Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
File:                     qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft (raw, json)
Hash identifier:          YIo9plcweCIQf3NzgArfA1fpsrWePd5Mwutid9xN+Bo=
Subject key identifier:   E0:A5:8B:4F:D0:4E:3F:72:88:EB:B9:8D:CD:27:A8:07:7A:F0:2B:46
Authority key identifier: AA:7C:64:35:A8:50:F0:C5:E9:9A:9C:E0:51:F3:4B:DB:53:22:2F:04
Certificate issuer:       /CN=aa7c6435a850f0c5e99a9ce051f34bdb53222f04
Certificate serial:       01978A35303B528F403B3EFC898E10967197
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qnxkNahQ8MXpmpzgUfNL21MiLwQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
Manifest number:          063A
Signing time:             Thu 19 Jun 2025 22:00:30 +0000
Manifest this update:     Thu 19 Jun 2025 22:00:30 +0000
Manifest next update:     Fri 20 Jun 2025 22:00:30 +0000
Files and hashes:         1: qnxkNahQ8MXpmpzgUfNL21MiLwQ.crl (hash: zrlrfj0lAwdd3gj4tdGv0C+NutqgV9m65DsIpHFHNCk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qnxkNahQ8MXpmpzgUfNL21MiLwQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 20 Jun 2025 15:30:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:8a:35:30:3b:52:8f:40:3b:3e:fc:89:8e:10:96:71:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aa7c6435a850f0c5e99a9ce051f34bdb53222f04
        Validity
            Not Before: Jun 19 22:00:30 2025 GMT
            Not After : Jun 20 22:00:30 2025 GMT
        Subject: CN=e0a58b4fd04e3f7288ebb98dcd27a8077af02b46
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:c0:10:01:47:37:0e:ec:45:1e:77:5a:ed:89:
                    a8:5e:31:f6:fa:5d:ce:fa:a5:85:ea:7b:3c:04:74:
                    36:5c:2f:f4:de:73:96:df:e1:ab:52:fa:0d:16:89:
                    5c:7d:f4:86:41:60:96:73:c4:9d:40:76:01:59:3d:
                    85:89:f5:a4:f1:fd:e7:a9:ee:47:96:6a:57:d1:60:
                    50:cd:6d:d9:83:4b:47:be:94:51:25:3d:66:09:f8:
                    53:fe:a2:30:0e:a4:80:6d:2d:e7:26:dd:18:8c:40:
                    d0:d7:15:b4:a6:d2:d8:63:d3:55:ff:af:d3:12:20:
                    a5:7a:2b:12:11:59:b0:b4:9a:64:21:5d:ab:d3:5f:
                    af:f1:ec:db:43:79:f7:09:75:54:82:32:e3:af:71:
                    b3:b8:d6:65:50:fd:0c:c3:e4:13:45:91:3a:b8:4f:
                    99:ee:2f:d9:99:45:b9:61:7c:2a:29:5b:d0:d9:a8:
                    97:72:a3:e2:71:67:f8:bb:5f:b0:bc:26:90:a8:50:
                    0e:4a:ac:3b:3f:8f:52:ee:3d:42:ef:3d:51:a7:b4:
                    9c:5c:4c:78:96:5c:f1:67:bf:d5:7f:31:de:db:ff:
                    e6:06:53:45:d1:13:2c:a4:26:51:92:8a:73:8c:dd:
                    1a:16:f6:28:2c:e3:8d:a4:ce:4e:77:eb:ab:42:47:
                    f7:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:A5:8B:4F:D0:4E:3F:72:88:EB:B9:8D:CD:27:A8:07:7A:F0:2B:46
            X509v3 Authority Key Identifier:
                keyid:AA:7C:64:35:A8:50:F0:C5:E9:9A:9C:E0:51:F3:4B:DB:53:22:2F:04

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnxkNahQ8MXpmpzgUfNL21MiLwQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/4d9093-fb6d-47f6-8acd-c780ed612366/1/qnxkNahQ8MXpmpzgUfNL21MiLwQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:d1:6c:b6:0f:ac:f3:0b:e3:b7:e4:a1:ff:73:55:d7:c8:6f:
         e4:b3:4e:ce:15:e3:04:cf:34:5a:dc:0b:18:21:cd:8f:55:15:
         d7:42:7f:10:cb:a2:b7:ec:08:49:46:a5:0f:8a:ba:1d:25:20:
         8d:12:3f:60:de:36:e0:3a:d2:de:c4:7b:bf:c0:fc:86:d9:1a:
         15:b9:10:ea:cf:79:e8:52:1b:0e:dd:3a:d9:a4:b1:87:33:40:
         1b:1a:8f:ae:6f:c0:1e:5e:26:c5:81:84:5e:0b:08:db:a5:0c:
         13:67:d9:8a:c8:67:74:28:92:86:6a:f8:a0:71:96:ed:2d:bf:
         f7:3b:64:12:30:27:34:a5:cc:e8:6f:df:8d:82:e7:7d:da:c4:
         b6:75:58:a6:c0:f9:73:24:d5:0d:70:d6:fe:a6:1e:9d:36:ba:
         e5:33:aa:69:db:23:f9:49:39:38:1a:2e:4a:51:0b:77:73:c2:
         f3:81:46:a7:58:d2:03:81:cd:76:3b:90:91:54:91:50:a0:d8:
         63:e2:86:e6:6a:c7:c1:47:b7:b2:54:e1:d0:f1:23:23:19:16:
         4a:94:f2:fb:86:24:e7:a8:09:65:4a:f8:a5:f8:89:1b:08:88:
         0c:e2:aa:a7:c7:bc:55:c5:a8:df:ee:c7:be:6e:75:8d:94:4c:
         f6:0d:d9:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----