Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
File:                     yjzk270E4HrOGTf4ChWvc5m4Aw4.mft (raw, json)
Hash identifier:          jgsQTNsMZltcIsBROhqumKdM+qY7AyU11qwEw7ehCjE=
Subject key identifier:   BA:72:B6:64:0F:30:F6:49:DD:A6:F2:A4:BE:5D:54:58:F8:86:46:06
Authority key identifier: CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E
Certificate issuer:       /CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e
Certificate serial:       0198808B3E92D458FA964528042D2F24C184
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
Manifest number:          05B4
Signing time:             Wed 06 Aug 2025 18:01:05 +0000
Manifest this update:     Wed 06 Aug 2025 18:01:05 +0000
Manifest next update:     Thu 07 Aug 2025 18:01:05 +0000
Files and hashes:         1: yjzk270E4HrOGTf4ChWvc5m4Aw4.crl (hash: jBMr2sWf2hVDxwFbI4ChgSavCNMcAAkiU+jYwA0t02s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 18:01:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:80:8b:3e:92:d4:58:fa:96:45:28:04:2d:2f:24:c1:84
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ca3ce4dbbd04e07ace1937f80a15af7399b8030e
        Validity
            Not Before: Aug  6 18:01:05 2025 GMT
            Not After : Aug  7 18:01:05 2025 GMT
        Subject: CN=ba72b6640f30f649dda6f2a4be5d5458f8864606
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:48:43:ff:d7:56:be:dd:96:1a:f4:21:0f:fa:
                    13:b7:f9:af:f7:37:b3:ad:f2:40:e8:96:08:c1:d6:
                    09:62:45:0e:d8:37:ed:5b:ed:9c:57:ad:79:8d:58:
                    df:49:34:9c:14:fa:77:2b:d9:0d:67:a8:21:5e:c1:
                    c4:02:9f:89:cc:0b:b6:e1:72:02:45:82:dd:c9:d5:
                    e2:74:11:24:93:4d:86:e9:46:bd:ea:ec:7d:33:36:
                    0f:31:6d:c2:ed:5a:6f:cc:8b:71:a6:26:db:00:5c:
                    dd:f8:c0:f3:b2:d5:c7:97:ed:51:67:e2:5b:37:5c:
                    b9:37:1a:fe:96:20:f6:ad:a2:72:0f:4f:c9:99:9a:
                    49:b5:82:2b:0e:9d:ec:0c:45:58:b4:43:13:a6:2b:
                    ca:6c:ea:f3:3a:0f:62:4b:f3:5d:9f:57:d1:0c:a2:
                    e6:6a:be:42:60:11:9e:8e:52:fb:d3:20:32:20:12:
                    32:b0:74:26:d1:33:fe:31:e3:44:e3:88:0b:a2:17:
                    fa:bb:d3:db:de:6a:8b:e2:c8:59:6d:d0:40:1f:f0:
                    42:ba:dd:81:7e:18:00:97:55:f2:56:75:ec:c5:3e:
                    f9:0a:77:3b:32:0b:3a:3b:0b:60:53:f1:78:51:64:
                    d8:69:c4:0b:55:45:8e:9b:21:a4:28:6f:30:33:36:
                    a5:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BA:72:B6:64:0F:30:F6:49:DD:A6:F2:A4:BE:5D:54:58:F8:86:46:06
            X509v3 Authority Key Identifier:
                keyid:CA:3C:E4:DB:BD:04:E0:7A:CE:19:37:F8:0A:15:AF:73:99:B8:03:0E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjzk270E4HrOGTf4ChWvc5m4Aw4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/a5d9a3-c454-4b7e-800d-617cd3df395b/1/yjzk270E4HrOGTf4ChWvc5m4Aw4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:1e:a9:95:fb:ec:1e:b3:15:98:d2:99:cf:4e:96:c8:09:b3:
         3f:ee:d8:db:e7:8c:85:6e:c9:19:40:2c:4f:e2:65:98:2b:c1:
         b4:bb:e4:24:7a:94:bb:17:9b:be:ee:ef:ad:cd:a1:ac:5b:fa:
         8a:cd:f4:fe:ab:68:e5:7f:b3:a7:34:31:65:39:f9:b3:8f:33:
         8f:8f:60:d2:2b:a1:2b:0c:80:a5:ca:48:a3:e0:e8:6f:e8:c9:
         60:d5:ae:f4:af:98:cb:e6:73:57:61:64:1c:05:c8:a8:a8:46:
         49:2b:50:3b:85:5e:db:89:a4:6b:57:6d:37:83:e0:01:33:83:
         0d:01:2a:20:88:e1:3b:a7:9d:23:70:d0:e6:66:18:1f:33:f6:
         ad:37:7b:9a:4a:3a:f1:5e:b4:ec:5f:10:68:e8:d4:6c:f0:60:
         13:16:ad:e4:32:44:f6:71:5d:6a:7d:cd:f8:3d:e8:c3:c0:76:
         a2:34:bf:64:0a:0e:1b:3f:06:f4:e3:27:24:de:8c:ff:ab:17:
         73:2f:18:39:9b:de:6f:0b:94:33:97:94:bc:bf:67:13:e3:6a:
         73:9f:26:31:d0:96:e4:24:4d:a7:f5:af:1b:a7:be:41:86:9f:
         ff:95:7c:81:c2:37:c8:65:bc:ef:1a:16:9a:78:71:56:e3:eb:
         13:d1:4b:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAiz6S1Fj6lkUoBC0vJMGEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhM2NlNGRiYmQwNGUwN2FjZTE5MzdmODBhMTVhZjczOTli
ODAzMGUwHhcNMjUwODA2MTgwMTA1WhcNMjUwODA3MTgwMTA1WjAzMTEwLwYDVQQD
EyhiYTcyYjY2NDBmMzBmNjQ5ZGRhNmYyYTRiZTVkNTQ1OGY4ODY0NjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUhD/9dWvt2WGvQhD/oTt/mv9zez
rfJA6JYIwdYJYkUO2DftW+2cV615jVjfSTScFPp3K9kNZ6ghXsHEAp+JzAu24XIC
RYLdydXidBEkk02G6Ua96ux9MzYPMW3C7VpvzItxpibbAFzd+MDzstXHl+1RZ+Jb
N1y5Nxr+liD2raJyD0/JmZpJtYIrDp3sDEVYtEMTpivKbOrzOg9iS/Ndn1fRDKLm
ar5CYBGejlL70yAyIBIysHQm0TP+MeNE44gLohf6u9Pb3mqL4shZbdBAH/BCut2B
fhgAl1XyVnXsxT75Cnc7Mgs6OwtgU/F4UWTYacQLVUWOmyGkKG8wMzalrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLpytmQPMPZJ3abypL5dVFj4hkYGMB8GA1UdIwQY
MBaAFMo85Nu9BOB6zhk3+AoVr3OZuAMOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWp6azI3MEU0SHJPR1RmNENoV3ZjNW00QXc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9hNWQ5YTMtYzQ1NC00YjdlLTgwMGQt
NjE3Y2QzZGYzOTViLzEveWp6azI3MEU0SHJPR1RmNENoV3ZjNW00QXc0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS9hNWQ5YTMtYzQ1NC00YjdlLTgwMGQtNjE3Y2QzZGYzOTVi
LzEveWp6azI3MEU0SHJPR1RmNENoV3ZjNW00QXc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqB6plfvs
HrMVmNKZz06WyAmzP+7Y2+eMhW7JGUAsT+JlmCvBtLvkJHqUuxebvu7vrc2hrFv6
is30/qto5X+zpzQxZTn5s48zj49g0iuhKwyApcpIo+Dob+jJYNWu9K+Yy+ZzV2Fk
HAXIqKhGSStQO4Ve24mka1dtN4PgATODDQEqIIjhO6edI3DQ5mYYHzP2rTd7mko6
8V607F8QaOjUbPBgExat5DJE9nFdan3N+D3ow8B2ojS/ZAoOGz8G9OMnJN6M/6sX
cy8YOZvebwuUM5eUvL9nE+Nqc58mMdCW5CRNp/WvG6e+QYaf/5V8gcI3yGW87xoW
mnhxVuPrE9FLdQ==
-----END CERTIFICATE-----