Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
File:                     gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft (raw, json)
Hash identifier:          VUdaNcQpeQ+qzwhhgK+lJqhjN1Pcf5xD07pasFLn5ss=
Subject key identifier:   AC:7C:5E:C3:00:D1:55:9F:50:BF:3C:44:22:C8:84:45:41:26:B0:DC
Authority key identifier: 81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5
Certificate issuer:       /CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
Certificate serial:       0197711A7D973904104CB8413A663C47ADEB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
Manifest number:          0EFF
Signing time:             Sun 15 Jun 2025 01:00:50 +0000
Manifest this update:     Sun 15 Jun 2025 01:00:50 +0000
Manifest next update:     Mon 16 Jun 2025 01:00:50 +0000
Files and hashes:         1: gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl (hash: w4ipYiEcgGsnIC9IqucX5RvBMkwZF2uPEJcWmkGr6ZY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 22:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:71:1a:7d:97:39:04:10:4c:b8:41:3a:66:3c:47:ad:eb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
        Validity
            Not Before: Jun 15 01:00:50 2025 GMT
            Not After : Jun 16 01:00:50 2025 GMT
        Subject: CN=ac7c5ec300d1559f50bf3c4422c884454126b0dc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:17:1c:b2:e2:88:d2:ee:37:d2:d8:f7:59:3d:
                    36:26:d1:8e:bb:f0:3c:46:18:56:c9:ee:fd:df:f8:
                    0f:93:c8:36:b0:c6:b0:77:2e:db:66:6a:96:40:2b:
                    34:41:7c:10:25:3c:86:c8:93:86:59:6a:82:cd:9b:
                    fd:55:3e:f4:10:ed:30:88:cf:a7:37:67:8a:b8:10:
                    e0:04:cf:10:6c:53:2d:d1:e7:c4:da:aa:fc:41:09:
                    6a:da:1e:07:ad:95:f5:d4:5e:57:59:9c:5b:d0:fd:
                    95:78:17:d7:36:ef:c4:cc:57:47:b7:c5:f9:53:f7:
                    41:45:0e:d2:46:13:ff:d9:12:f1:3f:ac:eb:2c:9f:
                    eb:4b:39:28:2d:82:6a:f3:cf:7e:aa:cc:44:ce:3e:
                    22:a3:72:c6:ec:05:9b:32:3f:22:54:23:1e:83:62:
                    fe:f8:de:05:00:68:fa:54:e3:90:af:24:ec:ca:20:
                    c5:33:be:d9:f3:2f:47:20:0f:fd:16:8d:a3:4c:d7:
                    35:b8:9d:a4:17:45:b2:e8:c0:94:6e:18:64:6c:b1:
                    7b:37:7b:04:38:03:3a:00:e6:3e:52:08:4b:9a:82:
                    e1:10:3b:be:8a:dd:c6:15:fe:8d:30:bb:d9:08:04:
                    4d:3c:ff:7a:48:0c:16:b5:1e:68:0d:7e:f5:c0:fb:
                    9c:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:7C:5E:C3:00:D1:55:9F:50:BF:3C:44:22:C8:84:45:41:26:B0:DC
            X509v3 Authority Key Identifier:
                keyid:81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a3:a9:60:92:68:47:44:3f:76:3b:b2:c7:40:f2:9b:83:9c:b9:
         29:95:24:8f:9e:14:c3:a3:28:f4:3e:86:7f:c6:cb:30:a7:17:
         4f:56:ab:e1:9c:c5:5c:85:48:df:21:ca:f7:d3:50:98:25:0d:
         29:8e:50:02:a8:0a:55:44:5c:02:c4:ef:d5:2c:92:4a:67:f5:
         56:95:6a:64:31:72:88:0c:21:d0:dd:6a:3f:4b:0c:2f:57:bc:
         92:17:8a:3c:05:bb:fd:6c:ed:c8:aa:b0:5b:2d:91:69:d2:b3:
         02:46:26:53:79:fb:79:96:e5:00:b5:2c:cb:f5:9e:bc:8c:ba:
         09:78:a6:34:b8:12:cc:3d:f5:33:42:23:6f:9d:2a:67:fe:53:
         2e:10:0e:d7:cb:b4:b6:0b:a1:3b:70:18:94:91:e3:6e:f7:a9:
         f6:77:9e:6c:3d:90:82:d8:bd:cc:d4:fa:72:03:5d:b2:14:96:
         d1:69:6d:83:49:1e:2f:fa:8f:cf:60:36:16:fc:60:5c:68:c9:
         f4:40:4c:86:d0:99:69:d0:a3:3e:67:e9:c2:f7:b8:ab:57:29:
         8f:3d:12:6a:46:fa:16:7a:7e:33:d2:45:74:b6:82:1d:fc:3f:
         e0:82:d4:b9:d3:d9:4f:7d:fb:b0:e4:3b:2f:a7:83:af:09:b3:
         a2:3c:4a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----