Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.mft
File:                     iaWq49f3LuzoOWtBSSIIrdUhhDU.mft (raw, json)
Hash identifier:          VBHmBLUfva0/yKP0+Sqmv7mPTpwC0K0pGVe91Scr4DI=
Subject key identifier:   59:D4:03:98:34:5F:A1:6E:33:51:FE:78:4C:ED:E1:C8:9F:18:46:12
Authority key identifier: 89:A5:AA:E3:D7:F7:2E:EC:E8:39:6B:41:49:22:08:AD:D5:21:84:35
Certificate issuer:       /CN=89a5aae3d7f72eece8396b41492208add5218435
Certificate serial:       019771F62EBB88B9A92AE0187633115F0334
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iaWq49f3LuzoOWtBSSIIrdUhhDU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.mft
Manifest number:          1482
Signing time:             Sun 15 Jun 2025 05:00:48 +0000
Manifest this update:     Sun 15 Jun 2025 05:00:48 +0000
Manifest next update:     Mon 16 Jun 2025 05:00:48 +0000
Files and hashes:         1: iaWq49f3LuzoOWtBSSIIrdUhhDU.crl (hash: Vn9n2JgpJaxvOJh7jrYxPmZtEHy1qj9kp9i3yhMLRvM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iaWq49f3LuzoOWtBSSIIrdUhhDU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 22:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:71:f6:2e:bb:88:b9:a9:2a:e0:18:76:33:11:5f:03:34
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=89a5aae3d7f72eece8396b41492208add5218435
        Validity
            Not Before: Jun 15 05:00:48 2025 GMT
            Not After : Jun 16 05:00:48 2025 GMT
        Subject: CN=59d40398345fa16e3351fe784cede1c89f184612
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:08:18:21:7a:7b:42:bf:7a:52:9c:57:33:1f:
                    65:1b:81:c1:9a:9f:51:32:b4:2f:75:8b:54:0a:a3:
                    ee:40:04:c8:80:03:ab:bd:e5:1c:d2:97:32:b0:96:
                    58:31:b9:01:93:10:20:19:94:08:f2:b9:90:31:e8:
                    c1:30:45:f6:cf:d4:cb:a8:20:d7:a6:bb:39:19:23:
                    4c:74:30:b5:d0:35:38:10:46:c4:2e:29:47:e0:ac:
                    ac:b5:6d:6f:76:51:25:af:c0:e7:c5:23:4c:f4:da:
                    6c:66:c7:67:1a:e5:c1:bd:0b:b7:93:8e:7e:47:49:
                    f4:12:18:99:62:69:74:d7:3a:59:34:76:7b:02:7a:
                    3f:ed:32:8b:9f:5b:75:ba:e6:6f:d2:31:b8:a5:25:
                    14:e3:44:d0:16:a5:c6:20:c6:07:41:a5:0f:df:29:
                    9c:bf:84:b8:a1:ec:47:58:ee:ca:7f:37:40:0c:20:
                    c2:59:7f:fc:82:59:e0:e6:89:ea:5c:18:ae:5a:fc:
                    47:51:81:81:1a:63:ad:83:8d:f8:ae:e9:0d:bb:e6:
                    07:4e:c1:cd:f5:40:7c:95:c7:ab:98:85:b5:36:b0:
                    e7:de:01:f6:ab:9c:2b:dc:5c:f8:36:72:a5:27:f6:
                    74:6b:d0:4a:96:d4:27:a8:98:8f:bb:c1:f2:87:8e:
                    fe:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:D4:03:98:34:5F:A1:6E:33:51:FE:78:4C:ED:E1:C8:9F:18:46:12
            X509v3 Authority Key Identifier:
                keyid:89:A5:AA:E3:D7:F7:2E:EC:E8:39:6B:41:49:22:08:AD:D5:21:84:35

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iaWq49f3LuzoOWtBSSIIrdUhhDU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/9145cb-02bd-47e6-b04b-0871152a1aa3/1/iaWq49f3LuzoOWtBSSIIrdUhhDU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:30:32:f9:41:43:ef:04:3d:5c:ff:37:7e:f9:2e:e6:65:09:
         54:f7:bd:c4:a0:e9:14:1e:1c:70:7c:20:90:a2:49:f9:3f:32:
         fb:1d:8c:2a:08:6e:f0:31:fc:b9:21:ef:ee:8e:3a:40:7e:76:
         5e:9d:6d:46:d0:5f:92:0b:6b:88:f9:fd:8e:55:07:18:43:2b:
         c5:24:64:50:21:1c:be:8d:51:6a:d1:40:c5:b9:3e:5d:11:5f:
         ac:ed:fe:d6:a4:59:80:93:5a:c3:6e:64:c2:68:70:bc:d7:f6:
         7e:eb:ff:a9:d7:11:32:22:85:b2:09:a6:8e:5c:57:c2:61:58:
         de:c5:c1:41:2a:23:e6:53:73:09:71:87:03:79:b6:ac:24:f7:
         94:9c:da:fb:7c:30:75:31:da:5e:ea:52:1e:fc:42:21:0f:57:
         45:a7:bc:ed:1a:42:3a:b9:aa:85:2b:b7:f1:ff:e3:c3:92:5f:
         6f:33:91:7a:7f:96:c7:ed:62:d6:12:0b:2e:8e:14:f8:af:e4:
         88:b6:17:f9:ab:5d:b8:d5:b0:a4:6d:a4:eb:39:bd:f2:6b:51:
         8f:53:34:91:d8:37:0b:20:04:d6:5b:cb:b1:b9:72:fd:98:14:
         c1:ef:e3:3d:d0:51:45:a3:4b:1d:5b:e8:2a:a5:09:e1:a6:61:
         92:b7:f0:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----