Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
File:                     BvPXAJgq-awbr-TyqnGEStAHWR0.mft (raw, json)
Hash identifier:          OsvVu3pTCzxD1JAjTC44LG3fyYS9Uy67hCZdiZUrq6c=
Subject key identifier:   11:7B:35:80:A0:DF:2B:D7:C3:AE:77:01:7A:8B:40:D6:8D:F7:6C:AC
Authority key identifier: 06:F3:D7:00:98:2A:F9:AC:1B:AF:E4:F2:AA:71:84:4A:D0:07:59:1D
Certificate issuer:       /CN=06f3d700982af9ac1bafe4f2aa71844ad007591d
Certificate serial:       01988EEB36994B320D39F9BA3AAB03E0A5C1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
Manifest number:          0957
Signing time:             Sat 09 Aug 2025 13:00:36 +0000
Manifest this update:     Sat 09 Aug 2025 13:00:36 +0000
Manifest next update:     Sun 10 Aug 2025 13:00:36 +0000
Files and hashes:         1: BvPXAJgq-awbr-TyqnGEStAHWR0.crl (hash: 92Efg37H8IJ/muN8m+dqTc1FtIMt1bcEUrmkJDebo0s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 10 Aug 2025 13:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8e:eb:36:99:4b:32:0d:39:f9:ba:3a:ab:03:e0:a5:c1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=06f3d700982af9ac1bafe4f2aa71844ad007591d
        Validity
            Not Before: Aug  9 13:00:36 2025 GMT
            Not After : Aug 10 13:00:36 2025 GMT
        Subject: CN=117b3580a0df2bd7c3ae77017a8b40d68df76cac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:11:48:4d:63:46:64:e8:ca:82:c4:77:6e:b6:
                    d5:34:b4:9c:d3:51:3b:db:41:6d:14:93:53:6a:1a:
                    45:d5:6f:92:7f:5d:4c:52:63:1b:19:50:20:10:82:
                    08:b2:e2:9f:2c:14:06:60:5d:30:95:c2:f3:da:29:
                    2f:ac:08:1b:cc:6d:ea:33:a2:b4:89:3b:8f:45:bd:
                    c1:6c:78:52:30:5f:9f:cd:e8:2b:82:d0:2c:47:0b:
                    02:43:6f:a1:20:f1:9c:8b:e2:a7:b6:81:4e:3e:f3:
                    fd:08:7f:91:01:b8:e1:b9:b3:93:9b:4a:d2:d0:60:
                    21:30:c4:db:a3:3e:7b:4c:19:ff:b2:ee:0b:7d:fb:
                    6c:63:e1:e9:ed:cb:c8:ad:fd:f6:e5:e2:fb:72:39:
                    1e:38:51:a9:ca:9d:2e:9b:4b:ee:6d:66:56:ee:46:
                    b4:9d:2f:93:eb:dc:27:50:cf:b1:27:d1:67:c7:eb:
                    67:ae:65:18:a3:cb:08:1a:65:2e:03:ba:25:a5:16:
                    7d:e5:dd:e6:18:5b:89:f5:82:91:4b:11:2e:1f:73:
                    45:a2:9a:46:c1:cc:54:f9:db:c6:57:f5:b0:18:02:
                    43:12:b5:37:d9:df:43:4b:02:45:64:49:43:13:5f:
                    a9:7e:f3:53:0d:ff:c5:4d:dc:4e:32:9f:2f:09:11:
                    09:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:7B:35:80:A0:DF:2B:D7:C3:AE:77:01:7A:8B:40:D6:8D:F7:6C:AC
            X509v3 Authority Key Identifier:
                keyid:06:F3:D7:00:98:2A:F9:AC:1B:AF:E4:F2:AA:71:84:4A:D0:07:59:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BvPXAJgq-awbr-TyqnGEStAHWR0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/97eb03-0d6e-4d7c-82f1-d3b3e77bd993/1/BvPXAJgq-awbr-TyqnGEStAHWR0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:e2:51:8d:8e:3a:9d:03:b2:3c:fb:ec:ff:33:be:c2:e6:68:
         f4:0b:5a:12:71:bd:7b:6c:29:33:f8:aa:5a:0a:2b:82:7f:e4:
         36:84:93:54:38:c2:fe:3f:8d:5f:af:88:d1:89:3e:4c:ab:23:
         66:5e:84:24:b9:a1:cb:18:c4:da:15:4c:a7:88:55:8f:f7:93:
         a6:80:a5:e9:db:40:cb:81:3d:57:72:c6:9f:bf:f8:bb:c7:99:
         6a:e1:ea:80:8e:ff:2f:a7:34:8f:50:f4:19:c6:b0:87:4b:8d:
         c1:91:bc:29:1a:84:06:46:66:95:0e:23:6a:7d:64:59:19:c0:
         a1:f2:70:ab:44:c8:00:14:b9:a9:e9:f4:5b:a2:60:09:85:da:
         75:c2:b6:74:e0:97:88:49:46:b0:72:0a:97:9d:0a:51:ca:99:
         a0:70:4d:2c:1d:98:b7:f2:d8:83:40:b4:e7:66:1a:2d:8d:85:
         97:28:fd:10:3b:81:d0:25:05:e3:ad:a6:5d:4f:c1:35:f6:6f:
         40:19:fc:9e:f0:f5:e6:38:7d:51:d7:af:ca:a5:1b:66:7c:4a:
         5e:c1:fe:43:bc:09:b7:42:36:67:e9:31:df:d8:24:36:aa:90:
         a5:4c:24:99:f0:2f:3d:7c:f2:eb:5d:fb:68:69:46:95:02:a3:
         ec:52:84:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----