Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft
File:                     HdGoMITMB7cxuvkdqvMTbC9rddM.mft (raw, json)
Hash identifier:          kjcEr2K17wEcyx/DIT72OTTBpbRfak6F7qlKFdK4guA=
Subject key identifier:   9B:0A:40:45:40:61:6E:6A:66:45:BE:5D:1E:E7:C7:1F:58:64:BC:94
Authority key identifier: 1D:D1:A8:30:84:CC:07:B7:31:BA:F9:1D:AA:F3:13:6C:2F:6B:75:D3
Certificate issuer:       /CN=1dd1a83084cc07b731baf91daaf3136c2f6b75d3
Certificate serial:       01976F2C8881749B6D0287A605A7A30738D7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft
Manifest number:          115D
Signing time:             Sat 14 Jun 2025 16:01:18 +0000
Manifest this update:     Sat 14 Jun 2025 16:01:18 +0000
Manifest next update:     Sun 15 Jun 2025 16:01:18 +0000
Files and hashes:         1: HdGoMITMB7cxuvkdqvMTbC9rddM.crl (hash: G+6k+6KD8mMuRndvk2N+2DZWjqvaYR74MUtVsMihkSk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 12:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:2c:88:81:74:9b:6d:02:87:a6:05:a7:a3:07:38:d7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1dd1a83084cc07b731baf91daaf3136c2f6b75d3
        Validity
            Not Before: Jun 14 16:01:18 2025 GMT
            Not After : Jun 15 16:01:18 2025 GMT
        Subject: CN=9b0a404540616e6a6645be5d1ee7c71f5864bc94
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:be:64:e7:62:5e:c0:bd:16:f8:95:a7:b3:92:
                    56:67:2f:59:9a:8b:e9:c3:4b:25:58:52:a1:e9:dc:
                    c7:81:3c:83:b4:6d:6b:43:86:09:11:de:51:25:d3:
                    e4:b7:41:9d:fc:54:a6:a4:de:ce:45:1b:c6:76:44:
                    a4:ff:ef:d1:15:b5:9b:c2:10:bf:09:1b:43:8b:6e:
                    15:0c:8a:2e:40:79:0f:36:df:7f:19:10:a6:82:5b:
                    4a:a8:68:4e:65:db:aa:b7:cc:c6:4f:f9:7a:95:ec:
                    d3:db:54:3e:8e:a4:c8:76:8a:07:2a:df:a0:3e:58:
                    9b:4b:c8:34:26:69:e5:68:b6:b3:9b:6b:dc:e1:57:
                    27:04:f8:53:0b:d5:02:34:ea:40:28:72:9d:44:b6:
                    2e:7f:c7:15:5a:90:c9:91:38:61:de:2b:c5:d8:be:
                    0b:77:cd:7a:b9:b7:99:5e:de:b0:72:62:83:a8:d3:
                    8e:1e:03:6f:9f:1a:59:65:c5:dd:ce:5a:92:3f:71:
                    61:fb:17:c1:f3:e7:62:d8:de:81:79:bd:0a:42:6b:
                    6b:86:7a:37:96:16:e4:9f:c2:aa:34:fb:fe:9a:f4:
                    0a:b4:1a:30:17:ea:7d:4c:c0:38:a9:1c:bb:bf:76:
                    a9:df:5b:16:03:9d:fd:64:3f:ba:3d:e2:33:20:6c:
                    4b:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:0A:40:45:40:61:6E:6A:66:45:BE:5D:1E:E7:C7:1F:58:64:BC:94
            X509v3 Authority Key Identifier:
                keyid:1D:D1:A8:30:84:CC:07:B7:31:BA:F9:1D:AA:F3:13:6C:2F:6B:75:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c6:23:36:7f:5e:9e:8b:a9:a8:2a:77:39:dd:10:cd:32:42:58:
         dc:4f:07:4c:be:b5:1a:26:23:89:56:9a:dc:dc:aa:90:1c:3b:
         80:16:4c:b5:e3:01:23:e2:59:ca:04:f8:df:97:6b:4a:eb:d9:
         66:4a:d6:d7:8e:4a:c6:e6:35:af:33:ea:12:02:3c:e5:77:25:
         fb:22:bb:37:c0:cb:c7:18:7d:05:09:0c:fe:a1:b5:53:fe:34:
         6f:37:82:ee:be:0a:82:bf:4a:68:e5:a9:5d:e3:9a:0f:e1:4c:
         15:50:cc:9a:3e:8f:01:cb:09:74:1e:92:b3:06:32:a4:15:60:
         1b:5c:62:5b:e2:79:f5:fa:f4:e9:01:13:ed:6c:20:62:19:e5:
         59:23:69:13:b2:3f:45:8e:a3:92:b1:b6:01:00:73:bd:27:ae:
         99:27:ae:4b:3c:98:bb:e5:fb:e4:a4:e2:56:c3:59:3a:ba:fa:
         1c:a6:0a:a4:5e:25:0f:b5:e8:bf:99:83:ac:b6:34:e1:f6:14:
         ab:6b:e0:0b:4d:e9:d7:aa:14:c5:26:74:ed:92:58:c8:78:5c:
         2f:46:ba:0e:17:8e:a0:ae:57:8c:f8:50:d2:e4:40:6f:28:df:
         b7:cf:0a:66:57:7f:eb:eb:a0:dd:d9:ab:ed:be:7e:23:d2:2a:
         0f:a4:df:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----