Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.mft
File:                     sCBx_ye9CehFJRchNknb9nvK1dE.mft (raw, json)
Hash identifier:          C15w24Fhm5m52lewl/P3nPfH5JXpFnV3vqr6DHwtqF0=
Subject key identifier:   C4:BE:73:EA:F6:55:02:C6:CA:C1:DB:6D:3F:B4:81:5D:AC:82:EE:26
Authority key identifier: B0:20:71:FF:27:BD:09:E8:45:25:17:21:36:49:DB:F6:7B:CA:D5:D1
Certificate issuer:       /CN=b02071ff27bd09e8452517213649dbf67bcad5d1
Certificate serial:       019769299BC54FBA18A367C1FF5804EFD426
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sCBx_ye9CehFJRchNknb9nvK1dE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.mft
Manifest number:          0219
Signing time:             Fri 13 Jun 2025 12:00:23 +0000
Manifest this update:     Fri 13 Jun 2025 12:00:23 +0000
Manifest next update:     Sat 14 Jun 2025 12:00:23 +0000
Files and hashes:         1: sCBx_ye9CehFJRchNknb9nvK1dE.crl (hash: patjxRyFzRytcs9H6b98IYts5ekEb4JU5mSYR6ieTp8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sCBx_ye9CehFJRchNknb9nvK1dE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 12:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:29:9b:c5:4f:ba:18:a3:67:c1:ff:58:04:ef:d4:26
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b02071ff27bd09e8452517213649dbf67bcad5d1
        Validity
            Not Before: Jun 13 12:00:23 2025 GMT
            Not After : Jun 14 12:00:23 2025 GMT
        Subject: CN=c4be73eaf65502c6cac1db6d3fb4815dac82ee26
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:37:92:21:b3:06:e0:39:bd:a4:de:e1:e8:64:
                    19:b0:0c:f3:40:1c:7c:0a:38:6f:f9:0d:2a:dd:bc:
                    f9:9a:1d:60:aa:20:52:0d:e6:bd:99:5d:be:02:27:
                    56:4a:a9:e6:b4:a5:a0:7e:30:56:48:d8:6d:cd:d2:
                    c5:f1:16:21:45:78:f1:b2:3c:37:67:b5:1e:67:30:
                    14:98:e8:d9:ac:bc:f2:7c:89:17:58:da:07:ff:09:
                    a1:d7:7c:50:78:ce:12:ef:69:d4:b4:b1:97:c9:b4:
                    ab:1d:c6:d3:94:92:32:fb:cb:ca:39:da:13:27:d7:
                    48:04:c5:0c:e3:29:89:07:ee:b7:23:e5:eb:2b:28:
                    b2:ad:f2:f6:45:ad:d3:84:5f:d5:4b:67:ae:c9:7c:
                    21:62:0a:c8:d5:b6:59:f0:41:63:36:22:fc:d6:bb:
                    b6:3c:41:9a:4b:c8:82:87:48:82:0f:63:7f:bc:c6:
                    f8:ba:aa:f9:aa:72:b9:f8:2e:fb:ec:e7:ff:0a:be:
                    6f:f6:64:17:4c:c0:16:22:49:85:fe:26:f0:fe:8e:
                    f2:2c:83:b0:45:3c:c2:29:b5:3e:5d:d1:39:fc:b2:
                    cd:90:f8:e5:d7:cd:02:fb:3f:e2:3e:af:20:11:0b:
                    af:0e:ce:0b:8a:ba:b2:ac:31:ec:fc:f1:f5:08:2b:
                    82:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:BE:73:EA:F6:55:02:C6:CA:C1:DB:6D:3F:B4:81:5D:AC:82:EE:26
            X509v3 Authority Key Identifier:
                keyid:B0:20:71:FF:27:BD:09:E8:45:25:17:21:36:49:DB:F6:7B:CA:D5:D1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCBx_ye9CehFJRchNknb9nvK1dE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:35:b4:33:e8:b6:85:24:6a:73:d0:f4:33:79:59:c5:0c:01:
         31:23:e8:16:c4:02:09:3c:a7:8c:f4:a5:9d:af:73:5d:81:6f:
         76:65:f2:69:2b:36:4d:39:81:f7:51:c3:a5:97:cf:07:ae:cd:
         3c:e1:03:60:f2:bb:56:9c:4b:23:a3:a0:93:d4:99:9d:82:75:
         35:b8:fb:24:0e:fd:10:2c:fa:24:53:e9:4e:67:69:6a:96:c4:
         3e:44:80:19:d7:02:06:44:26:98:be:40:4f:61:36:e4:6d:e3:
         96:90:4e:cd:a9:05:21:4a:ac:c4:bc:0d:b3:4b:54:46:28:77:
         d0:65:9e:41:a4:02:c1:9c:6f:1e:23:8a:93:a9:d6:63:af:3a:
         ee:84:98:e7:66:e6:1b:9f:2f:fd:27:62:14:71:84:7c:81:d2:
         2e:88:52:5e:20:21:f3:56:0f:de:0d:ae:7f:99:fd:73:7a:42:
         f1:07:7e:2a:33:69:de:df:50:d8:4d:e2:5b:e9:d9:63:fa:39:
         e6:9b:10:c6:d3:bf:ba:04:f4:7f:56:df:80:8b:a4:7f:09:da:
         0f:99:75:bc:be:55:02:5a:4f:ba:b7:e0:0b:30:f1:04:97:2e:
         c7:94:04:95:98:66:c3:5a:0f:46:18:59:82:92:31:5e:b4:13:
         c5:58:58:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----