Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/cbd72b-f64b-454e-b58c-2715eb710e80/1/ck8UGJq3EFYgN12vm6qBTW3ZN6I.mft
File:                     ck8UGJq3EFYgN12vm6qBTW3ZN6I.mft (raw, json)
Hash identifier:          /12N9sCidGCi22e+d/CHsAr3QHOKd9HzKWfcO20r08A=
Subject key identifier:   8F:EE:1D:9A:D2:A4:FB:FC:95:8B:10:EC:6F:A1:8D:B3:07:5F:F5:1B
Authority key identifier: 72:4F:14:18:9A:B7:10:56:20:37:5D:AF:9B:AA:81:4D:6D:D9:37:A2
Certificate issuer:       /CN=724f14189ab7105620375daf9baa814d6dd937a2
Certificate serial:       0197696137E7144EE76B6784D870236B431C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ck8UGJq3EFYgN12vm6qBTW3ZN6I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c0/cbd72b-f64b-454e-b58c-2715eb710e80/1/ck8UGJq3EFYgN12vm6qBTW3ZN6I.mft
Manifest number:          06FB
Signing time:             Fri 13 Jun 2025 13:01:08 +0000
Manifest this update:     Fri 13 Jun 2025 13:01:08 +0000
Manifest next update:     Sat 14 Jun 2025 13:01:08 +0000
Files and hashes:         1: ck8UGJq3EFYgN12vm6qBTW3ZN6I.crl (hash: 01/NbS4pFIbIMDvVhL8byX2GK5J/WrKebCUNrcaVHBY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c0/cbd72b-f64b-454e-b58c-2715eb710e80/1/ck8UGJq3EFYgN12vm6qBTW3ZN6I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c0/cbd72b-f64b-454e-b58c-2715eb710e80/1/ck8UGJq3EFYgN12vm6qBTW3ZN6I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ck8UGJq3EFYgN12vm6qBTW3ZN6I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:01:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:61:37:e7:14:4e:e7:6b:67:84:d8:70:23:6b:43:1c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=724f14189ab7105620375daf9baa814d6dd937a2
        Validity
            Not Before: Jun 13 13:01:08 2025 GMT
            Not After : Jun 14 13:01:08 2025 GMT
        Subject: CN=8fee1d9ad2a4fbfc958b10ec6fa18db3075ff51b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:02:18:ab:2f:b8:50:6d:34:52:32:40:51:74:
                    9f:7c:69:c9:03:95:50:28:d0:48:fc:5c:83:bc:24:
                    6e:31:b8:f4:17:d5:e8:e5:6f:ca:6f:0c:fd:b8:69:
                    38:3c:c3:03:e4:c9:58:b0:bd:b0:66:7d:82:ef:1b:
                    bc:be:2f:af:fe:e3:c0:d6:85:8b:c8:47:85:12:a2:
                    93:02:a4:5f:37:74:64:14:09:29:f6:fd:75:3a:06:
                    a7:ba:17:c7:8a:5d:c5:d2:4a:a8:57:23:1a:de:0b:
                    68:c3:a2:20:29:b9:ad:b5:a0:04:f9:c8:ff:b1:c3:
                    32:77:88:17:e1:65:bb:68:bf:4a:93:bb:44:3e:61:
                    bb:18:06:42:59:f3:ee:e9:ec:8c:70:40:fd:4c:4e:
                    fd:a7:04:f3:bd:03:0b:10:9f:53:94:be:62:16:fa:
                    41:2b:c0:5e:1d:f6:fc:d5:63:13:cb:ea:f8:7e:51:
                    82:d3:a7:0d:0a:e5:9e:b0:a7:78:7b:73:d5:40:16:
                    1c:47:ce:07:b5:3c:4f:4b:c3:e7:ac:63:82:73:22:
                    01:bc:49:34:e6:08:d6:12:56:f5:54:f1:96:70:2b:
                    91:1b:43:1e:44:c4:fa:43:73:f6:8c:3b:79:24:3b:
                    a2:e6:e5:2b:33:59:af:df:a1:97:7a:bb:e1:c6:5a:
                    f3:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:EE:1D:9A:D2:A4:FB:FC:95:8B:10:EC:6F:A1:8D:B3:07:5F:F5:1B
            X509v3 Authority Key Identifier:
                keyid:72:4F:14:18:9A:B7:10:56:20:37:5D:AF:9B:AA:81:4D:6D:D9:37:A2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ck8UGJq3EFYgN12vm6qBTW3ZN6I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/cbd72b-f64b-454e-b58c-2715eb710e80/1/ck8UGJq3EFYgN12vm6qBTW3ZN6I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/cbd72b-f64b-454e-b58c-2715eb710e80/1/ck8UGJq3EFYgN12vm6qBTW3ZN6I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:8f:3d:3b:6f:98:7f:c0:9c:f6:e4:84:32:76:13:6d:c7:f5:
         ee:4c:10:42:23:30:ec:eb:36:25:30:25:0e:fa:e0:16:e0:dd:
         82:29:67:e7:ae:ea:74:c6:e2:09:11:ba:75:74:16:de:c2:d5:
         bf:db:4d:5e:7a:a3:1a:0f:eb:fc:c1:a1:bc:74:ba:3a:85:f5:
         1c:cd:92:78:eb:ce:95:c0:a9:f6:c3:a3:14:fe:4f:f4:32:d8:
         d3:94:32:6f:eb:cb:04:bd:04:43:23:9e:f8:12:44:73:df:e1:
         ba:8e:45:10:59:6d:dc:ad:27:1d:84:31:34:c4:bb:cf:40:b3:
         53:19:17:81:aa:11:a9:fd:a9:62:a9:bd:6f:3b:d9:1f:c5:53:
         f8:92:61:97:ff:05:df:cd:de:e7:1e:84:5a:44:ef:b7:2a:ea:
         1c:ef:6e:4b:45:8e:d9:90:ab:bf:40:08:92:90:ff:0d:87:44:
         d9:14:5b:bf:ae:ed:f3:94:d8:63:cb:ec:8b:54:30:4b:95:4e:
         0d:7f:9f:e1:d6:c7:dd:ce:7f:61:2a:a2:c5:dd:c0:fc:d3:b2:
         aa:61:c3:0c:c3:5d:f5:4f:b7:11:eb:7e:f6:56:44:70:ee:75:
         d1:7f:e7:97:ea:b0:e5:3f:aa:91:e5:03:0a:12:52:e9:86:98:
         01:ad:99:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----