Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft
File:                     AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft (raw, json)
Hash identifier:          PfaS+WjhqT1BxI8ibsUXMi75yRN+VkZXe2Dsl5wNyAo=
Subject key identifier:   8D:34:91:52:99:3E:B1:F1:69:05:03:75:FA:6A:AE:E5:B9:0B:7B:0F
Authority key identifier: 03:1C:8E:8C:C0:75:C2:D0:43:13:B9:11:D9:3D:61:FE:2A:9A:DE:A2
Certificate issuer:       /CN=031c8e8cc075c2d04313b911d93d61fe2a9adea2
Certificate serial:       01976D3E054E891A1471FB79651184958B1F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/AxyOjMB1wtBDE7kR2T1h_iqa3qI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft
Manifest number:          050E
Signing time:             Sat 14 Jun 2025 07:01:10 +0000
Manifest this update:     Sat 14 Jun 2025 07:01:10 +0000
Manifest next update:     Sun 15 Jun 2025 07:01:10 +0000
Files and hashes:         1: AxyOjMB1wtBDE7kR2T1h_iqa3qI.crl (hash: fSwOTgn6b4F6X4E9VfluFga1soWe0OWdAtRAGHxv+Ts=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/AxyOjMB1wtBDE7kR2T1h_iqa3qI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:3e:05:4e:89:1a:14:71:fb:79:65:11:84:95:8b:1f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=031c8e8cc075c2d04313b911d93d61fe2a9adea2
        Validity
            Not Before: Jun 14 07:01:10 2025 GMT
            Not After : Jun 15 07:01:10 2025 GMT
        Subject: CN=8d349152993eb1f169050375fa6aaee5b90b7b0f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:1a:a6:d3:ce:e2:68:5c:e6:60:06:5b:35:94:
                    db:b7:bd:bd:3f:fa:d0:24:db:55:f8:97:ad:b9:24:
                    85:7c:47:30:2b:78:da:05:fb:ac:eb:f3:2d:ba:64:
                    4e:32:d0:dc:47:8e:b5:63:39:1f:7b:74:a1:c1:58:
                    7c:96:eb:e8:69:e4:b9:89:17:b7:2b:b5:aa:99:e1:
                    a1:0d:df:41:70:3e:f3:a1:47:85:e9:19:b8:9f:f7:
                    a6:25:7f:59:80:4c:8d:8b:99:ba:57:61:da:4f:28:
                    a6:68:9e:2c:e7:09:34:dc:b3:7d:0f:e5:9b:f9:b5:
                    20:dd:bc:b6:9d:40:83:2c:00:18:0d:d2:b3:41:d9:
                    b1:2d:8d:15:9d:28:49:6a:12:be:10:94:37:0b:b6:
                    c9:8e:c9:be:a0:eb:a3:c7:e7:2a:76:2d:ab:0a:6a:
                    4e:4b:e3:08:74:cd:4f:fc:e8:02:fe:16:fc:8b:70:
                    2f:04:e1:3d:67:c7:f0:71:86:61:00:08:67:3d:33:
                    4a:d3:0c:01:e3:d3:ac:ad:a8:65:60:f5:df:7d:75:
                    97:1c:c5:f9:30:54:a1:99:c8:82:d9:d0:dd:30:3f:
                    ee:f2:bc:d2:01:86:47:25:86:15:b6:ae:84:73:25:
                    af:c2:62:b6:8a:bb:b8:9f:f8:13:3c:f8:40:28:e7:
                    50:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:34:91:52:99:3E:B1:F1:69:05:03:75:FA:6A:AE:E5:B9:0B:7B:0F
            X509v3 Authority Key Identifier:
                keyid:03:1C:8E:8C:C0:75:C2:D0:43:13:B9:11:D9:3D:61:FE:2A:9A:DE:A2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AxyOjMB1wtBDE7kR2T1h_iqa3qI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/75213d-01a4-4b61-b594-6268cedabd84/1/AxyOjMB1wtBDE7kR2T1h_iqa3qI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:22:e2:20:50:1f:3a:51:b8:f3:19:9b:c4:9c:b2:93:22:fe:
         f3:58:77:af:77:7b:f3:23:42:de:d0:1a:1f:c8:4f:b9:4d:95:
         fc:75:6e:f2:32:76:c8:a3:f2:ab:92:8e:8f:0d:ae:a9:84:9f:
         fa:75:ed:c3:8e:82:c1:67:53:04:8a:21:c9:4f:60:f5:a4:a4:
         41:04:38:71:49:e4:06:8a:3a:bd:31:3c:76:5b:d8:5d:aa:6a:
         cb:70:08:d5:38:1d:ca:57:c5:ea:a9:11:5d:2e:b7:15:fc:0f:
         af:86:65:60:7d:be:3c:3b:ca:15:0d:c0:e3:02:19:a9:14:11:
         13:0a:f5:b8:3a:fb:52:e3:cf:e1:0e:16:f6:4d:87:97:4a:2f:
         ae:63:32:a7:20:44:ea:80:f1:17:61:f2:9d:00:9b:37:8d:2d:
         a5:56:20:d9:6b:66:a2:13:aa:9e:60:d1:5a:1a:f9:15:c0:c3:
         91:60:dd:65:8a:44:b5:ce:0c:75:2c:a0:2c:42:01:6f:80:06:
         01:5f:ee:c5:2f:a2:d9:16:19:e9:64:db:7a:15:2f:7a:da:ec:
         0c:a7:47:d4:c6:d8:c7:ab:b9:56:5d:ae:fb:34:6e:19:b9:f0:
         53:ca:b9:94:f1:5c:19:3e:62:0a:25:8c:9d:00:30:21:74:05:
         2e:70:a8:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----