Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2f5d91-92ba-402e-be1c-d240d3611058/1/xrjeVShQrOhfyMDhaFLMc98QFp0.mft
File:                     xrjeVShQrOhfyMDhaFLMc98QFp0.mft (raw, json)
Hash identifier:          leSK71VC1ToPaENXba0o+jeYezrrtOYXVPdjLKXt71g=
Subject key identifier:   25:23:7B:13:5E:52:6F:B8:13:45:42:8B:DA:7A:E3:8B:91:89:86:51
Authority key identifier: C6:B8:DE:55:28:50:AC:E8:5F:C8:C0:E1:68:52:CC:73:DF:10:16:9D
Certificate issuer:       /CN=c6b8de552850ace85fc8c0e16852cc73df10169d
Certificate serial:       01976BF469E123EF920C56E5076B68BF54FE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xrjeVShQrOhfyMDhaFLMc98QFp0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/2f5d91-92ba-402e-be1c-d240d3611058/1/xrjeVShQrOhfyMDhaFLMc98QFp0.mft
Manifest number:          0764
Signing time:             Sat 14 Jun 2025 01:01:09 +0000
Manifest this update:     Sat 14 Jun 2025 01:01:09 +0000
Manifest next update:     Sun 15 Jun 2025 01:01:09 +0000
Files and hashes:         1: xrjeVShQrOhfyMDhaFLMc98QFp0.crl (hash: bMq0CnnqCVosnEfilNvM6v4lKvRN1sFS01gKsifdRgY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/2f5d91-92ba-402e-be1c-d240d3611058/1/xrjeVShQrOhfyMDhaFLMc98QFp0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/2f5d91-92ba-402e-be1c-d240d3611058/1/xrjeVShQrOhfyMDhaFLMc98QFp0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xrjeVShQrOhfyMDhaFLMc98QFp0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:f4:69:e1:23:ef:92:0c:56:e5:07:6b:68:bf:54:fe
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c6b8de552850ace85fc8c0e16852cc73df10169d
        Validity
            Not Before: Jun 14 01:01:09 2025 GMT
            Not After : Jun 15 01:01:09 2025 GMT
        Subject: CN=25237b135e526fb81345428bda7ae38b91898651
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:82:85:9d:eb:5d:0d:9d:46:38:ac:dd:85:41:
                    cb:ed:b3:8c:be:da:56:b8:53:8f:3e:f7:9f:83:d8:
                    f7:67:64:a2:00:ae:f4:67:e9:fe:4c:35:a8:01:bf:
                    9d:b1:2a:0b:15:6a:db:fe:96:bf:77:ff:44:06:cb:
                    1f:a9:72:18:15:55:3b:1c:f8:8c:c5:be:7e:b7:0a:
                    a8:3b:b0:7c:97:17:23:81:32:33:c9:b0:8b:c1:d5:
                    94:a6:89:ec:97:71:5d:e9:08:d7:6c:e5:1f:fd:1f:
                    8f:70:12:7f:7a:1b:c4:47:58:ca:03:d4:6b:cc:df:
                    54:88:ac:3f:d1:b1:c3:50:ef:50:80:6e:1f:b7:c2:
                    cf:75:e0:04:99:05:32:fb:e1:db:be:e5:b5:0b:aa:
                    25:bf:6e:9c:b3:3f:7a:df:46:12:16:7c:1b:6f:54:
                    38:13:8e:d1:ad:14:a8:68:f8:ad:be:9a:cc:a3:89:
                    3b:d7:5c:f5:92:17:67:f8:8b:2a:d3:ba:e4:1f:54:
                    91:87:cc:e3:c8:77:ab:0e:d2:e2:86:b1:ce:a5:57:
                    9e:25:d7:e5:9b:27:72:bc:3d:26:2d:5f:67:d1:2c:
                    25:c5:e3:69:cf:39:71:2b:aa:1a:83:55:ad:76:dc:
                    d8:7e:83:b0:8b:49:52:cf:fa:b5:0a:b9:b4:18:25:
                    dd:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                25:23:7B:13:5E:52:6F:B8:13:45:42:8B:DA:7A:E3:8B:91:89:86:51
            X509v3 Authority Key Identifier:
                keyid:C6:B8:DE:55:28:50:AC:E8:5F:C8:C0:E1:68:52:CC:73:DF:10:16:9D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xrjeVShQrOhfyMDhaFLMc98QFp0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f5d91-92ba-402e-be1c-d240d3611058/1/xrjeVShQrOhfyMDhaFLMc98QFp0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f5d91-92ba-402e-be1c-d240d3611058/1/xrjeVShQrOhfyMDhaFLMc98QFp0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:ff:f6:94:70:bd:be:c0:d8:a3:99:5e:6d:de:41:f1:2d:6f:
         2f:41:aa:c1:50:ef:97:9e:d6:6b:41:4b:c6:0d:9a:73:53:e9:
         39:a5:83:b5:aa:88:e0:ce:f6:e8:68:a2:bc:98:5b:3c:e6:7f:
         06:7d:11:1e:fe:66:42:29:ca:95:89:2f:96:b2:d4:db:f0:85:
         68:a9:0d:1e:ea:16:5f:fd:14:1e:31:d2:49:15:b0:18:b6:14:
         1c:f5:96:3f:df:43:25:36:c4:bf:6f:02:9f:2b:4d:54:0b:cc:
         17:aa:4f:12:a5:25:0e:49:37:7f:a5:8f:6d:f5:dc:80:a7:3f:
         46:99:a7:d9:b9:18:49:5a:c7:54:66:66:49:e0:45:8c:0a:47:
         6d:43:1e:09:cb:95:8c:ff:55:c6:10:b1:47:fa:7b:cd:70:7e:
         5f:a8:61:c0:c2:38:0f:32:8b:68:4c:48:24:a8:d4:fe:70:47:
         59:46:60:b4:de:92:12:0f:90:81:9b:99:bd:3c:e0:cf:61:3c:
         b5:27:4d:d7:17:c3:e1:27:c3:f7:cd:87:28:64:b9:9a:9a:45:
         03:0c:20:bb:10:29:31:b0:13:f4:21:32:44:60:ed:8f:07:85:
         cb:20:bd:45:4b:c6:c4:e1:d4:8f:67:4d:33:87:b9:9a:03:ab:
         7d:05:7d:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----