Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
File:                     5D7dxEvG9TRFds9ZrwATXGtiwB0.mft (raw, json)
Hash identifier:          OOnPk4Ldpr5J9+K8VDuaEALlueLJ+dYEn3VWagO/rkw=
Subject key identifier:   13:5D:D0:46:F5:6A:3D:B4:F6:87:A4:3F:C8:AE:39:E5:70:95:C9:C6
Authority key identifier: E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D
Certificate issuer:       /CN=e43eddc44bc6f5344576cf59af00135c6b62c01d
Certificate serial:       01977376F32DE0BD34A92B6A74A69F877AD6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
Manifest number:          0BF9
Signing time:             Sun 15 Jun 2025 12:01:04 +0000
Manifest this update:     Sun 15 Jun 2025 12:01:04 +0000
Manifest next update:     Mon 16 Jun 2025 12:01:04 +0000
Files and hashes:         1: 5D7dxEvG9TRFds9ZrwATXGtiwB0.crl (hash: zn/xldWfSG6X66GOLtAs3thlpkilZlU87X1dBk8x/Bg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 12:01:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:73:76:f3:2d:e0:bd:34:a9:2b:6a:74:a6:9f:87:7a:d6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e43eddc44bc6f5344576cf59af00135c6b62c01d
        Validity
            Not Before: Jun 15 12:01:04 2025 GMT
            Not After : Jun 16 12:01:04 2025 GMT
        Subject: CN=135dd046f56a3db4f687a43fc8ae39e57095c9c6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:ff:23:8f:79:3b:50:18:29:37:aa:de:5e:56:
                    9c:4b:04:7e:11:5f:2b:da:eb:ca:61:d1:4d:5a:4d:
                    23:b9:a9:9e:5a:21:be:94:78:85:3e:3e:62:03:02:
                    51:05:60:0e:a7:0d:79:38:45:31:0a:e9:c0:c4:56:
                    ac:ea:68:92:91:97:94:3a:fe:02:08:f5:bb:88:d5:
                    56:02:0b:31:d3:18:cd:ab:9b:51:49:84:49:76:eb:
                    f0:c2:6c:51:71:ad:81:55:59:1e:a7:09:86:b5:77:
                    60:2f:0e:8c:9a:07:55:e2:1f:af:04:75:d2:4f:ac:
                    e9:03:54:1c:61:d4:eb:98:73:aa:af:9b:e4:06:6e:
                    42:d2:e4:d7:7d:07:0a:ec:0f:4a:59:9d:d3:fc:39:
                    26:60:f2:aa:0d:db:df:71:87:b1:61:64:07:87:25:
                    b5:40:61:c7:22:88:c1:b8:77:37:52:2e:00:d8:90:
                    bb:bb:65:6e:56:83:da:fe:e7:62:de:f2:04:8f:77:
                    11:57:97:4c:8a:00:61:a8:04:3b:20:d2:a4:b8:6f:
                    80:ac:83:a5:80:96:71:ba:3e:50:a0:5d:3b:0e:12:
                    a9:2f:ac:2b:1a:10:72:6a:9b:6d:92:b1:de:b1:ea:
                    3c:2c:d4:a0:6d:3d:e6:31:96:10:d2:e7:8f:3e:3e:
                    54:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:5D:D0:46:F5:6A:3D:B4:F6:87:A4:3F:C8:AE:39:E5:70:95:C9:C6
            X509v3 Authority Key Identifier:
                keyid:E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:19:81:69:7c:7d:20:12:6c:c9:54:39:d0:d8:a9:83:44:45:
         21:df:ae:0e:99:41:28:e6:23:a0:d4:50:8d:e2:b5:4a:1d:ec:
         1f:4d:33:58:ef:42:19:78:cb:fc:cd:34:e6:a7:01:4c:5c:e2:
         b5:97:f8:fa:29:1e:ff:ee:32:2d:b7:01:d2:a8:f3:90:d7:45:
         60:13:c2:f5:ab:a5:37:43:84:9f:df:c5:fa:65:1f:8b:68:59:
         72:ff:e4:18:f8:d2:c1:79:81:d8:70:f9:ee:3f:6e:6e:94:e5:
         07:88:ce:d9:d4:4d:a1:8f:30:88:51:d1:ea:7b:37:72:91:27:
         15:17:c4:31:2e:d6:35:09:ff:62:18:e5:17:d3:61:c7:53:90:
         bf:3b:8b:be:f6:cc:ff:6b:00:b5:4b:f3:33:42:61:1b:4f:79:
         d8:6e:d8:c7:f6:d7:0a:e6:89:6c:26:25:fa:c1:56:84:cd:d0:
         5d:c4:a8:70:99:53:14:2d:f3:8c:28:91:07:ce:0a:ec:bc:5f:
         4c:19:3a:a0:c3:1c:6f:9b:d7:64:46:42:b9:fa:4b:38:c9:7b:
         da:42:de:ed:29:25:b8:88:bf:9c:ee:f7:a4:0e:18:de:f8:48:
         e7:99:b2:6a:1e:14:be:66:49:6b:61:52:e9:69:02:39:68:8b:
         83:1d:77:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----