Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft
File:                     Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft (raw, json)
Hash identifier:          OGtUllsTES46G29YSQfSfCyYxmblkN+7uwFghodn3Is=
Subject key identifier:   30:B5:07:4C:0B:8D:32:FE:18:34:E3:EC:0D:D4:DE:FE:38:0B:BA:8D
Authority key identifier: 49:BA:74:C8:CB:E1:E2:7F:AC:A5:C6:7E:89:D3:F6:23:C1:F0:9A:5E
Certificate issuer:       /CN=49ba74c8cbe1e27faca5c67e89d3f623c1f09a5e
Certificate serial:       019768BBDA680E8BF9BCB8BE9D3008E11371
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Sbp0yMvh4n-spcZ-idP2I8Hwml4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft
Manifest number:          1022
Signing time:             Fri 13 Jun 2025 10:00:30 +0000
Manifest this update:     Fri 13 Jun 2025 10:00:30 +0000
Manifest next update:     Sat 14 Jun 2025 10:00:30 +0000
Files and hashes:         1: Sbp0yMvh4n-spcZ-idP2I8Hwml4.crl (hash: OZdPZSanFliwF5riEjEf+fO5qEvwOUK7/GQJksvpyAM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Sbp0yMvh4n-spcZ-idP2I8Hwml4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 10:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:bb:da:68:0e:8b:f9:bc:b8:be:9d:30:08:e1:13:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=49ba74c8cbe1e27faca5c67e89d3f623c1f09a5e
        Validity
            Not Before: Jun 13 10:00:30 2025 GMT
            Not After : Jun 14 10:00:30 2025 GMT
        Subject: CN=30b5074c0b8d32fe1834e3ec0dd4defe380bba8d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:87:1b:58:01:a7:60:9c:b1:17:79:1f:43:81:
                    8d:b2:5b:92:1c:f9:4b:bc:e0:21:10:44:1c:28:7f:
                    a9:94:a3:38:a2:81:a0:ee:15:30:85:f9:db:e1:8f:
                    4c:a8:99:a3:bb:d7:74:b3:e0:dc:6f:2f:55:98:35:
                    78:fa:8a:23:41:bc:d3:60:19:45:be:90:37:a1:cc:
                    ff:6a:b6:ea:54:fc:7e:eb:fa:2a:91:eb:37:30:de:
                    31:ef:5a:fb:ac:e2:f4:c4:c1:87:0a:b6:a0:fb:ec:
                    a4:f8:9f:26:7b:17:87:37:c4:ec:0f:eb:9b:9b:08:
                    17:e1:73:a1:62:5c:24:d3:c9:73:b5:e4:1c:92:06:
                    9c:2b:a6:f7:44:03:15:df:da:b9:c1:99:38:44:e2:
                    8a:7d:cb:63:2a:61:da:dd:bf:01:ad:bf:f5:7e:bf:
                    1b:7c:2f:16:f8:8b:8c:33:13:3e:b5:a5:09:81:6e:
                    21:63:19:34:82:e3:88:bc:1b:2c:e7:e3:30:12:11:
                    36:b7:03:26:95:d0:d5:37:79:0e:f8:78:8f:4c:4d:
                    fb:f1:51:7b:24:3c:a0:b8:b7:d3:09:b9:a3:79:8a:
                    04:e2:c3:ba:3a:3f:3d:fc:99:19:77:a6:24:fe:d5:
                    25:5a:3f:be:94:55:53:3a:b2:e2:b5:49:0b:b0:c3:
                    56:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                30:B5:07:4C:0B:8D:32:FE:18:34:E3:EC:0D:D4:DE:FE:38:0B:BA:8D
            X509v3 Authority Key Identifier:
                keyid:49:BA:74:C8:CB:E1:E2:7F:AC:A5:C6:7E:89:D3:F6:23:C1:F0:9A:5E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sbp0yMvh4n-spcZ-idP2I8Hwml4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/37/e736fa-81c8-475f-a73e-2bb0e1c0e3ef/1/Sbp0yMvh4n-spcZ-idP2I8Hwml4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         58:2a:ed:de:23:5a:c0:1c:17:21:8e:75:8b:93:89:bf:41:38:
         2b:e9:ba:e2:2d:8f:a9:cc:be:5a:c9:f1:9e:5e:68:39:f4:98:
         b6:25:ed:f3:76:83:9b:fe:cf:98:34:c2:b8:85:d0:ab:4a:84:
         99:7a:87:3d:07:24:db:3e:ff:ee:74:9c:a9:15:e0:98:44:0d:
         72:d5:7d:54:a6:a4:10:b6:60:76:f3:5b:36:85:08:b9:26:59:
         9c:af:bd:83:d2:79:7e:c0:06:63:eb:56:d0:b6:9c:8e:d3:cd:
         1a:e7:a6:d1:2c:9b:47:a6:7e:aa:ca:03:31:00:0f:8c:3b:92:
         f9:4d:0a:f2:00:c1:a5:f2:99:d8:b6:3c:23:3b:65:90:0d:67:
         59:7c:7e:c8:ef:b4:7f:c7:a4:63:12:8b:a9:f7:f1:79:99:35:
         bf:fd:a1:ed:99:d8:53:0e:37:54:74:e4:9e:29:a5:39:a8:f1:
         84:c5:aa:db:80:82:9e:2c:a8:09:e1:27:6c:1f:83:83:17:b6:
         c5:01:a8:6b:61:53:4d:a3:1f:c6:d3:aa:9e:17:13:04:c9:41:
         99:be:7d:00:fa:a1:0e:e8:e0:a9:07:30:2f:f7:a2:05:7e:ec:
         d6:0b:d3:8b:cb:72:9a:c6:17:bd:0e:54:c1:bc:0d:fc:21:a2:
         01:63:0a:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----