Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft
File:                     yigmXgq4MyeqVJI0yrsT64_2ZDc.mft (raw, json)
Hash identifier:          hSksAu9fmuF/sOA533u8coVOVAD9ZWGEKuD317/o7eU=
Subject key identifier:   87:04:E5:80:EB:82:94:C7:08:7D:BE:79:FE:07:C9:02:9F:F2:61:AA
Authority key identifier: CA:28:26:5E:0A:B8:33:27:AA:54:92:34:CA:BB:13:EB:8F:F6:64:37
Certificate issuer:       /CN=ca28265e0ab83327aa549234cabb13eb8ff66437
Certificate serial:       019779AF7914DBCB0FC7E5605EB40BF01114
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yigmXgq4MyeqVJI0yrsT64_2ZDc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft
Manifest number:          0EF6
Signing time:             Mon 16 Jun 2025 17:00:32 +0000
Manifest this update:     Mon 16 Jun 2025 17:00:32 +0000
Manifest next update:     Tue 17 Jun 2025 17:00:32 +0000
Files and hashes:         1: yigmXgq4MyeqVJI0yrsT64_2ZDc.crl (hash: SrdwiqDbKOSsx2foQMOZpXdqBjM7IM3OfAV27awIHu4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yigmXgq4MyeqVJI0yrsT64_2ZDc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Jun 2025 14:25:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:79:af:79:14:db:cb:0f:c7:e5:60:5e:b4:0b:f0:11:14
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ca28265e0ab83327aa549234cabb13eb8ff66437
        Validity
            Not Before: Jun 16 17:00:32 2025 GMT
            Not After : Jun 17 17:00:32 2025 GMT
        Subject: CN=8704e580eb8294c7087dbe79fe07c9029ff261aa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:30:69:d6:f6:15:ee:c8:62:4d:eb:85:63:aa:
                    d0:a6:bb:45:b0:32:e8:76:ba:0d:a1:c4:f2:95:38:
                    f8:d2:59:5e:6f:d3:7e:1b:65:e0:61:82:bf:eb:6d:
                    fb:c8:b7:86:9c:3f:4c:12:61:2d:d6:de:41:1f:f3:
                    20:25:ce:55:d6:79:69:35:46:e1:45:a8:24:82:b3:
                    25:e1:6a:53:eb:46:6d:44:c0:81:cd:7d:7d:db:57:
                    cb:12:16:fa:a9:88:b6:9a:4a:f3:ff:02:8e:65:9f:
                    fe:dd:8e:a1:f5:c9:ea:a5:fe:ea:a9:33:08:96:43:
                    8f:d1:90:e6:1e:a4:b1:4b:f0:1b:38:72:81:4a:37:
                    0f:4f:25:17:aa:52:8b:ec:1b:c9:ad:68:db:03:2b:
                    a6:06:c4:7f:d6:a2:40:0e:a8:85:8d:b8:53:d8:d0:
                    30:ca:52:88:50:07:40:7a:ff:a4:ff:5f:40:c8:56:
                    e1:9c:3c:47:92:3d:b2:51:8a:c6:30:39:fe:c6:28:
                    6d:88:55:cd:fa:5a:c3:e3:4c:ee:58:f8:60:f9:cc:
                    4b:6f:ad:b2:7e:9d:7b:2b:a6:1a:0f:60:99:5e:ac:
                    11:18:fe:71:77:f9:21:1c:20:0a:93:11:83:09:16:
                    35:75:24:07:7d:82:fb:23:3b:2f:4d:28:e6:27:29:
                    f3:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:04:E5:80:EB:82:94:C7:08:7D:BE:79:FE:07:C9:02:9F:F2:61:AA
            X509v3 Authority Key Identifier:
                keyid:CA:28:26:5E:0A:B8:33:27:AA:54:92:34:CA:BB:13:EB:8F:F6:64:37

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yigmXgq4MyeqVJI0yrsT64_2ZDc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:92:78:83:60:ef:45:ed:d4:74:e7:39:96:6b:d1:24:b2:32:
         ac:cf:2a:9b:d4:25:cd:6a:e0:6b:65:44:f3:a6:ab:12:6f:e7:
         d5:a1:83:49:a1:14:de:b8:6b:96:7e:93:01:cc:d4:42:d9:bd:
         a3:2e:0b:61:2f:75:78:a0:73:17:7a:6d:a4:ca:a7:34:e0:5e:
         23:1f:87:45:20:fb:98:db:4b:c5:ff:f9:3b:43:80:30:f4:6c:
         2e:da:4a:f0:46:28:73:5e:c5:78:e1:0d:cc:bc:bb:5e:01:a6:
         96:52:b3:29:bb:e7:18:da:0c:27:cf:0e:c3:3b:a0:87:83:b4:
         f7:ca:10:0b:1f:56:e0:40:cf:ab:f5:b7:d5:4b:1b:b2:fe:a8:
         12:a9:0e:11:c6:a9:8d:2c:20:9a:90:1f:0a:f0:4b:7a:a0:aa:
         2e:dd:12:ac:a6:2f:6d:7f:59:25:6a:70:cb:d2:83:57:e9:71:
         0c:16:75:df:1b:35:f1:25:ec:b7:34:53:4f:5d:8c:4c:8d:ad:
         71:42:33:3c:bd:22:cd:78:32:f4:00:9f:20:68:50:d8:bc:50:
         74:71:9e:39:8d:09:25:4b:f7:7f:40:a2:d3:24:62:3e:1f:c3:
         cc:32:d2:1f:9f:fe:47:16:59:54:5d:7f:37:53:f3:37:c0:aa:
         9a:b7:bb:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----