Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/6fc5cf-998b-4e3d-9dfa-1c3864a7c2de/1/vWCuPD0yPaOUps4F9rI9fPTdE0g.mft
File:                     vWCuPD0yPaOUps4F9rI9fPTdE0g.mft (raw, json)
Hash identifier:          qxqfTQt97Ap0a4ec6ELcLmkeBVAkbINWvJJk887dOcA=
Subject key identifier:   B5:7B:6E:1C:E9:90:5E:36:B9:13:0B:D0:9D:F9:94:9A:A3:4E:0E:0B
Authority key identifier: BD:60:AE:3C:3D:32:3D:A3:94:A6:CE:05:F6:B2:3D:7C:F4:DD:13:48
Certificate issuer:       /CN=bd60ae3c3d323da394a6ce05f6b23d7cf4dd1348
Certificate serial:       019779AFF11753D0EF5401C40F9884A6428B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vWCuPD0yPaOUps4F9rI9fPTdE0g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/19/6fc5cf-998b-4e3d-9dfa-1c3864a7c2de/1/vWCuPD0yPaOUps4F9rI9fPTdE0g.mft
Manifest number:          0F8D
Signing time:             Mon 16 Jun 2025 17:01:03 +0000
Manifest this update:     Mon 16 Jun 2025 17:01:03 +0000
Manifest next update:     Tue 17 Jun 2025 17:01:03 +0000
Files and hashes:         1: vWCuPD0yPaOUps4F9rI9fPTdE0g.crl (hash: FqIaLQIx6hytIWmet6kJLg/W54QdbQXd+8zgv7s82Hc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/19/6fc5cf-998b-4e3d-9dfa-1c3864a7c2de/1/vWCuPD0yPaOUps4F9rI9fPTdE0g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/19/6fc5cf-998b-4e3d-9dfa-1c3864a7c2de/1/vWCuPD0yPaOUps4F9rI9fPTdE0g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vWCuPD0yPaOUps4F9rI9fPTdE0g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Jun 2025 14:25:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:79:af:f1:17:53:d0:ef:54:01:c4:0f:98:84:a6:42:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bd60ae3c3d323da394a6ce05f6b23d7cf4dd1348
        Validity
            Not Before: Jun 16 17:01:03 2025 GMT
            Not After : Jun 17 17:01:03 2025 GMT
        Subject: CN=b57b6e1ce9905e36b9130bd09df9949aa34e0e0b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:2d:df:bc:28:4a:60:81:25:fd:2d:70:9c:17:
                    3f:81:bb:ee:46:e6:a3:e6:8d:64:46:52:82:90:46:
                    8c:c6:d5:fb:ad:82:52:8f:71:a5:ab:e4:b3:ad:83:
                    ae:8c:e8:04:d3:85:d6:f4:ab:12:80:a7:e1:94:fc:
                    ca:31:1d:1e:cc:b6:76:9b:a8:2d:ad:cc:cf:dd:af:
                    d3:50:50:22:c0:e3:4b:79:fc:d0:2a:7d:22:9a:1e:
                    20:14:22:91:47:51:8f:31:2d:41:3b:de:8a:db:66:
                    b0:f9:eb:78:7a:4c:e0:61:4d:41:00:cc:06:e1:30:
                    d6:0a:2b:6d:e6:de:3e:53:9b:2a:46:ac:ca:ba:1c:
                    a0:42:1d:f8:68:45:69:39:70:2d:28:bb:83:f7:f0:
                    14:b1:3f:11:bf:a6:f3:0c:fb:c3:db:9e:35:34:58:
                    f6:e7:2b:f2:fb:96:7c:ee:a1:5c:72:d0:bc:c7:d8:
                    10:1b:55:b0:69:4a:68:b0:49:f9:75:b5:d4:c7:4f:
                    7c:d3:35:93:62:d8:40:b7:18:e5:23:3c:48:f3:62:
                    d2:f3:24:54:32:5b:f9:23:e0:70:7b:fd:be:4b:9e:
                    ca:42:f8:e7:6b:4b:34:fc:5e:40:06:69:5e:05:75:
                    d8:e6:e2:ff:31:43:42:53:fc:d9:9c:ea:f0:48:92:
                    d7:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:7B:6E:1C:E9:90:5E:36:B9:13:0B:D0:9D:F9:94:9A:A3:4E:0E:0B
            X509v3 Authority Key Identifier:
                keyid:BD:60:AE:3C:3D:32:3D:A3:94:A6:CE:05:F6:B2:3D:7C:F4:DD:13:48

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vWCuPD0yPaOUps4F9rI9fPTdE0g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6fc5cf-998b-4e3d-9dfa-1c3864a7c2de/1/vWCuPD0yPaOUps4F9rI9fPTdE0g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6fc5cf-998b-4e3d-9dfa-1c3864a7c2de/1/vWCuPD0yPaOUps4F9rI9fPTdE0g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:5c:5b:eb:05:5d:bb:8e:cd:a2:d8:a1:ed:2b:7a:83:dd:91:
         9d:90:17:49:a9:f7:20:8e:f5:16:92:17:f6:cf:83:f1:5e:74:
         3a:88:44:b8:be:83:6e:e5:38:9d:3a:a4:c4:12:71:b2:9b:1b:
         6f:65:16:f8:e4:30:ac:62:58:a1:d8:23:8e:f6:29:ec:c7:0a:
         ad:71:0a:6f:58:7e:8b:2e:03:4d:57:ed:c1:10:05:e1:3f:9a:
         c1:a3:f9:bf:41:d5:72:fe:1c:2f:48:ac:77:b7:ca:57:af:c0:
         3a:8f:43:d3:73:d0:75:c6:41:d1:d2:89:6d:a6:a4:24:b9:0c:
         42:0e:30:e5:db:11:17:cb:fc:61:14:f6:86:e9:58:da:84:34:
         ab:ca:4f:b4:09:94:03:1f:eb:be:ca:75:57:e6:80:6c:3a:33:
         42:52:64:98:fe:c0:fd:8c:ec:a7:b9:e3:86:3b:15:9a:b5:55:
         12:3b:fd:a5:9b:de:a0:aa:08:30:42:f6:b9:c0:d2:ad:5e:61:
         3f:67:a7:92:90:8d:79:be:53:f5:ad:ef:11:00:fe:b0:c8:0c:
         91:9e:76:08:d0:19:57:b2:df:76:c7:28:3c:3e:a2:8c:74:e1:
         26:13:83:86:67:30:e6:27:a7:c3:08:22:ed:44:f0:b6:2c:47:
         df:28:1c:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----