Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft
File:                     d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft (raw, json)
Hash identifier:          1XkLsafUi/FGJp5AqmADRr05jokAf/lF7PTZIyipKh8=
Subject key identifier:   50:F3:3D:80:F0:D6:12:30:DD:AB:3F:E4:5B:E7:CA:B5:99:4B:5A:9F
Authority key identifier: 77:63:E4:7F:C8:50:AC:C8:FF:DA:06:E3:DA:23:A4:A4:44:C2:D6:FC
Certificate issuer:       /CN=7763e47fc850acc8ffda06e3da23a4a444c2d6fc
Certificate serial:       019769609611CFFA1167C4216C3793823CE5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d2Pkf8hQrMj_2gbj2iOkpETC1vw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft
Manifest number:          07B6
Signing time:             Fri 13 Jun 2025 13:00:26 +0000
Manifest this update:     Fri 13 Jun 2025 13:00:26 +0000
Manifest next update:     Sat 14 Jun 2025 13:00:26 +0000
Files and hashes:         1: d2Pkf8hQrMj_2gbj2iOkpETC1vw.crl (hash: McdAf6jEJxfVq9xM6FZA19cbiSH/XO5diegENvshSRs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d2Pkf8hQrMj_2gbj2iOkpETC1vw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:60:96:11:cf:fa:11:67:c4:21:6c:37:93:82:3c:e5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7763e47fc850acc8ffda06e3da23a4a444c2d6fc
        Validity
            Not Before: Jun 13 13:00:26 2025 GMT
            Not After : Jun 14 13:00:26 2025 GMT
        Subject: CN=50f33d80f0d61230ddab3fe45be7cab5994b5a9f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:c3:e1:b2:96:62:97:b1:8c:e7:32:fc:bc:df:
                    34:7f:41:b4:a2:33:66:65:0f:32:27:7f:4d:ce:ea:
                    18:89:91:8f:c4:ff:21:5a:2f:6f:15:63:8f:c8:00:
                    57:91:45:f7:b7:59:85:b4:21:63:a0:54:25:6d:44:
                    d7:9e:c8:a2:86:5b:80:bc:dd:1c:09:6d:cf:e6:6d:
                    03:85:7a:91:a1:0b:f7:16:4f:24:05:00:c5:73:40:
                    3a:e5:26:cf:d1:36:c5:5c:0f:ac:43:60:2d:11:e2:
                    c0:ba:6f:32:67:d8:81:b3:42:c4:f2:ad:04:96:9c:
                    92:e8:dc:13:80:9b:37:5e:82:cf:97:45:26:04:3a:
                    ff:f3:3e:5c:1e:57:b4:f5:96:3d:1a:a9:a8:96:cd:
                    73:f8:1d:b4:21:7f:85:7a:93:63:93:32:e2:15:0f:
                    4f:3a:b9:87:2d:d8:da:e9:70:30:ad:c5:bf:e7:ae:
                    a3:bc:05:96:11:71:02:6d:2b:92:19:05:90:c2:a4:
                    07:6d:fe:7f:22:ab:fe:31:e8:e0:06:7e:42:79:91:
                    28:d9:01:27:c7:71:fa:f2:1b:9e:83:67:4f:65:37:
                    dc:17:56:e8:56:22:77:34:02:15:a4:8e:da:5e:fe:
                    2e:bd:93:ae:79:a3:57:a7:09:f6:d3:98:1e:55:fe:
                    33:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:F3:3D:80:F0:D6:12:30:DD:AB:3F:E4:5B:E7:CA:B5:99:4B:5A:9F
            X509v3 Authority Key Identifier:
                keyid:77:63:E4:7F:C8:50:AC:C8:FF:DA:06:E3:DA:23:A4:A4:44:C2:D6:FC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2Pkf8hQrMj_2gbj2iOkpETC1vw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/30/aabb5f-72f2-4928-92a9-2ff9d42ee213/1/d2Pkf8hQrMj_2gbj2iOkpETC1vw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:d2:85:d7:3d:ae:25:55:0e:ec:bd:34:ee:30:3a:56:15:5b:
         1b:ad:c2:ae:56:80:3b:59:ba:77:c6:b7:af:4b:c1:44:b3:ba:
         ce:38:c6:39:37:e6:fb:c7:61:82:f4:f7:d6:13:ab:62:04:39:
         d7:0e:3d:a1:ec:5e:b7:22:8f:6c:0d:ab:52:c0:5c:22:b0:96:
         b9:0f:bb:fb:44:94:ae:b1:78:ea:25:c9:ba:e0:51:ac:cc:97:
         72:2e:b9:b7:2d:a1:dd:68:db:6e:37:68:62:eb:a9:1d:2f:a9:
         ab:44:5f:df:1a:02:55:70:18:8d:6c:6f:ab:ca:60:0a:f2:b5:
         b2:ad:83:55:e6:bc:07:a6:6c:d3:88:3e:8c:36:89:cf:36:09:
         f9:dd:55:36:4f:ee:78:68:07:22:ec:5f:09:61:a1:e9:05:84:
         e0:61:27:4a:0d:5f:e3:e0:1e:6f:f3:94:a0:7e:0e:32:b8:3f:
         fe:a5:92:73:96:f9:3b:fa:05:b5:ce:46:80:52:38:62:e2:89:
         a7:fd:df:1e:87:95:46:be:1e:1d:dd:31:ca:ff:31:a5:07:17:
         eb:ff:94:7e:b7:42:a1:f3:74:e3:83:7b:5b:80:ec:7b:51:d4:
         da:a5:30:c8:dd:4b:8b:5a:df:ae:45:8b:6d:ff:42:7a:ad:72:
         09:1b:bc:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----