Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
File:                     7bKno-y66qV0GCMdsLYkq797pkU.mft (raw, json)
Hash identifier:          htGUd7/5i2esh+A8UVy/I39QlpUAv77lVtp7+4Z3rs0=
Subject key identifier:   3D:17:82:0C:66:76:8D:1A:3B:2B:69:B8:75:D5:97:54:4A:B5:95:DF
Authority key identifier: ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45
Certificate issuer:       /CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
Certificate serial:       019769CE5E476DB42D7E4AE915B09E6470AA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
Manifest number:          1589
Signing time:             Fri 13 Jun 2025 15:00:21 +0000
Manifest this update:     Fri 13 Jun 2025 15:00:21 +0000
Manifest next update:     Sat 14 Jun 2025 15:00:21 +0000
Files and hashes:         1: 7bKno-y66qV0GCMdsLYkq797pkU.crl (hash: 1iJVyGpwe6Rc2dr33tbyet9SzjHLaffw5bPQw6nrKAo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:ce:5e:47:6d:b4:2d:7e:4a:e9:15:b0:9e:64:70:aa
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=edb2a7a3ecbaeaa57418231db0b624abbf7ba645
        Validity
            Not Before: Jun 13 15:00:21 2025 GMT
            Not After : Jun 14 15:00:21 2025 GMT
        Subject: CN=3d17820c66768d1a3b2b69b875d597544ab595df
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:a0:69:4e:90:f4:99:e0:7b:0b:5a:9d:e0:b1:
                    85:da:d4:15:be:20:7e:c3:2f:f0:12:de:23:1c:c4:
                    24:80:b0:4f:bf:65:bf:b4:f7:44:26:c0:ef:49:31:
                    81:62:b5:72:12:16:ba:de:a9:49:34:3b:55:fa:85:
                    e1:12:4a:93:12:a0:33:7f:2c:cf:6e:a9:69:b6:2b:
                    4f:8d:76:97:ce:fa:d4:49:d7:88:b3:e2:2e:61:34:
                    fe:9e:43:6b:00:f8:d9:88:92:90:b9:35:13:c2:8b:
                    6a:4d:fb:42:21:c3:7e:9e:15:4f:6c:4d:c8:96:3f:
                    52:d8:ce:25:9a:8a:be:5d:c0:2d:f5:18:e5:df:6d:
                    9c:f2:0b:a0:17:31:8d:c0:2f:68:e6:39:e2:e9:45:
                    96:36:a8:4d:c9:bc:c6:37:6c:19:c1:db:d1:bd:18:
                    35:05:57:65:25:70:80:0c:01:fc:46:f8:f1:bc:eb:
                    67:91:04:73:35:60:2b:10:8a:c4:33:65:f9:72:bc:
                    48:f6:b2:29:b1:e9:5b:46:8b:43:45:6b:92:6c:7d:
                    37:cc:b1:02:f7:0b:32:b9:1c:86:52:10:f2:b2:87:
                    ef:5b:02:85:0a:8e:e1:f9:73:b9:9c:d8:7a:1a:27:
                    c7:5a:94:fd:d8:22:31:22:d6:05:b9:37:02:d2:7e:
                    d4:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:17:82:0C:66:76:8D:1A:3B:2B:69:B8:75:D5:97:54:4A:B5:95:DF
            X509v3 Authority Key Identifier:
                keyid:ED:B2:A7:A3:EC:BA:EA:A5:74:18:23:1D:B0:B6:24:AB:BF:7B:A6:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bKno-y66qV0GCMdsLYkq797pkU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/43ed1c-ff50-42e0-b7d4-af254ce3fe69/1/7bKno-y66qV0GCMdsLYkq797pkU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:57:59:41:39:ab:3c:05:31:ff:73:b9:bf:78:2e:0f:d0:1d:
         cb:24:1f:1e:72:25:9e:dd:db:7c:45:9a:04:df:36:73:1d:f3:
         31:c7:e7:fa:ef:9c:12:47:f9:50:14:81:38:a5:fe:39:1f:17:
         32:f7:f5:77:3a:60:f7:28:a9:a6:92:88:55:33:c4:0a:60:ff:
         8c:a1:83:2d:bf:84:b4:75:80:64:4c:17:c6:96:b7:b1:5f:f6:
         f2:59:ee:c7:1c:b1:97:94:d4:a9:f5:a6:fa:ec:4f:4e:7c:b0:
         81:6b:3c:0a:7c:15:aa:af:52:e0:38:4f:18:25:ee:a0:98:1c:
         b9:70:c0:03:df:7b:ee:d1:bb:f6:e7:8b:e9:b4:00:41:af:a2:
         ea:99:3d:06:83:50:3c:26:12:45:69:1a:17:78:bf:11:7a:2a:
         7d:0a:a9:2b:e5:01:b9:bc:47:39:12:2c:47:72:56:05:eb:45:
         cb:a6:48:06:dc:42:c9:b4:c7:a8:9f:54:c2:74:2b:db:4f:ea:
         96:cc:5e:ae:6f:e4:8d:c0:4e:9e:1d:ea:93:e2:0d:bd:48:9c:
         00:4b:4d:93:f9:08:bb:1d:0c:a9:34:28:33:10:34:7a:5d:2e:
         4f:5c:12:84:bf:59:86:66:a2:e5:e6:89:0b:fd:52:d3:92:8b:
         52:64:a6:fe
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpzl5HbbQtfkrpFbCeZHCqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkYjJhN2EzZWNiYWVhYTU3NDE4MjMxZGIwYjYyNGFiYmY3
YmE2NDUwHhcNMjUwNjEzMTUwMDIxWhcNMjUwNjE0MTUwMDIxWjAzMTEwLwYDVQQD
EygzZDE3ODIwYzY2NzY4ZDFhM2IyYjY5Yjg3NWQ1OTc1NDRhYjU5NWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzaBpTpD0meB7C1qd4LGF2tQVviB+
wy/wEt4jHMQkgLBPv2W/tPdEJsDvSTGBYrVyEha63qlJNDtV+oXhEkqTEqAzfyzP
bqlptitPjXaXzvrUSdeIs+IuYTT+nkNrAPjZiJKQuTUTwotqTftCIcN+nhVPbE3I
lj9S2M4lmoq+XcAt9Rjl322c8gugFzGNwC9o5jni6UWWNqhNybzGN2wZwdvRvRg1
BVdlJXCADAH8RvjxvOtnkQRzNWArEIrEM2X5crxI9rIpselbRotDRWuSbH03zLEC
9wsyuRyGUhDysofvWwKFCo7h+XO5nNh6GifHWpT92CIxItYFuTcC0n7UkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD0Xggxmdo0aOytpuHXVl1RKtZXfMB8GA1UdIwQY
MBaAFO2yp6PsuuqldBgjHbC2JKu/e6ZFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2JLbm8teTY2cVYwR0NNZHNMWWtxNzk3cGtVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS80M2VkMWMtZmY1MC00MmUwLWI3ZDQt
YWYyNTRjZTNmZTY5LzEvN2JLbm8teTY2cVYwR0NNZHNMWWtxNzk3cGtVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS80M2VkMWMtZmY1MC00MmUwLWI3ZDQtYWYyNTRjZTNmZTY5
LzEvN2JLbm8teTY2cVYwR0NNZHNMWWtxNzk3cGtVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT1dZQTmr
PAUx/3O5v3guD9AdyyQfHnIlnt3bfEWaBN82cx3zMcfn+u+cEkf5UBSBOKX+OR8X
Mvf1dzpg9yipppKIVTPECmD/jKGDLb+EtHWAZEwXxpa3sV/28lnuxxyxl5TUqfWm
+uxPTnywgWs8CnwVqq9S4DhPGCXuoJgcuXDAA9977tG79ueL6bQAQa+i6pk9BoNQ
PCYSRWkaF3i/EXoqfQqpK+UBubxHORIsR3JWBetFy6ZIBtxCybTHqJ9UwnQr20/q
lsxerm/kjcBOnh3qk+INvUicAEtNk/kIux0MqTQoMxA0el0uT1wShL9Zhmai5eaJ
C/1S05KLUmSm/g==
-----END CERTIFICATE-----