Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.mft
File:                     dNUnZVf32kEAET2Fc5VmSBVA5hw.mft (raw, json)
Hash identifier:          Qryw4es0BhARe/xEZFGBsdTjyFQcpdWQv5RYwGWhmFQ=
Subject key identifier:   87:A0:F9:1A:A7:08:F0:61:FC:08:6D:B5:99:8D:75:B3:12:09:FE:4A
Authority key identifier: 74:D5:27:65:57:F7:DA:41:00:11:3D:85:73:95:66:48:15:40:E6:1C
Certificate issuer:       /CN=74d5276557f7da4100113d85739566481540e61c
Certificate serial:       01976DABD36305A9B0B29CB608462DFD5781
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dNUnZVf32kEAET2Fc5VmSBVA5hw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.mft
Manifest number:          0841
Signing time:             Sat 14 Jun 2025 09:01:06 +0000
Manifest this update:     Sat 14 Jun 2025 09:01:06 +0000
Manifest next update:     Sun 15 Jun 2025 09:01:06 +0000
Files and hashes:         1: dNUnZVf32kEAET2Fc5VmSBVA5hw.crl (hash: 9kzYI1mGCKlDgqCxyaxN8ATvUmnP85efsnKZnH9wmSc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dNUnZVf32kEAET2Fc5VmSBVA5hw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:ab:d3:63:05:a9:b0:b2:9c:b6:08:46:2d:fd:57:81
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74d5276557f7da4100113d85739566481540e61c
        Validity
            Not Before: Jun 14 09:01:06 2025 GMT
            Not After : Jun 15 09:01:06 2025 GMT
        Subject: CN=87a0f91aa708f061fc086db5998d75b31209fe4a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:b6:cf:f7:4a:2e:a8:2b:03:8e:c2:77:a5:59:
                    ab:85:6e:43:41:b1:fb:25:c6:32:93:b0:9d:a9:c5:
                    10:27:3a:70:10:37:43:1a:7b:ca:ac:ef:b2:02:59:
                    b7:73:3a:56:99:2d:34:87:d4:e0:06:ab:97:d5:08:
                    40:3d:04:d5:34:a9:2a:1c:fb:4a:b9:24:cb:71:ba:
                    2d:54:89:0a:7c:02:40:92:52:34:6b:f4:de:8e:be:
                    28:a4:b0:fd:80:6b:26:5d:0a:0c:c2:9c:69:1d:25:
                    bc:ae:41:34:f3:b2:21:97:06:03:14:65:59:5a:df:
                    94:7e:dc:f8:99:cc:12:cb:ad:fc:df:58:76:6f:f1:
                    cc:72:16:d7:66:c5:4e:39:59:ba:b1:ab:54:cc:f5:
                    a2:a2:ae:9b:dc:82:c8:69:34:45:69:6b:61:a2:5c:
                    5a:7e:c7:59:06:b5:b8:b3:07:87:96:63:a2:6f:de:
                    93:64:0d:06:e9:b1:be:3b:00:82:49:82:3e:f1:ac:
                    f7:f1:81:e6:13:30:26:87:8a:03:77:8c:db:37:10:
                    5d:63:9a:9b:28:61:b5:a7:ee:da:54:4e:df:9e:c9:
                    7c:48:21:11:1d:d9:57:88:0f:43:bd:69:ab:38:46:
                    18:6c:1b:4e:a1:40:1f:d4:56:10:33:73:f1:0d:fd:
                    a2:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:A0:F9:1A:A7:08:F0:61:FC:08:6D:B5:99:8D:75:B3:12:09:FE:4A
            X509v3 Authority Key Identifier:
                keyid:74:D5:27:65:57:F7:DA:41:00:11:3D:85:73:95:66:48:15:40:E6:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dNUnZVf32kEAET2Fc5VmSBVA5hw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e5af16-ddfd-4f3d-96a6-5c5a78bb2b8d/1/dNUnZVf32kEAET2Fc5VmSBVA5hw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:4d:5d:84:99:92:3c:3d:52:ab:b9:0b:9c:04:e9:c3:74:6b:
         dd:bd:26:69:4d:03:9e:e9:74:b7:fa:3e:d1:1a:56:5b:bb:a5:
         d6:89:77:a8:0b:8d:73:42:bf:5c:ec:6c:cd:f6:e9:2b:da:47:
         c1:01:d8:90:e4:f0:f3:5e:ba:e2:25:9c:be:c9:d2:b3:69:e3:
         19:2d:b8:f8:43:8b:d5:6c:91:cc:de:73:c7:7d:63:79:4c:3e:
         08:5c:7b:d1:f9:47:85:24:9b:ed:d1:f0:3c:ec:25:2d:23:a6:
         a9:e4:a1:3e:25:73:bb:d0:8b:19:fa:2c:d5:c8:78:05:ce:de:
         18:4d:c3:62:c9:78:be:5f:2d:f7:13:c7:31:75:60:a1:e7:5b:
         f8:5a:46:6c:12:1d:01:53:3a:9a:4d:7c:68:7d:b3:11:6f:bf:
         f5:7e:71:48:51:1e:b6:50:29:36:79:d6:14:32:6c:e8:ff:30:
         d1:1a:60:d0:0b:0a:5d:43:c6:39:a9:a2:94:94:fb:27:fb:bd:
         54:43:25:aa:26:41:ca:03:c7:e6:be:27:fb:e8:7b:d8:58:12:
         29:5d:6a:20:31:a7:aa:cc:9c:c1:2f:c8:d9:92:c0:bf:cb:c7:
         b6:18:70:45:0c:fa:8c:3e:48:5c:25:bf:6d:cc:e5:f0:c6:72:
         43:0f:53:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----