Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/aa80fc-0d4a-4a97-ab81-09bb596e8454/1/gGM2o7hr9zon3dkGZn6tp1tHxJk.mft
File:                     gGM2o7hr9zon3dkGZn6tp1tHxJk.mft (raw, json)
Hash identifier:          VP9PqYsvXccEOTzZa33oq23e5OzSuWtt7LUBFeY4L2c=
Subject key identifier:   D9:09:4F:DD:6F:13:97:32:7F:0F:F1:DD:06:A3:9C:DB:43:52:6F:BF
Authority key identifier: 80:63:36:A3:B8:6B:F7:3A:27:DD:D9:06:66:7E:AD:A7:5B:47:C4:99
Certificate issuer:       /CN=806336a3b86bf73a27ddd906667eada75b47c499
Certificate serial:       019771F687A57EAC117AB40A23423753AE28
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gGM2o7hr9zon3dkGZn6tp1tHxJk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c4/aa80fc-0d4a-4a97-ab81-09bb596e8454/1/gGM2o7hr9zon3dkGZn6tp1tHxJk.mft
Manifest number:          0B2E
Signing time:             Sun 15 Jun 2025 05:01:11 +0000
Manifest this update:     Sun 15 Jun 2025 05:01:11 +0000
Manifest next update:     Mon 16 Jun 2025 05:01:11 +0000
Files and hashes:         1: gGM2o7hr9zon3dkGZn6tp1tHxJk.crl (hash: xKgalxgomClyFhIW+osGaANO4L5zbTrPzjSZJcGQyEQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c4/aa80fc-0d4a-4a97-ab81-09bb596e8454/1/gGM2o7hr9zon3dkGZn6tp1tHxJk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c4/aa80fc-0d4a-4a97-ab81-09bb596e8454/1/gGM2o7hr9zon3dkGZn6tp1tHxJk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gGM2o7hr9zon3dkGZn6tp1tHxJk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 04:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:71:f6:87:a5:7e:ac:11:7a:b4:0a:23:42:37:53:ae:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=806336a3b86bf73a27ddd906667eada75b47c499
        Validity
            Not Before: Jun 15 05:01:11 2025 GMT
            Not After : Jun 16 05:01:11 2025 GMT
        Subject: CN=d9094fdd6f1397327f0ff1dd06a39cdb43526fbf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:0b:7a:70:a7:40:f6:1e:b8:c2:00:d4:4a:26:
                    f1:77:6e:18:d6:e4:40:72:bb:3f:96:73:70:63:80:
                    d1:39:af:33:b0:05:48:5c:93:f3:ad:3e:58:69:9c:
                    7b:28:28:9e:f4:5a:6e:6e:c3:4e:05:00:30:bc:dc:
                    33:d1:0b:66:b3:73:1c:a9:4c:2b:be:77:ff:59:b2:
                    ed:f8:84:32:ac:10:64:84:31:d0:eb:6f:5b:44:df:
                    a8:c6:13:7b:83:c3:e4:88:3a:a1:08:72:9c:2c:d6:
                    a7:b8:ad:98:21:12:35:29:fa:b8:74:52:dd:24:b8:
                    07:31:fb:3b:d4:28:78:25:d5:36:b4:30:e5:a8:6a:
                    1e:55:57:74:ae:c6:ea:d4:b1:bc:c4:77:6c:c4:a7:
                    89:ca:a7:91:09:59:11:84:c3:a0:42:dc:04:d4:a7:
                    7d:0f:07:09:aa:71:10:5f:44:37:e5:24:ef:99:e4:
                    4f:19:ae:b3:3c:d8:7b:d8:63:46:36:93:58:1a:41:
                    cd:82:7e:c0:03:9e:a7:cb:92:72:f4:b1:55:a2:15:
                    9e:f9:24:d5:e5:63:6b:66:c1:93:ef:ea:8c:f9:66:
                    bc:b0:fe:a6:a8:94:71:44:b8:8f:21:88:a5:0b:ea:
                    09:dd:2f:de:e7:9c:6e:91:2c:76:34:ac:63:5e:58:
                    c8:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:09:4F:DD:6F:13:97:32:7F:0F:F1:DD:06:A3:9C:DB:43:52:6F:BF
            X509v3 Authority Key Identifier:
                keyid:80:63:36:A3:B8:6B:F7:3A:27:DD:D9:06:66:7E:AD:A7:5B:47:C4:99

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gGM2o7hr9zon3dkGZn6tp1tHxJk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/aa80fc-0d4a-4a97-ab81-09bb596e8454/1/gGM2o7hr9zon3dkGZn6tp1tHxJk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/aa80fc-0d4a-4a97-ab81-09bb596e8454/1/gGM2o7hr9zon3dkGZn6tp1tHxJk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:3c:70:9c:4a:57:3f:94:e7:d2:31:a7:5a:ad:1a:c8:d3:69:
         60:fc:8b:50:84:7d:05:f5:f3:7c:80:ef:2b:60:61:f0:d7:9e:
         24:24:b3:00:d6:01:16:c6:ea:ff:b2:06:e8:73:e2:46:20:5f:
         af:3e:88:be:e9:82:4d:e9:2b:52:e8:e4:7e:94:ed:0c:b1:d5:
         79:83:58:32:c9:4d:35:bd:51:48:a9:7d:0c:eb:42:1d:37:a0:
         9b:68:b2:72:bd:d7:d0:8e:11:bd:b2:44:1f:cb:80:c1:ef:64:
         d3:84:0b:93:8d:5e:cd:7a:37:4d:87:9c:ea:f0:3c:6f:97:97:
         39:72:20:91:f9:02:5e:a4:71:8c:c2:b9:6b:f0:f3:1d:aa:13:
         b0:89:5e:20:fd:8b:d4:c1:d1:d5:3c:83:71:87:4d:2a:b1:5c:
         b0:85:d3:99:a7:7f:93:d4:c1:e4:8e:a4:87:e8:95:8f:2d:aa:
         f4:9d:58:3a:e3:8d:42:eb:cb:72:e0:fc:fa:a0:3f:b2:6b:aa:
         9a:e9:62:6a:9a:e8:62:09:16:8f:d9:5e:99:0e:56:d3:34:44:
         4e:b3:9c:fa:80:81:20:7d:d6:8a:12:20:a1:a6:dc:e6:40:85:
         05:7f:eb:ef:bf:98:f6:64:cc:e4:c9:ba:1c:90:20:94:90:68:
         3b:fe:dd:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----