Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft
File:                     Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft (raw, json)
Hash identifier:          ghFub3MmVtITVQv6PXfV7HhWQX0B1ag4j0iXU27e58A=
Subject key identifier:   39:B9:76:F8:B4:11:86:57:5B:AA:CA:FB:F3:B3:61:BB:F9:4C:7F:60
Authority key identifier: 63:A8:CA:16:66:20:6D:2C:F1:2B:50:78:72:EA:D0:F5:A7:93:D0:E0
Certificate issuer:       /CN=63a8ca1666206d2cf12b507872ead0f5a793d0e0
Certificate serial:       01976A05FE8DCC2F6494403391ADBC259047
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Y6jKFmYgbSzxK1B4curQ9aeT0OA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft
Manifest number:          0718
Signing time:             Fri 13 Jun 2025 16:01:06 +0000
Manifest this update:     Fri 13 Jun 2025 16:01:06 +0000
Manifest next update:     Sat 14 Jun 2025 16:01:06 +0000
Files and hashes:         1: Y6jKFmYgbSzxK1B4curQ9aeT0OA.crl (hash: WbJ3HpF6AAySZ0gBW4i7iuJIubwqT7GTb5E90DAujwc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Y6jKFmYgbSzxK1B4curQ9aeT0OA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6a:05:fe:8d:cc:2f:64:94:40:33:91:ad:bc:25:90:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=63a8ca1666206d2cf12b507872ead0f5a793d0e0
        Validity
            Not Before: Jun 13 16:01:06 2025 GMT
            Not After : Jun 14 16:01:06 2025 GMT
        Subject: CN=39b976f8b41186575baacafbf3b361bbf94c7f60
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:d4:52:58:f8:21:04:83:21:bc:ab:1d:8f:7b:
                    24:c8:3e:93:8c:12:a4:c1:7a:59:05:2b:06:b3:54:
                    12:71:56:15:b9:50:b9:9f:e5:84:de:87:bb:ba:c9:
                    bd:c1:cc:31:2a:f2:de:41:61:39:4c:7f:c2:12:2d:
                    85:89:88:c4:66:29:58:e3:43:c3:1d:99:f2:7e:3c:
                    43:bc:1f:1b:6c:85:34:ba:bf:0f:7c:93:0f:c4:a5:
                    f9:90:5e:1f:bf:12:f3:3d:a3:67:96:99:c9:b3:d0:
                    68:d5:3a:08:be:f5:e4:0e:ec:02:a2:b8:76:d1:a6:
                    57:a4:51:0b:df:6c:af:4a:4a:31:fd:7c:53:b2:25:
                    d4:f8:d0:b1:57:8c:1a:43:5d:e4:57:bb:24:7f:41:
                    53:65:3b:c5:5b:62:94:45:bb:3a:76:67:7a:b8:a7:
                    4a:96:3e:46:da:8c:c1:69:19:e0:2c:a3:24:cb:10:
                    03:2d:1c:d8:a1:28:27:c6:6f:94:2b:b5:0b:0a:b3:
                    f6:bd:b1:43:71:a6:8d:ce:4a:7e:9a:d1:47:da:1d:
                    1e:32:ec:ff:af:96:6e:43:a9:8f:fe:89:1f:e3:b0:
                    0e:30:36:95:69:c7:1a:bd:4f:24:39:42:3d:4e:2d:
                    ae:0c:ca:95:14:33:7b:ca:e0:a4:df:78:a8:f1:65:
                    74:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:B9:76:F8:B4:11:86:57:5B:AA:CA:FB:F3:B3:61:BB:F9:4C:7F:60
            X509v3 Authority Key Identifier:
                keyid:63:A8:CA:16:66:20:6D:2C:F1:2B:50:78:72:EA:D0:F5:A7:93:D0:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y6jKFmYgbSzxK1B4curQ9aeT0OA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:96:cc:bd:67:f9:cf:f4:14:6e:c2:c6:bc:a5:8e:df:dc:ac:
         5a:42:1d:f1:bd:7a:fd:11:5f:2c:17:d3:c2:23:41:e7:24:eb:
         81:ac:d6:b7:17:8e:3f:b4:8a:00:cf:ec:ca:b5:7e:d5:04:d7:
         c7:bc:a1:47:99:e6:b1:5b:e8:a8:53:9e:7a:7c:ec:a0:b5:25:
         75:97:58:f3:cd:c2:cd:82:d3:ec:ec:cd:0a:e5:49:2b:ce:fb:
         6d:f2:5c:a0:d4:1b:51:3e:55:e0:d6:47:06:cb:5f:98:92:ce:
         06:d5:18:cd:95:28:01:0a:3c:cc:b5:7a:8c:ae:02:86:c7:71:
         05:89:a5:d8:62:17:ca:b0:0a:2b:93:b2:aa:d2:c2:04:e4:6f:
         34:46:01:e2:3c:81:82:4d:1d:5c:c8:6a:44:28:aa:0d:8d:87:
         9a:1a:3d:54:5a:dc:a6:73:e9:ce:ed:8f:71:b3:27:f5:c5:c7:
         ad:f7:7b:0f:6c:ce:81:0a:a0:6a:21:8c:c2:07:93:30:5d:25:
         09:3f:3c:2a:86:00:11:80:6d:2f:1d:6d:be:e9:66:f3:eb:6b:
         0c:86:c9:e6:72:bc:d6:37:f6:ea:eb:68:90:96:ec:c0:d1:fc:
         4f:72:38:ca:98:eb:3b:f4:bf:6c:1c:c0:cf:46:b9:30:ef:ed:
         04:3a:a0:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----