Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
File:                     EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft (raw, json)
Hash identifier:          bRXFiYYtc5D2dZpXhByTJV06sl516/8HZT9pJ96tSAI=
Subject key identifier:   6B:15:D0:BB:FC:87:84:D7:AC:29:5A:37:30:14:EA:2C:DC:26:7E:8A
Authority key identifier: 10:38:D7:A2:95:4A:32:D2:AF:D1:6B:88:B3:63:B3:90:68:1C:D5:93
Certificate issuer:       /CN=1038d7a2954a32d2afd16b88b363b390681cd593
Certificate serial:       01976D3E5FE6883EF827A625340ADD8E6F21
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
Manifest number:          0E62
Signing time:             Sat 14 Jun 2025 07:01:33 +0000
Manifest this update:     Sat 14 Jun 2025 07:01:33 +0000
Manifest next update:     Sun 15 Jun 2025 07:01:33 +0000
Files and hashes:         1: EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl (hash: to6ha3IA2lQieoi42StxlKNhoPrMDdZKYlpRR19uAOg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:3e:5f:e6:88:3e:f8:27:a6:25:34:0a:dd:8e:6f:21
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1038d7a2954a32d2afd16b88b363b390681cd593
        Validity
            Not Before: Jun 14 07:01:33 2025 GMT
            Not After : Jun 15 07:01:33 2025 GMT
        Subject: CN=6b15d0bbfc8784d7ac295a373014ea2cdc267e8a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:87:e6:18:ae:8d:44:53:48:f6:d1:7b:84:4c:
                    57:3f:31:5e:38:ac:ba:8a:b0:f4:65:cc:96:80:ca:
                    41:ae:52:85:25:5a:0f:a3:0f:af:6b:c4:7a:be:65:
                    ba:4e:1e:45:6a:fb:6e:6a:db:d0:35:bd:17:2e:5d:
                    3e:63:ef:9c:ee:d5:9b:a3:71:ab:3b:92:36:b0:93:
                    af:0e:81:8d:40:7d:f1:ff:75:20:5c:43:41:14:9d:
                    34:4f:e3:8c:bc:63:19:e9:9e:51:14:a7:da:1a:4a:
                    27:e8:85:26:e4:c6:b4:19:c1:ca:3e:74:71:2b:22:
                    88:22:79:4b:59:c9:e6:86:95:b3:28:1d:ee:ae:1e:
                    6f:83:ba:04:64:d8:63:30:99:b8:16:4d:36:d8:ed:
                    44:20:8a:45:4d:53:db:b4:78:12:58:3b:91:7e:4f:
                    4b:72:32:49:05:d4:b3:d9:15:62:ce:b8:80:7b:f9:
                    36:20:fc:f4:84:3f:6b:99:95:7e:54:93:4c:0d:62:
                    2c:20:8a:e8:f9:c7:99:50:3d:8c:ce:6b:f5:44:d7:
                    cb:d3:2e:c6:c9:fb:c5:a0:66:8f:0b:ba:f8:61:e7:
                    1f:5d:e3:25:ef:0f:d1:af:8d:bf:db:2d:e7:64:b3:
                    5d:45:27:3b:10:73:97:d2:4f:26:44:a8:28:3f:9b:
                    cd:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:15:D0:BB:FC:87:84:D7:AC:29:5A:37:30:14:EA:2C:DC:26:7E:8A
            X509v3 Authority Key Identifier:
                keyid:10:38:D7:A2:95:4A:32:D2:AF:D1:6B:88:B3:63:B3:90:68:1C:D5:93

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDjXopVKMtKv0WuIs2OzkGgc1ZM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/627557-78a8-4b4e-a3b8-9a818ddd1558/1/EDjXopVKMtKv0WuIs2OzkGgc1ZM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         60:80:e9:e7:8f:02:a5:1d:60:eb:7c:5b:89:90:28:f2:c8:f2:
         02:a8:40:94:fe:18:a8:e3:c4:03:18:43:15:d6:ac:c2:7e:a0:
         6e:6c:d2:b0:de:df:4f:a0:44:98:1d:9a:ef:d7:72:10:3e:0d:
         c2:85:71:f2:33:13:c6:0e:72:3c:c0:65:1c:99:0e:12:50:ef:
         7e:11:29:b2:b1:f9:d6:40:a5:e7:a8:23:28:60:1c:17:05:28:
         78:2e:c4:38:49:0b:58:31:71:8f:10:a8:88:ff:d9:e1:bd:64:
         a6:4d:f5:2e:e0:5e:63:16:08:f9:cf:0a:40:db:f1:18:2f:a0:
         d0:bd:dc:e9:77:14:63:4c:d2:92:e8:48:a1:7f:8d:b8:dc:9e:
         1c:e4:62:bf:47:62:97:89:77:b3:27:a6:be:2b:61:e6:17:02:
         b3:04:80:bf:c1:a5:51:37:bc:94:49:58:fa:52:34:58:c5:0f:
         52:66:62:8f:ed:9b:e7:e9:89:3f:7d:8c:2d:d0:17:82:7f:ee:
         d3:61:aa:6c:4c:a7:f4:51:ad:1e:e1:7f:b8:be:fe:cf:5b:ea:
         56:46:e4:6a:e0:96:7b:9a:a4:b2:65:f6:74:45:dd:5c:cb:f2:
         dd:6e:d6:bf:b5:86:14:a3:5f:e3:a4:3d:3c:a0:b2:89:e3:28:
         c6:08:cb:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtPl/miD74J6YlNArdjm8hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwMzhkN2EyOTU0YTMyZDJhZmQxNmI4OGIzNjNiMzkwNjgx
Y2Q1OTMwHhcNMjUwNjE0MDcwMTMzWhcNMjUwNjE1MDcwMTMzWjAzMTEwLwYDVQQD
Eyg2YjE1ZDBiYmZjODc4NGQ3YWMyOTVhMzczMDE0ZWEyY2RjMjY3ZThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt4fmGK6NRFNI9tF7hExXPzFeOKy6
irD0ZcyWgMpBrlKFJVoPow+va8R6vmW6Th5FavtuatvQNb0XLl0+Y++c7tWbo3Gr
O5I2sJOvDoGNQH3x/3UgXENBFJ00T+OMvGMZ6Z5RFKfaGkon6IUm5Ma0GcHKPnRx
KyKIInlLWcnmhpWzKB3urh5vg7oEZNhjMJm4Fk022O1EIIpFTVPbtHgSWDuRfk9L
cjJJBdSz2RVizriAe/k2IPz0hD9rmZV+VJNMDWIsIIro+ceZUD2Mzmv1RNfL0y7G
yfvFoGaPC7r4YecfXeMl7w/Rr42/2y3nZLNdRSc7EHOX0k8mRKgoP5vN9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGsV0Lv8h4TXrClaNzAU6izcJn6KMB8GA1UdIwQY
MBaAFBA416KVSjLSr9FriLNjs5BoHNWTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRURqWG9wVktNdEt2MFd1SXMyT3prR2djMVpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC82Mjc1NTctNzhhOC00YjRlLWEzYjgt
OWE4MThkZGQxNTU4LzEvRURqWG9wVktNdEt2MFd1SXMyT3prR2djMVpNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC82Mjc1NTctNzhhOC00YjRlLWEzYjgtOWE4MThkZGQxNTU4
LzEvRURqWG9wVktNdEt2MFd1SXMyT3prR2djMVpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYIDp548C
pR1g63xbiZAo8sjyAqhAlP4YqOPEAxhDFdaswn6gbmzSsN7fT6BEmB2a79dyED4N
woVx8jMTxg5yPMBlHJkOElDvfhEpsrH51kCl56gjKGAcFwUoeC7EOEkLWDFxjxCo
iP/Z4b1kpk31LuBeYxYI+c8KQNvxGC+g0L3c6XcUY0zSkuhIoX+NuNyeHORiv0di
l4l3syemvith5hcCswSAv8GlUTe8lElY+lI0WMUPUmZij+2b5+mJP32MLdAXgn/u
02GqbEyn9FGtHuF/uL7+z1vqVkbkauCWe5qksmX2dEXdXMvy3W7Wv7WGFKNf46Q9
PKCyieMoxgjLHQ==
-----END CERTIFICATE-----