Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/49b307-fdca-4c57-afdf-709793cd0123/1/yGdv_eMX8uwbgQDS2dRKPn2PeNY.mft
File:                     yGdv_eMX8uwbgQDS2dRKPn2PeNY.mft (raw, json)
Hash identifier:          CUlgPyNkIUPLu4v5XsZ7OSFJ5XDhCfbXvDVLER+BnO0=
Subject key identifier:   27:EE:38:34:D4:EA:6B:2E:E7:6C:A1:30:AE:C5:B6:6D:36:E6:D9:FA
Authority key identifier: C8:67:6F:FD:E3:17:F2:EC:1B:81:00:D2:D9:D4:4A:3E:7D:8F:78:D6
Certificate issuer:       /CN=c8676ffde317f2ec1b8100d2d9d44a3e7d8f78d6
Certificate serial:       01977075758F7D4641C482F9A118BA177D0F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yGdv_eMX8uwbgQDS2dRKPn2PeNY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/49b307-fdca-4c57-afdf-709793cd0123/1/yGdv_eMX8uwbgQDS2dRKPn2PeNY.mft
Manifest number:          0C49
Signing time:             Sat 14 Jun 2025 22:00:35 +0000
Manifest this update:     Sat 14 Jun 2025 22:00:35 +0000
Manifest next update:     Sun 15 Jun 2025 22:00:35 +0000
Files and hashes:         1: yGdv_eMX8uwbgQDS2dRKPn2PeNY.crl (hash: Izf2I21gDHKgr2C8uFLj45Bb1NFU++7mznD+9IL4lkc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/49b307-fdca-4c57-afdf-709793cd0123/1/yGdv_eMX8uwbgQDS2dRKPn2PeNY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/49b307-fdca-4c57-afdf-709793cd0123/1/yGdv_eMX8uwbgQDS2dRKPn2PeNY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yGdv_eMX8uwbgQDS2dRKPn2PeNY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 19:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:70:75:75:8f:7d:46:41:c4:82:f9:a1:18:ba:17:7d:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c8676ffde317f2ec1b8100d2d9d44a3e7d8f78d6
        Validity
            Not Before: Jun 14 22:00:35 2025 GMT
            Not After : Jun 15 22:00:35 2025 GMT
        Subject: CN=27ee3834d4ea6b2ee76ca130aec5b66d36e6d9fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:42:d6:d7:1a:d1:d9:d2:e8:8e:13:bf:be:8c:
                    14:2d:0b:c3:01:f8:2c:e4:4d:44:7c:39:bf:0d:0d:
                    48:e5:9c:9e:d9:70:3b:f9:e2:8a:8f:49:bb:56:5d:
                    58:63:6a:35:bb:2c:db:b5:bb:92:3b:64:3d:8f:f0:
                    fb:d2:0f:57:87:fb:30:8b:67:a9:aa:d9:07:2b:9e:
                    dd:37:4c:2e:3f:58:34:7e:50:d5:10:71:f9:66:c3:
                    8d:96:95:60:e0:7a:e1:5c:31:af:ff:8f:1b:05:59:
                    43:0b:38:fe:a6:7e:20:35:85:aa:97:22:b9:b6:08:
                    55:53:01:36:dc:4e:81:be:e2:f3:c2:6d:52:4e:7b:
                    48:41:ae:10:59:7b:25:11:5c:70:78:b1:ac:62:86:
                    0c:5b:76:59:e0:00:94:d5:82:de:5d:8c:a6:6a:9d:
                    2d:a9:3e:51:d1:71:29:88:e8:db:48:fe:1a:b4:e2:
                    b5:58:89:ce:4b:34:e2:0d:95:82:98:31:b7:18:44:
                    8f:3a:fd:26:16:c9:93:19:f9:bd:90:fc:91:b6:94:
                    e6:df:97:5a:d2:50:80:82:ff:a1:a2:3d:dc:0c:d4:
                    a7:c9:dc:8f:97:14:7d:f8:c5:8f:8c:77:38:92:bc:
                    54:2e:b9:24:14:51:36:cf:b7:08:5b:f8:c2:bb:5e:
                    4d:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:EE:38:34:D4:EA:6B:2E:E7:6C:A1:30:AE:C5:B6:6D:36:E6:D9:FA
            X509v3 Authority Key Identifier:
                keyid:C8:67:6F:FD:E3:17:F2:EC:1B:81:00:D2:D9:D4:4A:3E:7D:8F:78:D6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yGdv_eMX8uwbgQDS2dRKPn2PeNY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/49b307-fdca-4c57-afdf-709793cd0123/1/yGdv_eMX8uwbgQDS2dRKPn2PeNY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/49b307-fdca-4c57-afdf-709793cd0123/1/yGdv_eMX8uwbgQDS2dRKPn2PeNY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:9c:c3:76:d1:7d:ef:fd:f5:6b:52:d4:db:f1:84:9b:4d:ae:
         95:50:f8:45:13:de:8a:84:c8:33:a8:fa:0d:09:20:fa:93:d7:
         e5:4b:57:7c:05:1d:76:2c:dd:bc:a8:c0:fe:c3:7c:0b:79:c0:
         f1:a6:5b:99:ef:d2:59:ba:ca:85:cc:d8:79:6d:10:97:1a:df:
         36:ce:bd:93:6f:0d:69:3c:8a:df:96:b0:26:7a:94:af:d2:08:
         72:72:55:51:87:c1:7e:df:d5:50:d1:c0:7e:0d:c1:ee:b5:80:
         be:ab:12:e0:05:89:0c:51:a3:80:4b:9e:a3:78:59:82:52:8c:
         82:b3:7b:89:16:4a:cd:f3:3f:08:ff:33:bd:64:41:76:c0:6d:
         a1:dd:a9:37:b8:88:d1:c0:f5:86:50:62:26:66:31:36:0f:bc:
         cd:8b:ca:24:b5:21:4e:92:ba:fc:4f:75:eb:b6:3d:88:d5:9c:
         3e:a8:e9:40:01:3d:9e:8b:51:dc:2a:65:d1:8c:33:76:c9:e3:
         e4:27:cf:68:6e:81:68:43:ba:da:f6:a8:ff:0a:f0:64:54:f4:
         c4:31:3f:c0:4b:29:5a:4b:02:81:b7:cc:f4:75:8b:fd:4c:60:
         cd:fc:a2:76:5f:b7:54:e4:75:34:1c:1c:7a:ea:e2:bf:72:48:
         5d:7d:f8:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----