Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.mft
File:                     mgGl7N4ueVkyWREG0II9DRVPcAI.mft (raw, json)
Hash identifier:          Z4m7aUviNEThfZsKHn4TlDrHAeg0EVChU54WXzSpqJo=
Subject key identifier:   55:B6:45:28:F2:7F:3A:64:D1:6D:40:EE:AD:43:C2:09:48:CC:68:3D
Authority key identifier: 9A:01:A5:EC:DE:2E:79:59:32:59:11:06:D0:82:3D:0D:15:4F:70:02
Certificate issuer:       /CN=9a01a5ecde2e795932591106d0823d0d154f7002
Certificate serial:       01976F2CD4CF5A7E02DAF2CF26DAD11E3D11
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mgGl7N4ueVkyWREG0II9DRVPcAI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.mft
Manifest number:          06BC
Signing time:             Sat 14 Jun 2025 16:01:38 +0000
Manifest this update:     Sat 14 Jun 2025 16:01:38 +0000
Manifest next update:     Sun 15 Jun 2025 16:01:38 +0000
Files and hashes:         1: mgGl7N4ueVkyWREG0II9DRVPcAI.crl (hash: pJkeaBaNJJ+YfRRuWR3bGRi0f6wiRkSkZo81muMi3Qo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mgGl7N4ueVkyWREG0II9DRVPcAI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 12:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:2c:d4:cf:5a:7e:02:da:f2:cf:26:da:d1:1e:3d:11
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9a01a5ecde2e795932591106d0823d0d154f7002
        Validity
            Not Before: Jun 14 16:01:38 2025 GMT
            Not After : Jun 15 16:01:38 2025 GMT
        Subject: CN=55b64528f27f3a64d16d40eead43c20948cc683d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:f1:0c:01:21:20:cf:f7:49:f5:60:cf:43:d4:
                    66:e9:d8:0b:90:b4:b0:6e:03:09:b5:7e:89:b0:07:
                    e6:df:a0:45:d4:19:6e:91:ec:6b:64:d6:94:ab:e3:
                    c7:1c:2c:c4:ac:bb:a3:9d:2c:2f:38:3c:99:2f:21:
                    1e:eb:4a:fd:0d:12:47:17:1d:92:3a:f1:0a:63:66:
                    12:8b:21:07:40:fc:99:b0:57:b6:b1:48:7c:d6:d7:
                    46:6e:59:7a:c4:9c:2f:c1:6c:69:54:20:e8:dd:6e:
                    84:31:4f:1c:26:df:64:5d:36:a1:59:f3:93:92:21:
                    fa:a9:51:00:b5:71:66:c8:96:24:f8:d9:eb:68:80:
                    96:81:3c:ad:0c:c0:23:be:7d:4b:0c:f1:54:34:db:
                    79:da:ce:ae:75:d2:3f:99:72:d7:c2:02:5a:57:32:
                    29:33:92:c6:f3:74:33:87:e4:d2:47:5d:38:32:5b:
                    65:58:9e:15:fe:8a:9f:5d:3b:e9:aa:12:cd:6b:43:
                    00:9e:23:5d:de:d1:4b:a2:54:c3:86:91:e6:69:d3:
                    1f:e1:c2:3e:9e:9e:86:d7:08:07:87:cf:24:38:e7:
                    62:fa:e0:2f:07:c1:5c:50:ef:f0:c0:9f:c4:5a:82:
                    6e:ec:f7:b2:18:6c:e7:d1:c1:23:ea:9e:72:57:13:
                    f6:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:B6:45:28:F2:7F:3A:64:D1:6D:40:EE:AD:43:C2:09:48:CC:68:3D
            X509v3 Authority Key Identifier:
                keyid:9A:01:A5:EC:DE:2E:79:59:32:59:11:06:D0:82:3D:0D:15:4F:70:02

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mgGl7N4ueVkyWREG0II9DRVPcAI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/863c04-b07e-4c3a-9f45-fe2474d2f07c/1/mgGl7N4ueVkyWREG0II9DRVPcAI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:ed:44:aa:ed:cf:dd:97:8b:9f:68:d4:d9:e6:00:70:14:37:
         37:5c:96:3a:be:00:63:da:b2:a1:5f:11:c4:4a:0e:74:5a:92:
         03:d7:1a:44:a5:61:ac:1c:e3:39:da:f2:d1:b4:2a:d2:f9:d1:
         0b:61:b4:97:8c:9d:17:05:12:86:d2:be:79:05:9a:52:f9:f1:
         a6:aa:b9:12:da:60:7b:54:4e:d2:8e:97:cd:2b:a9:a8:78:c2:
         85:a0:92:25:4c:16:a9:0c:a7:9d:ae:01:02:c1:4b:84:ab:43:
         3f:96:d9:20:2c:70:c1:40:22:a7:d0:82:45:b2:d6:39:c4:8d:
         5a:83:6f:ae:93:a3:a7:ff:a9:bf:d2:d0:36:39:b2:dc:af:b5:
         bd:37:d7:ee:e9:8d:9a:da:e5:61:0f:43:48:6a:fa:2b:3d:aa:
         0a:af:4d:d2:5b:cc:14:af:3a:f5:ce:a9:6e:ba:f3:bc:fd:ca:
         e0:43:57:8f:1e:5a:be:ad:7f:0d:b3:af:50:4f:3c:97:03:d8:
         f4:12:0d:5e:f2:a7:3f:99:82:6e:2a:e9:6f:4a:8a:94:7f:83:
         1f:e6:4e:d6:20:23:ba:76:dd:93:c1:55:e5:dd:da:03:ec:be:
         ff:f2:cd:f0:7f:23:09:f3:6a:92:6e:06:11:d5:17:c7:98:db:
         43:ec:d5:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----