Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
File:                     X06OdhPaoX6FqhB4yOwlXPGNQio.mft (raw, json)
Hash identifier:          qCPVCM3zyKgGXcwwbF6LLF7DKQe/HBZy4ESQK4jWtcM=
Subject key identifier:   75:CD:F2:16:53:98:D3:8B:93:82:D0:71:6D:0A:C9:E6:60:7C:AC:70
Authority key identifier: 5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
Certificate issuer:       /CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Certificate serial:       0197711ABE2D765AE5C6C432EF5A0F2DEC59
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
Manifest number:          0CBC
Signing time:             Sun 15 Jun 2025 01:01:07 +0000
Manifest this update:     Sun 15 Jun 2025 01:01:07 +0000
Manifest next update:     Mon 16 Jun 2025 01:01:07 +0000
Files and hashes:         1: X06OdhPaoX6FqhB4yOwlXPGNQio.crl (hash: jADISx/YLHkcHei6IfBO2jX5lW2nEAqzG85WIwmcDWc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 01:01:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:71:1a:be:2d:76:5a:e5:c6:c4:32:ef:5a:0f:2d:ec:59
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
        Validity
            Not Before: Jun 15 01:01:07 2025 GMT
            Not After : Jun 16 01:01:07 2025 GMT
        Subject: CN=75cdf2165398d38b9382d0716d0ac9e6607cac70
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:5b:2a:52:03:80:57:73:eb:46:04:55:04:0d:
                    1e:3c:e8:76:7e:b5:74:91:50:2a:05:31:f9:c1:a1:
                    c7:c2:af:38:f7:1a:a9:5e:d6:60:e5:8b:51:07:40:
                    aa:95:d7:42:4c:a4:f5:67:4d:85:2d:bd:dc:16:f2:
                    06:63:1a:a5:80:fc:49:86:ae:fc:ce:c3:ac:a0:97:
                    84:ff:35:ec:97:be:94:a1:5a:80:46:af:fb:74:7b:
                    e4:47:20:31:77:ae:be:4b:62:a3:fa:29:ce:a7:62:
                    df:d4:14:4b:e4:bc:5a:20:80:e5:43:c7:cb:8e:68:
                    04:1d:b0:93:41:2d:e8:08:e5:32:3a:5d:98:23:b7:
                    82:98:d3:36:7b:a0:fd:99:af:cf:20:08:f6:51:67:
                    c6:0d:e8:f9:fa:75:e9:35:fc:da:56:52:89:bb:d8:
                    6f:b9:b5:0e:a9:35:59:68:e7:02:ff:69:d7:24:05:
                    04:6b:62:d9:02:cb:d1:75:86:74:a7:23:d7:11:be:
                    42:36:98:89:73:3d:62:dd:2f:f6:d6:07:ee:d2:50:
                    d2:ff:cb:39:bf:76:ed:71:8d:68:d6:05:02:ce:2d:
                    db:f7:1b:a6:89:9f:b5:9c:89:fc:9a:a5:50:e3:1d:
                    02:ca:ec:e1:89:31:bd:0f:19:2c:9a:91:05:cc:23:
                    6e:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:CD:F2:16:53:98:D3:8B:93:82:D0:71:6D:0A:C9:E6:60:7C:AC:70
            X509v3 Authority Key Identifier:
                keyid:5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:fa:99:5d:5d:27:47:0f:87:45:18:14:d9:35:f2:ef:40:52:
         67:95:9a:13:93:35:ef:01:ee:62:2d:8f:bb:58:36:ce:4a:58:
         05:6f:50:db:a7:af:5e:d3:2a:20:57:07:de:f5:7c:cd:84:9c:
         90:24:8f:28:5d:8b:c8:61:6f:3f:70:3b:e7:5b:93:e5:fa:47:
         47:cd:de:9c:8c:56:93:9d:bc:65:8e:97:2e:14:59:25:14:45:
         ca:56:6b:9e:56:3e:1e:f2:bd:58:d5:f0:27:fb:fc:a2:87:1a:
         aa:39:33:ca:48:10:81:67:12:ce:ac:f2:c2:ac:30:17:b1:88:
         0f:f5:87:df:4f:7e:89:4e:a1:f5:d8:a0:c0:3d:6a:74:c3:6e:
         71:45:e5:e6:03:a5:d9:29:6c:2f:ba:12:d2:e5:5e:86:77:c0:
         e8:35:44:44:0d:6d:cb:7c:03:cc:8f:9f:ac:11:aa:72:46:46:
         ec:18:76:1b:71:9d:a5:91:69:72:0d:55:3b:28:8c:2e:16:8a:
         d3:1a:c4:43:cd:ec:df:b7:7a:47:49:4b:c9:87:a5:bd:fd:67:
         19:83:57:dc:e0:c1:8d:49:a6:78:60:f4:f3:56:ea:5e:45:08:
         78:fb:2b:22:ea:62:44:6c:70:d5:1c:01:65:26:d6:c0:5e:5b:
         91:2e:ec:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----