Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft
File:                     idSzdf1Mr9XfusQG3SWmHSLdNso.mft (raw, json)
Hash identifier:          YRmt8F4PLB+C9urB/s4/TIEdbk+MJ8rBwC1ZwlVvHcA=
Subject key identifier:   08:29:50:AA:6E:31:39:3C:A2:C3:77:97:43:59:D6:06:2D:31:13:F1
Authority key identifier: 89:D4:B3:75:FD:4C:AF:D5:DF:BA:C4:06:DD:25:A6:1D:22:DD:36:CA
Certificate issuer:       /CN=89d4b375fd4cafd5dfbac406dd25a61d22dd36ca
Certificate serial:       01976F2BEE09BE743025BC39DFF4977BD147
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft
Manifest number:          110D
Signing time:             Sat 14 Jun 2025 16:00:39 +0000
Manifest this update:     Sat 14 Jun 2025 16:00:39 +0000
Manifest next update:     Sun 15 Jun 2025 16:00:39 +0000
Files and hashes:         1: idSzdf1Mr9XfusQG3SWmHSLdNso.crl (hash: wi/AXjhlfdCJwdhHwuhMy9J6S8TltKxjM/LwZxJoZbU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 10:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:2b:ee:09:be:74:30:25:bc:39:df:f4:97:7b:d1:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=89d4b375fd4cafd5dfbac406dd25a61d22dd36ca
        Validity
            Not Before: Jun 14 16:00:39 2025 GMT
            Not After : Jun 15 16:00:39 2025 GMT
        Subject: CN=082950aa6e31393ca2c377974359d6062d3113f1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:74:bf:6a:dc:4d:11:a2:3b:7d:f3:bb:a5:30:
                    db:bc:5f:4a:c9:e9:6c:9a:f1:e1:3b:26:73:67:a9:
                    ef:dd:78:91:c3:3f:ed:c5:67:83:5c:e0:de:12:e7:
                    07:b9:78:56:f8:e1:4c:de:6e:9f:f0:0e:b6:da:a9:
                    d0:a0:27:0f:51:5b:6b:71:ba:06:0f:9b:0c:10:86:
                    c4:87:38:ea:ed:7c:bf:26:7c:65:6f:d0:54:42:6b:
                    47:e1:b2:22:e2:50:61:86:94:8e:c5:c1:ab:b1:7a:
                    80:f5:a7:e9:07:b7:e4:f1:5c:fa:3a:7c:8f:13:05:
                    16:a3:27:33:28:6e:b2:f0:35:8c:52:86:05:67:5e:
                    0f:c7:f0:23:a1:fe:43:5d:13:b0:af:ed:8f:b3:ea:
                    b5:3c:1c:a5:f2:a3:5a:8d:89:a1:14:0d:17:90:09:
                    a5:70:38:98:83:46:71:17:e2:e1:2d:02:b1:bb:dc:
                    56:8a:db:5c:b6:88:e1:ec:23:14:9b:ea:3e:8a:71:
                    ee:56:83:9e:76:b1:39:af:6d:4f:39:29:30:ea:1a:
                    e6:96:0c:6c:d3:52:08:19:8e:47:1b:0a:e1:17:92:
                    8f:ae:a1:e0:95:5e:1c:ba:95:73:04:6f:b4:c4:49:
                    bc:aa:19:d6:60:53:be:80:8c:f4:e1:9c:59:8b:1f:
                    71:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                08:29:50:AA:6E:31:39:3C:A2:C3:77:97:43:59:D6:06:2D:31:13:F1
            X509v3 Authority Key Identifier:
                keyid:89:D4:B3:75:FD:4C:AF:D5:DF:BA:C4:06:DD:25:A6:1D:22:DD:36:CA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idSzdf1Mr9XfusQG3SWmHSLdNso.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/bcad8d-8e55-4a81-b393-274251252077/1/idSzdf1Mr9XfusQG3SWmHSLdNso.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:57:46:d0:50:6f:c4:95:0b:da:c8:45:77:87:f1:3a:38:b4:
         2e:c5:6e:e5:e7:f2:7f:75:f4:57:d6:e9:31:6b:6f:10:05:e7:
         56:37:19:84:d7:16:c2:5a:28:f8:bf:15:83:32:b8:67:ea:17:
         ec:60:25:af:f1:98:09:e2:a2:8d:07:9a:94:22:cc:5f:a8:5f:
         e4:2f:f6:12:66:9e:eb:13:ac:a0:a8:2c:5e:f6:c7:25:67:f7:
         c6:a1:7b:f5:f0:8d:3e:a0:be:e0:50:87:65:f2:98:ed:91:4a:
         1d:4f:25:f2:f3:7c:d5:ca:d0:de:c2:69:05:79:37:e7:d2:ed:
         b2:d8:bb:20:21:8f:29:ac:e7:52:4d:0b:f5:8b:ae:39:34:40:
         28:86:fc:ed:df:a6:59:f8:93:00:14:e8:73:d9:f9:fa:1d:a2:
         78:ab:58:20:e3:84:83:8e:32:8f:87:ed:53:e7:14:f8:b1:43:
         77:76:f8:12:f1:c1:71:91:6d:7d:d4:84:ed:02:a0:79:f1:76:
         5b:b6:81:63:2b:28:19:33:3e:95:da:d9:a7:7e:a7:32:ec:dd:
         f2:e4:56:52:c1:c5:5b:ae:d9:85:a2:f5:55:8a:2e:67:8a:14:
         4d:ea:62:24:13:6f:d3:60:54:bf:70:94:0c:a2:f6:69:2b:ba:
         c2:0e:7d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----