Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.mft
File:                     U-r4Oizdyf0L4onM-vMrMjMEz04.mft (raw, json)
Hash identifier:          7VaCzAWcZ5/yJ9AA1DIfGVYimk/wZYEegGxd2p6lruI=
Subject key identifier:   03:C5:47:1A:24:23:E2:93:7F:6A:36:E5:38:C6:31:4B:11:FE:0A:37
Authority key identifier: 53:EA:F8:3A:2C:DD:C9:FD:0B:E2:89:CC:FA:F3:2B:32:33:04:CF:4E
Certificate issuer:       /CN=53eaf83a2cddc9fd0be289ccfaf32b323304cf4e
Certificate serial:       01976FD0C61397B4D3FEFDB0F0276A22E368
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/U-r4Oizdyf0L4onM-vMrMjMEz04.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.mft
Manifest number:          0C5E
Signing time:             Sat 14 Jun 2025 19:00:42 +0000
Manifest this update:     Sat 14 Jun 2025 19:00:42 +0000
Manifest next update:     Sun 15 Jun 2025 19:00:42 +0000
Files and hashes:         1: U-r4Oizdyf0L4onM-vMrMjMEz04.crl (hash: tWskZPNRxeauzvYx2VCeePUsMjgDhfWGi6ohTKFuoDo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/U-r4Oizdyf0L4onM-vMrMjMEz04.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 19:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:d0:c6:13:97:b4:d3:fe:fd:b0:f0:27:6a:22:e3:68
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=53eaf83a2cddc9fd0be289ccfaf32b323304cf4e
        Validity
            Not Before: Jun 14 19:00:42 2025 GMT
            Not After : Jun 15 19:00:42 2025 GMT
        Subject: CN=03c5471a2423e2937f6a36e538c6314b11fe0a37
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:0c:50:c5:d8:ea:fe:52:d9:a0:cc:15:e4:3e:
                    fb:e0:ff:13:5d:87:b2:b6:bf:55:b4:ea:61:9b:1b:
                    34:00:68:c1:71:85:d8:d2:52:b2:71:97:58:a6:1f:
                    7a:2f:71:8e:20:0e:c0:16:71:f2:38:48:c2:7c:98:
                    9f:64:5d:e8:78:6a:ec:e2:32:b1:f0:ad:ea:06:e4:
                    5b:ba:2a:e9:f8:db:a0:05:9d:dd:bb:b1:dc:75:b3:
                    75:5a:3c:8d:ac:3b:3f:b7:69:0c:39:99:14:0e:74:
                    9b:d9:70:b1:75:c0:2b:c7:ed:97:7c:d0:19:9e:12:
                    04:d4:3e:90:f5:20:69:5a:57:12:96:38:e3:58:0b:
                    93:76:98:68:55:0a:2a:e7:c5:73:02:c8:1b:83:c5:
                    2a:43:70:30:b7:4b:e7:c1:c8:05:c3:2b:c9:b9:89:
                    c4:bd:93:bf:2b:04:16:6e:80:28:f4:56:18:12:b1:
                    c5:11:ec:9b:9d:b9:67:3d:f8:3c:3a:b3:66:bf:9d:
                    47:f0:95:62:4e:ff:4d:8a:82:42:60:85:10:fb:92:
                    a4:f3:6b:06:d5:b9:f4:cf:be:fc:bb:ca:76:c1:e0:
                    25:ca:f6:79:3a:3d:6e:dc:5f:3b:97:73:52:ea:bd:
                    82:f4:85:9c:25:e7:50:a0:b9:60:94:21:0f:c1:de:
                    7d:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:C5:47:1A:24:23:E2:93:7F:6A:36:E5:38:C6:31:4B:11:FE:0A:37
            X509v3 Authority Key Identifier:
                keyid:53:EA:F8:3A:2C:DD:C9:FD:0B:E2:89:CC:FA:F3:2B:32:33:04:CF:4E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-r4Oizdyf0L4onM-vMrMjMEz04.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:1d:1f:23:d3:a9:73:ff:e7:8f:0d:da:05:e1:db:d4:22:18:
         98:d6:c0:83:1d:d8:3e:c4:02:f5:5d:5b:81:71:5c:99:61:fc:
         7d:3c:22:f1:55:f9:82:16:96:49:fb:91:5e:77:a0:f1:25:0e:
         25:06:f7:4f:f9:c6:43:58:b1:33:19:a9:ae:8c:39:de:e5:a8:
         78:29:62:e7:8a:1b:8a:3a:83:d2:c1:1e:11:7d:36:4e:8d:15:
         1b:95:de:0a:8c:b3:74:0a:94:5f:53:92:69:78:25:75:c7:69:
         85:2b:08:d0:13:55:bb:73:da:cc:86:6a:6b:3a:ee:b6:c0:17:
         17:5a:fc:f7:58:21:a0:e2:2e:ff:a6:0e:4b:23:b6:2c:fd:e6:
         c8:03:15:85:5c:8c:28:bf:a0:53:88:3c:a2:f1:17:c6:1b:d4:
         bc:15:af:74:52:cb:98:2c:4f:76:36:8c:02:32:79:86:58:70:
         70:a3:3b:3e:35:9d:de:76:98:de:ab:b6:6e:2d:60:28:9d:74:
         e7:5d:fb:8d:7b:a2:72:b1:64:e5:5c:1c:ce:25:0c:35:92:75:
         dc:6e:ab:70:f3:d8:ca:60:1d:19:f7:ec:bb:29:55:33:ec:6c:
         4f:81:e2:23:b2:02:2a:bd:ba:77:e0:98:85:cb:f5:43:9e:ad:
         d4:f2:74:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----