Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
File:                     02QfqO0c_D2qI6qvjDp2_oftW6s.mft (raw, json)
Hash identifier:          m/Gr5qRABoay6M/4HFiOkDvVU1tROCZHVsLYnIt1sR8=
Subject key identifier:   60:DB:25:99:6A:69:1B:E9:32:8E:F1:20:B5:7D:82:E7:20:1B:DD:2A
Authority key identifier: D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
Certificate issuer:       /CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Certificate serial:       019771F6511DABB79DC6E5BDCFAF8945590E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
Manifest number:          0C60
Signing time:             Sun 15 Jun 2025 05:00:57 +0000
Manifest this update:     Sun 15 Jun 2025 05:00:57 +0000
Manifest next update:     Mon 16 Jun 2025 05:00:57 +0000
Files and hashes:         1: 02QfqO0c_D2qI6qvjDp2_oftW6s.crl (hash: 3ehY//8MS7bzx2zdOE+S/cv8kgdpnZNcJmoKkp5wPQE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 22:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:71:f6:51:1d:ab:b7:9d:c6:e5:bd:cf:af:89:45:59:0e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
        Validity
            Not Before: Jun 15 05:00:57 2025 GMT
            Not After : Jun 16 05:00:57 2025 GMT
        Subject: CN=60db25996a691be9328ef120b57d82e7201bdd2a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:32:79:72:e5:76:1c:b2:e8:53:28:f4:35:1c:
                    97:1b:4b:b1:74:a6:48:d8:6f:5d:d5:9c:8e:58:de:
                    3c:a2:c8:73:1a:8c:16:5e:50:8f:7e:a0:7d:55:40:
                    d7:1b:79:b9:7f:b6:16:02:eb:be:12:df:ea:5d:4c:
                    cb:ee:f9:c7:c6:31:00:ea:1a:02:b9:01:5f:bf:32:
                    ca:1d:04:9d:bc:51:0c:08:b0:3d:d3:9d:ee:85:fa:
                    2f:1e:f6:ce:a6:b3:30:8b:ef:48:c9:16:87:78:83:
                    62:4b:6e:da:99:b5:b2:84:05:31:00:48:a8:dc:74:
                    7a:17:c2:19:af:51:b0:b4:4b:a8:42:c4:6a:f1:af:
                    7a:36:f9:a6:1c:97:d8:b8:e0:05:7e:d8:18:0b:cc:
                    15:86:d1:be:1f:a4:77:bd:09:61:95:3a:84:c8:0c:
                    06:d9:fc:97:c5:87:59:4a:2c:35:66:a2:d7:38:36:
                    a7:c8:3b:ac:36:de:65:22:c8:fe:13:6c:da:c0:e6:
                    53:a0:a1:40:ad:fd:e6:ee:c0:e2:cb:ed:f6:57:57:
                    d3:3e:7f:8f:da:13:81:03:1c:13:4d:ec:54:6d:80:
                    c4:05:2f:ed:62:6b:ba:bd:96:48:51:1e:33:3e:2a:
                    32:7e:e9:8f:3f:48:ce:81:44:74:8f:5f:6a:a1:11:
                    a0:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:DB:25:99:6A:69:1B:E9:32:8E:F1:20:B5:7D:82:E7:20:1B:DD:2A
            X509v3 Authority Key Identifier:
                keyid:D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:06:f8:7c:42:bb:47:1c:df:57:eb:ce:b7:2d:8c:6d:45:92:
         9f:df:9f:29:2b:e5:ad:8c:9b:f2:49:b9:65:5e:c7:f1:80:2f:
         54:92:64:8f:2c:b5:ee:bc:d5:62:1d:b3:d7:fd:ff:de:a2:2f:
         9b:a4:86:d2:05:40:a7:5d:2f:75:9f:5c:91:a9:0c:cc:d4:57:
         d6:d7:d1:dd:a1:18:60:26:80:b5:b3:31:76:ae:af:bb:80:bb:
         66:a9:cc:26:7b:f6:83:f2:1d:98:fb:59:6b:f0:49:15:9a:95:
         15:eb:18:3b:4c:33:b6:e9:fc:c2:35:b7:e4:fe:93:3e:6e:e1:
         de:71:0f:48:54:02:6c:9a:3e:bb:19:cd:be:be:3b:73:7d:56:
         af:f0:93:44:31:af:08:c0:e6:fe:29:85:b2:ea:dc:55:44:83:
         f3:7b:06:52:ae:b2:e2:66:f7:72:d6:28:9f:ef:a7:3b:d4:fa:
         16:98:5c:23:ef:ca:1b:91:e1:57:28:cc:e2:7d:39:61:fe:c2:
         a2:ad:93:8b:8d:45:b9:76:b2:ec:dc:c5:b2:77:da:a8:68:a3:
         d5:c5:a4:86:e2:c5:b0:5a:27:eb:27:07:00:1b:d2:07:05:cc:
         79:02:23:86:6f:bd:ca:e6:9c:c6:e9:a1:8e:fc:ab:83:62:12:
         f8:3e:df:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----