Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft
File:                     vPI0wEREFriFL7NHh4rTdtCBjWQ.mft (raw, json)
Hash identifier:          bkZ3aL6r/dkO8XHrPz9zi1BkxixdbzrnwwJkBTvghZY=
Subject key identifier:   C9:5C:ED:4C:1B:D3:52:31:7B:22:B8:2D:E7:A3:6D:79:81:12:47:8A
Authority key identifier: BC:F2:34:C0:44:44:16:B8:85:2F:B3:47:87:8A:D3:76:D0:81:8D:64
Certificate issuer:       /CN=bcf234c0444416b8852fb347878ad376d0818d64
Certificate serial:       019785B3C566FF3350509BC878C73608C742
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft
Manifest number:          0926
Signing time:             Thu 19 Jun 2025 01:00:40 +0000
Manifest this update:     Thu 19 Jun 2025 01:00:40 +0000
Manifest next update:     Fri 20 Jun 2025 01:00:40 +0000
Files and hashes:         1: vPI0wEREFriFL7NHh4rTdtCBjWQ.crl (hash: ncJJfR0D8YNx5SjJmGQd6Gr4xIzNS2zaqYJ+yuYxpv4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 19 Jun 2025 23:47:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:85:b3:c5:66:ff:33:50:50:9b:c8:78:c7:36:08:c7:42
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bcf234c0444416b8852fb347878ad376d0818d64
        Validity
            Not Before: Jun 19 01:00:40 2025 GMT
            Not After : Jun 20 01:00:40 2025 GMT
        Subject: CN=c95ced4c1bd352317b22b82de7a36d798112478a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:81:72:b1:7f:01:07:c4:1e:42:2a:37:b8:a1:
                    bc:0b:e2:bf:46:29:37:8d:a9:e4:09:e4:e0:3a:04:
                    1a:d2:74:92:8c:f4:27:d0:87:d1:c5:88:e2:a0:64:
                    41:69:d1:f2:48:e6:cf:50:57:eb:17:3b:10:fb:45:
                    a8:4a:26:e7:0b:e8:8a:94:70:34:13:d9:5c:1b:7a:
                    f8:de:39:c6:b0:00:c0:ff:48:f4:de:c7:3f:a3:7b:
                    3e:dc:76:8b:6d:21:71:31:2b:51:f6:ec:46:4e:c5:
                    6b:c2:c2:92:1a:d6:46:dc:85:70:78:4a:17:94:f6:
                    2e:37:35:0f:39:89:73:5d:42:ac:7e:b4:78:7c:5a:
                    87:55:fc:c0:fe:75:89:ce:b5:25:15:c2:e4:ea:ab:
                    68:fa:69:5e:c4:aa:45:8b:6e:bf:78:3e:b3:62:fc:
                    b3:f5:60:ba:b7:b5:6c:75:6c:7f:e5:b9:72:06:4e:
                    93:56:14:10:90:de:85:8b:68:94:94:80:e4:b5:78:
                    ac:e3:d1:21:e6:1a:74:ea:38:30:6e:ce:d4:62:4d:
                    7c:35:45:59:b8:59:52:3d:d3:2d:4d:c8:9d:3f:26:
                    c2:2b:f2:27:6f:7e:bb:38:bf:61:1b:3e:5b:fd:3d:
                    f6:bb:a1:d8:9d:1f:61:de:1f:bc:1f:1d:94:ec:50:
                    43:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:5C:ED:4C:1B:D3:52:31:7B:22:B8:2D:E7:A3:6D:79:81:12:47:8A
            X509v3 Authority Key Identifier:
                keyid:BC:F2:34:C0:44:44:16:B8:85:2F:B3:47:87:8A:D3:76:D0:81:8D:64

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:f0:6b:9c:76:be:57:f3:1e:ea:71:49:b6:14:0e:c4:3b:24:
         68:ff:d4:c7:65:e6:e8:6e:31:89:75:ce:f1:41:aa:37:0a:c3:
         18:76:9b:f3:f8:4f:eb:95:15:cf:00:a0:42:a5:af:42:36:8e:
         d1:04:e9:cb:3c:70:ff:de:38:58:4d:d6:c1:34:63:80:e6:6d:
         8f:b5:49:c5:90:89:ba:9a:8d:dd:51:3c:0c:66:a5:6f:a8:6a:
         f0:5a:74:1c:f7:c9:1c:96:05:84:8d:55:36:73:ae:b1:09:dd:
         3e:e9:12:3e:a3:f0:99:b5:d7:db:47:27:0c:6b:60:6e:6b:0e:
         ee:22:8c:1b:c1:12:f9:25:ad:36:4c:8a:bc:5e:20:b4:9f:b2:
         7c:7c:cf:f8:3b:fe:d0:8f:d0:5e:ff:64:ff:04:07:c7:24:73:
         75:9d:fd:5d:6c:9d:68:4a:0e:a7:e6:7b:32:a8:21:25:cc:61:
         4b:7a:17:12:2d:1f:02:ff:ee:5b:30:4b:08:ce:26:fd:60:32:
         7e:53:db:0e:f1:e1:34:30:95:6c:3b:14:98:b7:20:97:41:de:
         58:ff:aa:4c:89:3a:90:e8:38:26:f8:c2:c9:74:c5:78:0c:a3:
         54:54:39:d6:12:6d:20:ee:79:4c:33:dd:9b:9f:ae:c0:6d:7a:
         b6:65:17:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----