Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
File:                     M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft (raw, json)
Hash identifier:          0MLKFJ5iK3tstLMwzU0CrEW8odJT9t/U+2gobWlEdh4=
Subject key identifier:   2B:AE:31:C2:42:FA:DE:18:8E:A6:06:69:C7:D0:79:F2:D4:5A:86:D8
Authority key identifier: 33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
Certificate issuer:       /CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Certificate serial:       019769616B0354039268DB33C130CF6BFDEF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
Manifest number:          1172
Signing time:             Fri 13 Jun 2025 13:01:21 +0000
Manifest this update:     Fri 13 Jun 2025 13:01:21 +0000
Manifest next update:     Sat 14 Jun 2025 13:01:21 +0000
Files and hashes:         1: M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl (hash: nUMrcq/EwwVJ62ww2FLO/Vk4L8zXwax1WiOI0VIoxyc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:01:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:61:6b:03:54:03:92:68:db:33:c1:30:cf:6b:fd:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
        Validity
            Not Before: Jun 13 13:01:21 2025 GMT
            Not After : Jun 14 13:01:21 2025 GMT
        Subject: CN=2bae31c242fade188ea60669c7d079f2d45a86d8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:7d:9f:97:ab:4b:51:99:19:9d:87:dd:a6:4a:
                    36:6d:79:10:40:7c:a9:69:dc:f6:94:cd:01:09:0e:
                    90:9a:f1:5b:c7:5f:5b:64:55:0c:ad:28:9e:ef:33:
                    9e:b3:10:16:04:33:d7:71:58:27:16:f0:94:68:87:
                    a0:fe:bb:33:52:72:8e:a9:2b:df:30:05:3c:45:d0:
                    63:9d:4a:3e:6b:ff:a9:b8:8c:13:a7:6a:3d:18:ac:
                    7d:24:96:dd:a7:e7:a2:9a:38:d4:33:89:6e:51:6c:
                    a3:5c:76:86:23:9f:17:04:14:b0:ec:ec:cc:fb:d1:
                    bb:24:58:f2:b1:d8:1f:47:c4:63:9d:38:92:ae:ec:
                    53:3f:9d:65:5e:8c:da:14:a5:a0:ff:1b:99:00:da:
                    10:2b:54:32:df:7f:82:a8:fd:66:f9:cd:6c:39:db:
                    c7:2f:85:c3:dc:51:d3:02:6c:4d:cb:dd:92:d5:6d:
                    b8:9a:89:4a:dd:31:8a:ea:10:ad:e5:7f:bc:3b:19:
                    8a:b3:62:e8:f8:3a:6d:31:f7:5f:48:62:8a:d3:3a:
                    bb:a1:a2:77:10:4c:bc:ff:25:0b:d0:28:c0:9e:1b:
                    10:dd:1b:f9:48:87:09:bf:4d:74:d4:15:49:d6:c6:
                    0d:03:67:c6:63:cd:d1:aa:da:f9:82:ab:68:b1:39:
                    07:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:AE:31:C2:42:FA:DE:18:8E:A6:06:69:C7:D0:79:F2:D4:5A:86:D8
            X509v3 Authority Key Identifier:
                keyid:33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:79:f3:16:e6:ae:49:e7:61:9b:74:d0:66:f6:5d:ec:7e:46:
         76:d2:1c:67:3e:cf:c4:8e:a8:14:75:04:9d:a0:22:31:46:2f:
         47:7c:ec:53:89:9d:36:20:5e:ab:58:29:31:c5:25:b3:40:5b:
         3c:a0:68:e4:20:8e:26:cd:6f:06:96:00:d6:e5:b0:83:59:b9:
         b3:7e:33:a2:30:d4:5b:33:b1:2c:6d:6d:08:ee:ee:ed:d8:5a:
         45:c5:0a:ba:7b:ec:97:73:a6:d3:8d:1a:79:ae:a5:d9:57:aa:
         90:4c:d9:a0:3f:57:8e:8a:ba:e3:e7:77:1a:77:fb:56:6d:6f:
         52:71:1c:06:8c:33:3c:3e:ec:bf:7c:d3:c8:79:b9:d2:6e:34:
         1f:69:75:83:fb:c3:8b:f0:f2:f2:45:97:1d:85:8f:81:ef:3c:
         86:4d:cc:98:45:89:f3:e4:bb:7f:78:96:a7:c1:a6:92:8d:75:
         41:7f:41:77:9d:6c:cb:f9:59:c2:8b:e4:3a:9d:6a:20:9d:27:
         d4:ba:5e:bf:cd:20:18:56:2d:2b:00:b5:f1:a1:27:ea:95:db:
         a5:a3:b9:2c:88:97:11:bc:fc:0d:f4:ec:e0:d7:38:6a:45:b5:
         a6:a8:75:34:4d:b3:92:ee:dd:2f:65:6b:13:03:97:9b:d9:d8:
         d6:d3:da:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----