Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
File:                     aweCDo1ADzwl3dC-G0bFTpVZYKE.mft (raw, json)
Hash identifier:          s/c4OZhXtBXlYgwc8xEanmjTS9KsVT/lPQDasynWqM4=
Subject key identifier:   06:45:00:B3:00:2C:3B:69:E0:E2:AB:A6:45:8F:3A:19:27:18:77:EB
Authority key identifier: 6B:07:82:0E:8D:40:0F:3C:25:DD:D0:BE:1B:46:C5:4E:95:59:60:A1
Certificate issuer:       /CN=6b07820e8d400f3c25ddd0be1b46c54e955960a1
Certificate serial:       019874BD91E5EDBE698FB490368210EDDE32
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aweCDo1ADzwl3dC-G0bFTpVZYKE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
Manifest number:          0D31
Signing time:             Mon 04 Aug 2025 11:00:37 +0000
Manifest this update:     Mon 04 Aug 2025 11:00:37 +0000
Manifest next update:     Tue 05 Aug 2025 11:00:37 +0000
Files and hashes:         1: aweCDo1ADzwl3dC-G0bFTpVZYKE.crl (hash: vkvMgVgBdqHTz8eH+Zfbj1I7BjryaU6KKPvcafCuekk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aweCDo1ADzwl3dC-G0bFTpVZYKE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 11:00:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:74:bd:91:e5:ed:be:69:8f:b4:90:36:82:10:ed:de:32
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6b07820e8d400f3c25ddd0be1b46c54e955960a1
        Validity
            Not Before: Aug  4 11:00:37 2025 GMT
            Not After : Aug  5 11:00:37 2025 GMT
        Subject: CN=064500b3002c3b69e0e2aba6458f3a19271877eb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:9a:59:e9:57:80:55:af:3a:4a:90:6c:66:9e:
                    ec:61:7d:2b:f8:44:95:4c:4f:82:ea:61:42:bf:9a:
                    fc:28:c3:db:17:07:d0:af:27:67:e3:38:e1:32:2b:
                    5c:0d:1f:c6:a3:02:4a:41:5d:8f:d8:03:9f:e8:4e:
                    e6:93:72:03:3e:f2:a2:61:57:12:ca:d9:6c:5c:c2:
                    f8:55:f4:63:e6:4a:d3:aa:3a:0e:3c:57:da:22:76:
                    66:72:09:53:f6:60:4b:20:60:80:db:b1:30:01:fd:
                    22:ac:42:09:27:cb:90:6c:e1:6c:ad:d8:e0:f3:f6:
                    d1:d0:ba:d5:da:96:db:50:8b:43:b6:86:69:e3:68:
                    4c:f9:90:1d:d5:7d:1f:79:0b:4a:b2:3b:7f:cf:7f:
                    09:37:c8:1b:f5:7c:b9:78:c1:e8:ee:24:47:61:c1:
                    53:fa:ef:b7:04:ef:10:ab:0b:d6:eb:3d:9b:c5:5e:
                    39:13:df:6a:ee:4b:55:23:cf:a1:27:db:6b:d8:e4:
                    f7:00:4d:e4:65:5d:d6:c2:b2:d1:6f:81:2d:85:ab:
                    73:29:5f:b6:f6:06:e2:a3:37:a6:c4:f1:24:69:5f:
                    41:75:74:ac:49:42:11:02:b9:ad:e6:46:fe:e3:27:
                    ae:39:4b:45:9e:37:73:8a:c6:a7:f2:c4:d3:d2:02:
                    11:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:45:00:B3:00:2C:3B:69:E0:E2:AB:A6:45:8F:3A:19:27:18:77:EB
            X509v3 Authority Key Identifier:
                keyid:6B:07:82:0E:8D:40:0F:3C:25:DD:D0:BE:1B:46:C5:4E:95:59:60:A1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aweCDo1ADzwl3dC-G0bFTpVZYKE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:43:38:ee:54:48:e3:6c:8e:e6:21:32:75:1f:6f:af:13:09:
         33:64:cd:a4:9d:7f:e5:32:f8:80:53:89:39:d2:4d:36:79:59:
         71:4c:6d:ea:6f:59:71:b4:32:bf:05:85:96:f5:d8:8e:7b:6f:
         f5:20:f4:68:87:c6:81:d7:2d:a9:3e:89:f5:4f:b9:06:a5:0c:
         f8:bf:d5:34:a5:93:ef:c7:34:ac:7b:cc:f3:02:06:11:aa:bf:
         32:f0:a6:12:ae:0e:47:c0:53:ff:3f:9c:75:f4:a1:64:82:2d:
         71:8d:f8:53:4b:9d:67:6e:70:af:f0:bc:7c:fe:db:d5:c0:17:
         d4:7a:b4:ab:1a:06:e7:37:84:33:90:6c:15:5b:10:56:e6:67:
         db:14:c5:a1:41:66:fe:81:01:02:b5:c2:db:e7:25:30:b2:53:
         29:64:92:16:9e:29:74:ab:b0:2b:ea:f9:22:4b:26:82:e0:d7:
         c9:65:b8:2f:0d:2f:6d:84:97:fa:c9:36:3d:14:a1:7a:b8:3d:
         8c:d4:8c:08:67:dc:6c:29:8f:77:42:25:98:eb:a3:68:7b:67:
         d5:e1:84:86:3e:28:9b:02:8e:4f:c0:42:27:66:24:4d:82:2d:
         77:46:6e:c3:2d:e0:9f:b0:16:93:b4:b1:42:ca:b9:96:fb:18:
         3c:51:87:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----