Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft
File:                     i6gkldaDsIyIGoGM0B-kL_9v9tE.mft (raw, json)
Hash identifier:          DebuBSixgjxrHxJ/pUerozZAURqNQL9hvWO6PD74RiU=
Subject key identifier:   B3:54:7E:13:99:48:57:50:D4:20:19:DB:E4:94:40:BF:66:95:F9:FE
Authority key identifier: 8B:A8:24:95:D6:83:B0:8C:88:1A:81:8C:D0:1F:A4:2F:FF:6F:F6:D1
Certificate issuer:       /CN=8ba82495d683b08c881a818cd01fa42fff6ff6d1
Certificate serial:       01977DFA495A68604AC3D7298FE9A8113810
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/i6gkldaDsIyIGoGM0B-kL_9v9tE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft
Manifest number:          018D
Signing time:             Tue 17 Jun 2025 13:00:44 +0000
Manifest this update:     Tue 17 Jun 2025 13:00:44 +0000
Manifest next update:     Wed 18 Jun 2025 13:00:44 +0000
Files and hashes:         1: i6gkldaDsIyIGoGM0B-kL_9v9tE.crl (hash: 3b3ZuQW1D/DWnIF60eLfBGo37hQhnYBuSliaLLZn980=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/i6gkldaDsIyIGoGM0B-kL_9v9tE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 18 Jun 2025 13:00:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:7d:fa:49:5a:68:60:4a:c3:d7:29:8f:e9:a8:11:38:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8ba82495d683b08c881a818cd01fa42fff6ff6d1
        Validity
            Not Before: Jun 17 13:00:44 2025 GMT
            Not After : Jun 18 13:00:44 2025 GMT
        Subject: CN=b3547e1399485750d42019dbe49440bf6695f9fe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:62:f9:dd:49:68:e0:90:02:be:66:ef:dd:83:
                    80:67:80:65:01:8e:3e:e7:26:24:3f:52:40:00:a7:
                    64:f4:e9:16:84:4f:88:3b:54:21:47:e5:91:e2:b1:
                    1b:91:08:67:fc:8c:b0:bc:49:50:54:ed:5e:1e:32:
                    6a:ab:37:43:c9:b1:c1:04:75:ac:a9:5d:7c:81:94:
                    b3:84:76:37:46:82:51:d0:84:83:56:0d:26:87:82:
                    a8:ea:3b:36:11:ce:de:6f:08:cf:37:65:a9:db:02:
                    7a:8a:13:4c:00:f2:76:78:83:10:36:e9:f0:a2:ad:
                    f8:e3:b4:b3:2f:45:9a:09:e3:74:9e:4e:e6:8e:fd:
                    de:56:15:51:71:65:e7:70:74:53:68:c2:8a:22:9b:
                    4d:bf:6c:5c:97:b0:b3:50:41:03:45:5e:88:a9:14:
                    fe:13:01:92:00:e6:8b:98:36:1d:95:1d:e6:98:53:
                    06:59:28:40:5e:f0:74:f0:d8:df:10:00:a2:4f:f5:
                    6c:04:0e:d5:e9:25:42:b9:9c:b8:0c:35:0c:2a:69:
                    fa:0d:cd:8f:88:c9:b5:06:91:d0:7c:72:a0:2d:3a:
                    fb:26:f2:09:1b:a9:61:67:da:da:3f:eb:90:96:e0:
                    67:f4:2e:ac:c5:eb:e8:59:84:a8:ff:b1:cc:76:b8:
                    b6:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:54:7E:13:99:48:57:50:D4:20:19:DB:E4:94:40:BF:66:95:F9:FE
            X509v3 Authority Key Identifier:
                keyid:8B:A8:24:95:D6:83:B0:8C:88:1A:81:8C:D0:1F:A4:2F:FF:6F:F6:D1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6gkldaDsIyIGoGM0B-kL_9v9tE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d0:bb:27:7d:8f:1e:95:3e:08:f5:6a:58:9b:64:93:6a:3f:d0:
         81:4f:7a:59:d7:94:41:8d:a3:2b:bc:8e:3e:b3:4e:89:17:2b:
         02:62:ef:20:53:b4:74:86:27:56:ac:36:20:da:19:07:6c:f0:
         aa:d7:d2:29:18:dc:fe:d7:d5:5d:82:5d:e6:f5:42:9f:7e:87:
         c3:26:c6:32:06:13:22:f5:dd:d8:32:4d:e8:df:45:78:88:11:
         26:f4:d2:6f:53:f8:f6:7f:26:ab:54:84:e3:a6:74:10:c2:45:
         c9:f5:0e:09:1d:c7:87:0e:04:12:04:2b:8f:81:0d:0a:61:58:
         e1:1c:b7:bf:af:6a:6a:87:9c:b1:6e:65:9b:75:f9:c3:55:a5:
         37:e1:d2:50:87:07:5b:a1:b6:b0:aa:8e:d1:0d:b4:76:5f:ba:
         75:40:3b:49:f2:0f:1f:8e:c4:fa:6a:52:21:70:4d:1f:5e:f5:
         4d:47:d3:39:bc:50:33:1b:91:6e:5d:dc:19:37:1f:e0:f0:96:
         56:7c:73:bf:75:28:b0:88:8f:87:dd:9b:cc:7b:f3:2f:78:1f:
         2a:0c:9d:e5:e8:f8:96:de:b2:af:bb:34:62:64:31:bc:f2:20:
         d0:8a:e8:b9:eb:ad:2f:3a:32:2f:81:d0:35:00:43:20:41:6f:
         ca:83:d7:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd9+klaaGBKw9cpj+moETgQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiYTgyNDk1ZDY4M2IwOGM4ODFhODE4Y2QwMWZhNDJmZmY2
ZmY2ZDEwHhcNMjUwNjE3MTMwMDQ0WhcNMjUwNjE4MTMwMDQ0WjAzMTEwLwYDVQQD
EyhiMzU0N2UxMzk5NDg1NzUwZDQyMDE5ZGJlNDk0NDBiZjY2OTVmOWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmL53Ulo4JACvmbv3YOAZ4BlAY4+
5yYkP1JAAKdk9OkWhE+IO1QhR+WR4rEbkQhn/IywvElQVO1eHjJqqzdDybHBBHWs
qV18gZSzhHY3RoJR0ISDVg0mh4Ko6js2Ec7ebwjPN2Wp2wJ6ihNMAPJ2eIMQNunw
oq3447SzL0WaCeN0nk7mjv3eVhVRcWXncHRTaMKKIptNv2xcl7CzUEEDRV6IqRT+
EwGSAOaLmDYdlR3mmFMGWShAXvB08NjfEACiT/VsBA7V6SVCuZy4DDUMKmn6Dc2P
iMm1BpHQfHKgLTr7JvIJG6lhZ9raP+uQluBn9C6sxevoWYSo/7HMdri2XwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLNUfhOZSFdQ1CAZ2+SUQL9mlfn+MB8GA1UdIwQY
MBaAFIuoJJXWg7CMiBqBjNAfpC//b/bRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTZna2xkYURzSXlJR29HTTBCLWtMXzl2OXRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy82OGVkOTgtZmUzZi00MDYzLTkxYTkt
YzYyNTBmYjYwOTZlLzEvaTZna2xkYURzSXlJR29HTTBCLWtMXzl2OXRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy82OGVkOTgtZmUzZi00MDYzLTkxYTktYzYyNTBmYjYwOTZl
LzEvaTZna2xkYURzSXlJR29HTTBCLWtMXzl2OXRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA0LsnfY8e
lT4I9WpYm2STaj/QgU96WdeUQY2jK7yOPrNOiRcrAmLvIFO0dIYnVqw2INoZB2zw
qtfSKRjc/tfVXYJd5vVCn36HwybGMgYTIvXd2DJN6N9FeIgRJvTSb1P49n8mq1SE
46Z0EMJFyfUOCR3Hhw4EEgQrj4ENCmFY4Ry3v69qaoecsW5lm3X5w1WlN+HSUIcH
W6G2sKqO0Q20dl+6dUA7SfIPH47E+mpSIXBNH171TUfTObxQMxuRbl3cGTcf4PCW
Vnxzv3UosIiPh92bzHvzL3gfKgyd5ej4lt6yr7s0YmQxvPIg0IroueutLzoyL4HQ
NQBDIEFvyoPXBw==
-----END CERTIFICATE-----