Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
File:                     BvPXAJgq-awbr-TyqnGEStAHWR0.mft (raw, json)
Hash identifier:          O1qg66lJKHRGCWjWp8Nkg2Tmciw1kqDduhKaprq1CsQ=
Subject key identifier:   E5:7E:C9:EA:27:F7:D7:76:C4:CB:3D:6B:D6:A6:D4:02:FE:73:48:8B
Authority key identifier: 06:F3:D7:00:98:2A:F9:AC:1B:AF:E4:F2:AA:71:84:4A:D0:07:59:1D
Certificate issuer:       /CN=06f3d700982af9ac1bafe4f2aa71844ad007591d
Certificate serial:       01976D3D54CBA3257CAC919D8408304E51AC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
Manifest number:          08C1
Signing time:             Sat 14 Jun 2025 07:00:25 +0000
Manifest this update:     Sat 14 Jun 2025 07:00:25 +0000
Manifest next update:     Sun 15 Jun 2025 07:00:25 +0000
Files and hashes:         1: BvPXAJgq-awbr-TyqnGEStAHWR0.crl (hash: iUnWC9J9OoGXv0MafWR4YeOWOcfTqYxHlwLbHeKGgYY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:3d:54:cb:a3:25:7c:ac:91:9d:84:08:30:4e:51:ac
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=06f3d700982af9ac1bafe4f2aa71844ad007591d
        Validity
            Not Before: Jun 14 07:00:25 2025 GMT
            Not After : Jun 15 07:00:25 2025 GMT
        Subject: CN=e57ec9ea27f7d776c4cb3d6bd6a6d402fe73488b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:08:71:31:11:1c:7b:f8:99:da:eb:78:40:99:
                    a5:89:4f:20:67:7d:ec:d0:88:23:1b:9a:ea:41:f8:
                    70:7d:f7:24:df:3b:56:dc:22:77:ac:ff:72:7b:21:
                    3c:84:d3:c6:ea:4f:75:ac:57:d0:8f:ec:30:58:64:
                    16:f8:67:0b:9b:2f:b7:bc:40:cd:90:c1:28:95:99:
                    d1:ba:a5:21:0d:0c:cc:9c:9f:fd:0c:22:ad:3a:65:
                    e6:35:1a:c7:7a:9d:38:0b:0f:2f:ad:85:4a:29:1e:
                    d6:e9:9f:87:67:65:eb:60:c3:47:9c:eb:4f:c1:58:
                    e3:92:1c:10:f0:56:bf:2e:01:ed:4b:6a:5e:93:94:
                    e1:95:75:59:de:83:d9:24:11:da:d1:7d:65:87:c5:
                    f2:0a:f6:bb:c6:c4:83:11:b7:40:1f:99:2c:d9:52:
                    a7:f4:89:0f:8a:c4:1e:88:de:8f:67:e8:10:1a:07:
                    e8:dd:5a:05:e5:15:7d:48:91:5c:ef:92:28:73:4e:
                    ff:25:36:a3:ac:73:2c:c8:82:d4:61:a4:3e:b4:1c:
                    aa:50:89:53:5c:5c:b3:72:25:63:1d:e0:f2:42:2c:
                    93:8f:03:8b:de:86:0f:7d:7d:d4:3a:01:eb:bc:9e:
                    bf:f2:3a:64:e5:f7:4c:85:09:35:09:7e:3c:25:89:
                    25:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:7E:C9:EA:27:F7:D7:76:C4:CB:3D:6B:D6:A6:D4:02:FE:73:48:8B
            X509v3 Authority Key Identifier:
                keyid:06:F3:D7:00:98:2A:F9:AC:1B:AF:E4:F2:AA:71:84:4A:D0:07:59:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:2b:ee:65:6e:35:c0:75:cf:81:ed:b6:74:12:fe:0a:e2:4f:
         af:b5:e7:a9:e1:5e:4f:e5:ba:88:4e:ce:2e:56:71:3f:6e:70:
         ea:76:aa:09:8c:5b:cf:fe:e2:3f:6c:4f:1c:26:07:6d:06:4c:
         ea:36:f4:e3:e2:d2:ef:22:47:ed:41:43:78:29:c9:c5:6a:3a:
         71:c3:8a:6f:f5:89:a4:74:73:10:08:7e:d8:42:58:d0:b5:4e:
         7a:4d:f1:ae:38:b3:63:19:d8:8a:28:87:d9:09:b2:35:e7:7c:
         98:c3:56:70:8b:02:e7:d9:57:32:f4:f8:67:b8:d7:1b:19:44:
         3f:82:00:46:54:9e:d3:42:54:45:cb:17:9d:3f:c7:4d:b3:9a:
         e1:ec:fb:6f:5a:d6:26:4d:54:23:d9:d0:d6:50:b7:8f:a1:6c:
         1e:1c:32:be:49:13:db:1b:aa:ca:2c:97:c7:c2:42:fe:f8:8e:
         7f:12:1c:7b:d8:51:6a:e1:b7:9c:95:4c:c3:df:ab:e7:bb:00:
         4f:60:95:ef:29:77:34:86:5e:7b:74:b8:38:19:b3:6e:a7:11:
         7a:c2:e6:14:e6:d4:11:98:b3:94:36:87:ce:27:64:5b:aa:9a:
         50:cc:62:6a:17:15:f8:da:20:6b:27:74:25:29:14:84:8a:1e:
         a3:8d:95:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----