2:a3:e3:77:3a:
                    ec:8a:04:9d:09:e0:86:60:24:a0:12:a7:33:52:78:
                    f3:ff:19:a5:85:a2:54:d6:3a:55:a7:a4:f8:12:5c:
                    78:59:27:53:19:9b:31:f8:a2:f9:d7:1f:9b:92:37:
                    c0:27:85:75:62:6e:56:2a:46:d6:03:30:79:7b:3e:
                    0b:58:67:24:a0:fe:cf:c5:08:54:22:f0:85:ff:91:
                    51:ba:65:38:98:31:2a:98:8f:e8:d1:d6:ac:16:a1:
                    33:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D1:83:A7:CF:6D:C3:76:EA:FF:95:DC:41:26:35:09:39:47:55:94:BA
            X509v3 Authority Key Identifier:
                keyid:61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:cd:2e:b9:52:d3:e7:f8:86:ac:b4:60:ae:7c:cc:6b:c7:15:
         a7:ec:a8:2a:5e:49:d4:5f:a9:bb:5f:31:81:b0:7f:69:71:c9:
         b4:b4:0a:d8:c9:6f:db:bb:b0:cd:a5:27:b6:cc:14:e3:5f:17:
         42:5a:e1:b1:4d:90:8b:93:f4:5e:90:5c:e3:f2:18:ce:e2:1a:
         ac:10:cf:04:20:51:9a:8b:3f:cf:93:b0:66:fa:83:45:f8:83:
         fd:94:bf:d8:f1:a8:aa:c1:d2:64:96:83:fe:36:c6:2e:4c:a6:
         47:5b:89:ea:8a:92:e1:86:6f:a5:68:89:29:75:c4:6d:68:f8:
         8c:c7:25:cf:0e:a1:ee:a7:56:b0:50:cc:72:92:73:4e:61:d5:
         73:a1:ed:4a:f5:e0:ce:78:b5:e1:b4:d7:b9:4e:2b:c2:ee:ac:
         8e:54:84:88:b2:bb:35:de:ce:38:98:77:38:1c:0c:cd:6e:b7:
         c6:5b:0d:9e:3f:c2:aa:5e:b8:52:ec:d4:a1:6c:70:b2:f6:86:
         1c:8c:5a:46:21:c1:d2:2e:0f:35:b8:73:dc:90:09:33:f9:07:
         eb:65:44:5d:b6:2d:11:a8:21:0a:c7:4c:46:54:c9:86:0b:0d:
         9d:32:d7:b1:57:75:78:d5:0c:09:99:8b:6c:20:13:ac:17:87:
         77:87:7d:6f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAwjgZADVwmRts+SxJOUtzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxZTdlZmQxOWFmMjc1NDc5NDI2Y2MxOTI1YzViYzJlY2Vl
ZTlhY2UwHhcNMjUwODA2MTkwMTA4WhcNMjUwODA3MTkwMTA4WjAzMTEwLwYDVQQD
EyhkMTgzYTdjZjZkYzM3NmVhZmY5NWRjNDEyNjM1MDkzOTQ3NTU5NGJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3qr4Xu/QSI46wXjW9PSt31UIPcK3
wBRxh9wddh6DwzcrJTd8aExINFp1/4urM0h+c1D0Yp16wngcFE+hk3HSH3Mab/Bg
IzuyGBhCy0nIf80jdGO/F3Ri0SwMEWeJqJsSIIhlknCPHDsu3xukEr6Fx4jIf3M9
Vui6oi6Lfuhr3fWDrPY6awe6/87TGf8lz2XjNxZAKIz1c0NUEvkW3qS7wqPjdzrs
igSdCeCGYCSgEqczUnjz/xmlhaJU1jpVp6T4Elx4WSdTGZsx+KL51x+bkjfAJ4V1
Ym5WKkbWAzB5ez4LWGckoP7PxQhUIvCF/5FRumU4mDEqmI/o0dasFqEzmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNGDp89tw3bq/5XcQSY1CTlHVZS6MB8GA1UdIwQY
MBaAFGHn79Ga8nVHlCbMGSXFvC7O7prOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWVmdjBacnlkVWVVSnN3WkpjVzhMczd1bXM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9lM2MzOTAtZTQ3NS00MDI0LWFjN2Yt
MDg3NDBkZjg3MTA2LzEvWWVmdjBacnlkVWVVSnN3WkpjVzhMczd1bXM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9lM2MzOTAtZTQ3NS00MDI0LWFjN2YtMDg3NDBkZjg3MTA2
LzEvWWVmdjBacnlkVWVVSnN3WkpjVzhMczd1bXM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfM0uuVLT
5/iGrLRgrnzMa8cVp+yoKl5J1F+pu18xgbB/aXHJtLQK2Mlv27uwzaUntswU418X
QlrhsU2Qi5P0XpBc4/IYzuIarBDPBCBRmos/z5OwZvqDRfiD/ZS/2PGoqsHSZJaD
/jbGLkymR1uJ6oqS4YZvpWiJKXXEbWj4jMclzw6h7qdWsFDMcpJzTmHVc6HtSvXg
zni14bTXuU4rwu6sjlSEiLK7Nd7OOJh3OBwMzW63xlsNnj/Cql64UuzUoWxwsvaG
HIxaRiHB0i4PNbhz3JAJM/kH62VEXbYtEaghCsdMRlTJhgsNnTLXsVd1eNUMCZmL
bCATrBeHd4d9bw==
-----END CERTIFICATE-----