Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
File:                     RK3etuoTlfaY9C51Qa70kkJiX2I.mft (raw, json)
Hash identifier:          vXUJxWkIi16X7i3FagSQsAfiJDsgY1LlzUjT2aXYEng=
Subject key identifier:   7A:4E:01:B5:F1:EF:30:0E:92:18:86:BC:E2:4B:DC:D5:FA:7D:8B:E9
Authority key identifier: 44:AD:DE:B6:EA:13:95:F6:98:F4:2E:75:41:AE:F4:92:42:62:5F:62
Certificate issuer:       /CN=44addeb6ea1395f698f42e7541aef49242625f62
Certificate serial:       019774F73518D441E1823AA0EBC54F88E387
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
Manifest number:          1590
Signing time:             Sun 15 Jun 2025 19:00:47 +0000
Manifest this update:     Sun 15 Jun 2025 19:00:47 +0000
Manifest next update:     Mon 16 Jun 2025 19:00:47 +0000
Files and hashes:         1: RK3etuoTlfaY9C51Qa70kkJiX2I.crl (hash: Zr/iFmHa0vSYPQlGQ5vMfvT5l2w4mZC7DFH8F4rtp3Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 19:00:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:74:f7:35:18:d4:41:e1:82:3a:a0:eb:c5:4f:88:e3:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=44addeb6ea1395f698f42e7541aef49242625f62
        Validity
            Not Before: Jun 15 19:00:47 2025 GMT
            Not After : Jun 16 19:00:47 2025 GMT
        Subject: CN=7a4e01b5f1ef300e921886bce24bdcd5fa7d8be9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:5f:ab:f1:8e:7a:38:30:5a:db:c1:15:75:7a:
                    44:92:ff:5c:2c:ff:45:b3:24:72:c6:06:42:f9:7f:
                    e4:18:4e:d5:8e:19:a1:a3:82:3e:c3:17:d4:72:76:
                    98:66:96:7c:33:c5:5d:c0:62:06:d0:0a:aa:c3:fa:
                    4e:e6:5f:57:1a:1c:d3:63:70:84:e2:52:88:1e:13:
                    4f:8b:dd:33:ad:26:ec:5e:d3:78:45:ff:7c:83:ef:
                    5c:d7:cf:46:e0:14:18:4a:6a:98:a5:55:5f:0a:95:
                    9f:bf:74:cc:c4:4c:48:cd:fe:55:bc:a2:d7:e0:93:
                    61:92:c7:21:b5:8e:1b:8d:0a:bf:ec:c5:3d:4e:b7:
                    15:f4:5b:c6:f0:92:06:d2:15:22:f4:f8:19:1c:f2:
                    e2:58:43:c5:64:34:dc:05:7d:ca:77:81:ba:c7:1b:
                    e5:59:37:79:05:44:86:87:3d:d4:11:f7:a6:88:82:
                    78:00:05:c5:8e:d3:7e:3d:a8:77:37:d6:0e:f3:11:
                    48:4a:71:cf:a4:88:2f:70:e1:cc:22:d4:90:e1:58:
                    84:e8:77:95:d9:a0:e3:f4:9b:6d:04:53:5d:b4:9b:
                    53:a3:d8:95:35:78:35:16:2d:c5:51:16:af:30:59:
                    2e:79:9c:fe:79:3e:38:db:b8:fc:38:64:e8:e6:bd:
                    2d:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7A:4E:01:B5:F1:EF:30:0E:92:18:86:BC:E2:4B:DC:D5:FA:7D:8B:E9
            X509v3 Authority Key Identifier:
                keyid:44:AD:DE:B6:EA:13:95:F6:98:F4:2E:75:41:AE:F4:92:42:62:5F:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:c0:55:1a:a0:d5:a5:07:74:20:04:b2:ec:85:c4:e9:fe:4a:
         86:28:f5:54:dc:a5:6d:e4:f7:12:06:db:6a:99:b2:51:2a:83:
         b3:3f:ae:6e:86:d0:95:48:8b:a3:08:80:64:ee:14:89:59:69:
         a3:e9:6b:6a:a4:69:b5:1e:c6:48:c9:ca:56:03:67:79:5b:33:
         3f:5b:29:87:2b:ea:3b:30:e9:32:fb:e1:b3:15:4d:b0:ca:f4:
         70:86:74:b8:bc:c7:f3:08:4b:ef:de:09:91:c8:b5:4f:43:68:
         cd:b4:15:1d:51:01:e3:b2:3e:ea:f1:e8:3d:0d:96:27:88:35:
         d3:4b:85:b1:24:4c:fa:c9:1c:ea:3c:16:47:74:40:76:23:9b:
         af:61:79:cd:dd:2d:b7:e7:5a:1c:76:2f:1b:fa:fa:ca:9d:39:
         aa:11:2b:19:85:a7:5d:42:24:a3:b4:49:14:1d:d4:00:0d:f7:
         f6:09:dc:e3:8d:a0:36:43:4f:a3:3f:b6:4b:35:e2:91:bd:a9:
         15:52:d3:90:68:5e:f7:ad:c3:10:02:2a:9f:f9:65:c9:6d:03:
         ac:a0:99:1b:8f:97:cc:3b:3d:f6:7a:80:8c:0e:6e:78:c1:64:
         96:55:8a:0a:c7:a6:c2:3a:d8:40:4f:3b:a3:cd:0b:9b:65:42:
         d3:0b:a0:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----