Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
File:                     K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json)
Hash identifier:          oZt01Lbgz3LD+F3YsEdYsIgtgRhvslGq+chf7YzQ+es=
Subject key identifier:   F2:F9:53:16:7B:8E:1D:F5:89:63:7E:7C:68:F1:81:E4:95:B3:59:D9
Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
Certificate issuer:       /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Certificate serial:       0197813295A5A32205BBF5B94B43D589233C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
Manifest number:          0766
Signing time:             Wed 18 Jun 2025 04:01:05 +0000
Manifest this update:     Wed 18 Jun 2025 04:01:05 +0000
Manifest next update:     Thu 19 Jun 2025 04:01:05 +0000
Files and hashes:         1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: eTZTLLYP3ujtgDij+p6nhRruCtKGLe8HXAyLpZkqLNY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 18 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:81:32:95:a5:a3:22:05:bb:f5:b9:4b:43:d5:89:23:3c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
        Validity
            Not Before: Jun 18 04:01:05 2025 GMT
            Not After : Jun 19 04:01:05 2025 GMT
        Subject: CN=f2f953167b8e1df589637e7c68f181e495b359d9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:93:9e:b5:28:76:88:17:28:e8:d6:b2:8b:a5:
                    8c:a1:2d:b0:f0:9c:79:f4:c7:ea:b6:c6:8c:22:a2:
                    15:1c:ba:48:3b:b8:57:5a:71:c8:09:a3:70:84:f3:
                    23:b7:78:df:40:ae:14:62:ce:65:53:a3:1e:49:8d:
                    f5:dd:e4:8b:69:6c:20:a3:43:74:35:52:7a:29:ad:
                    72:32:88:bd:6e:eb:19:8d:9b:f7:c4:b6:ae:51:86:
                    b2:c0:c3:9f:22:f8:84:b6:06:4c:0e:1d:f3:80:3a:
                    49:58:03:54:ae:60:3c:32:2a:0d:2a:f6:17:39:f1:
                    90:7c:78:56:27:1a:6e:df:63:0f:09:26:c2:c0:57:
                    6d:3d:e1:39:b9:83:3d:6f:e5:58:a3:57:dc:38:d1:
                    30:37:28:2a:21:21:c4:df:e7:9d:f6:f2:8f:c6:4b:
                    d3:19:22:20:67:4a:f9:8d:79:54:a9:fd:19:59:b2:
                    e5:56:5d:bd:a3:26:6a:47:be:61:61:60:de:7d:26:
                    40:f0:59:8b:51:87:79:c0:b8:88:a3:13:58:fa:c6:
                    18:01:49:37:f2:47:2e:37:62:75:cf:de:1b:cb:28:
                    0b:63:b8:70:97:88:ca:8b:e3:6b:f5:9b:66:f7:30:
                    a5:f7:fd:f8:56:09:11:df:f1:ea:b0:5d:57:2a:86:
                    7f:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:F9:53:16:7B:8E:1D:F5:89:63:7E:7C:68:F1:81:E4:95:B3:59:D9
            X509v3 Authority Key Identifier:
                keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:1c:6a:ff:fa:b9:95:56:e2:cf:b0:38:5e:9c:c5:05:2a:69:
         84:4f:4e:43:8e:35:b2:33:dd:9d:b8:85:70:cd:2d:9a:8e:85:
         a3:45:2d:ef:17:58:78:31:02:9c:e1:b9:74:e5:c5:15:d9:cf:
         f7:0c:bb:83:14:98:a9:df:60:d5:07:89:a1:a4:8a:38:3a:43:
         71:2c:3f:8f:a6:94:89:7a:72:06:04:9c:e3:f4:e2:3c:8c:0e:
         87:2f:9e:f5:29:42:b5:23:b8:c0:82:0b:da:56:98:b1:93:24:
         49:55:66:36:ff:41:1e:c4:db:8c:2a:62:af:1d:ac:8e:cc:ee:
         23:cf:f8:4b:9b:98:57:53:93:02:e5:07:60:1e:c7:f0:e1:ca:
         3e:7b:b0:4a:8b:d6:0e:50:c4:6e:a2:91:58:b9:de:e8:88:9c:
         c2:0d:16:61:9b:94:04:ce:03:b0:dd:77:cc:7b:d0:20:f6:04:
         44:e7:40:c7:0d:a4:f8:2f:62:17:78:d1:1b:96:e5:c4:3f:9c:
         d6:46:1a:c4:44:d6:b0:80:fa:56:54:ec:40:1a:29:a4:7a:3a:
         48:9a:84:e6:10:d4:68:07:2a:7b:12:69:a5:d8:86:8d:70:9c:
         e2:a1:2e:7a:f9:05:0b:b6:7e:14:5b:ce:d4:d2:3f:23:08:99:
         5d:43:af:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----