Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
File:                     U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft (raw, json)
Hash identifier:          wpzvW/ZlShIKY6gL0YhKNLpooEWd2EO3LZ1mi6FpHUA=
Subject key identifier:   98:92:E2:BD:36:A7:BC:53:96:CF:28:C7:1D:E8:4B:85:F7:EC:39:63
Authority key identifier: 53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6
Certificate issuer:       /CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
Certificate serial:       0197797876F12E60B99BC2FD9871C303A39C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
Manifest number:          12B8
Signing time:             Mon 16 Jun 2025 16:00:27 +0000
Manifest this update:     Mon 16 Jun 2025 16:00:27 +0000
Manifest next update:     Tue 17 Jun 2025 16:00:27 +0000
Files and hashes:         1: U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl (hash: Gd+c2Mm3/l0QX4BLA2ggUsdhOSjwlDYObf/EhGiZWTY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Jun 2025 14:25:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:79:78:76:f1:2e:60:b9:9b:c2:fd:98:71:c3:03:a3:9c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=53a3c4ee670dcea68b4d79ea6c3185fe029d97b6
        Validity
            Not Before: Jun 16 16:00:27 2025 GMT
            Not After : Jun 17 16:00:27 2025 GMT
        Subject: CN=9892e2bd36a7bc5396cf28c71de84b85f7ec3963
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:ea:09:c8:ab:00:83:97:9a:ed:ce:df:9d:0d:
                    8e:77:16:19:22:5e:06:c9:2d:9a:24:ad:1f:01:48:
                    72:14:55:bf:6a:47:07:5b:9b:57:e4:2f:6d:1a:98:
                    26:a4:96:00:9b:0f:27:ae:89:65:8a:a2:03:51:e4:
                    de:1b:7b:b6:28:79:24:d3:a3:01:61:9a:d0:d9:13:
                    b5:4a:62:72:c4:24:8d:56:75:1a:9b:52:cf:b7:e2:
                    c1:4f:fa:9c:8b:53:cc:00:d2:04:88:49:70:e7:29:
                    b8:26:50:2b:c9:c7:c8:e9:72:5f:3d:01:2d:a6:24:
                    41:50:61:96:d9:86:22:ee:7f:d4:80:e7:dd:64:08:
                    8f:b6:86:e2:90:0e:b6:05:dd:30:25:cc:d5:bf:00:
                    5c:7c:6b:8b:e2:2f:95:17:00:2f:3a:62:58:a6:e4:
                    ef:de:18:0c:8e:1a:fa:ca:a5:44:54:6f:3e:fd:8f:
                    41:05:0d:1b:8f:e3:af:d2:c4:71:ee:1a:a4:2e:84:
                    69:57:ae:d2:fa:fc:67:ec:b2:54:33:68:d6:60:80:
                    0d:63:75:5d:56:c5:7b:8d:5a:c0:f4:d6:ca:55:97:
                    c4:5e:3c:d7:c2:b0:1d:fa:ed:f7:dd:77:89:34:41:
                    3c:73:c1:b7:c6:b9:fd:5e:98:28:ad:f4:24:78:6c:
                    f8:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:92:E2:BD:36:A7:BC:53:96:CF:28:C7:1D:E8:4B:85:F7:EC:39:63
            X509v3 Authority Key Identifier:
                keyid:53:A3:C4:EE:67:0D:CE:A6:8B:4D:79:EA:6C:31:85:FE:02:9D:97:B6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/fa4e30-fd64-486a-bb62-044c32531ad3/1/U6PE7mcNzqaLTXnqbDGF_gKdl7Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b2:25:fd:34:97:34:38:aa:56:32:ec:5f:95:67:b8:88:f9:2a:
         d6:e5:c6:78:6a:44:31:17:2f:d4:42:fc:e5:a0:3c:f9:e0:a9:
         cf:e7:ba:32:bb:40:d7:e7:c5:9a:5f:13:59:09:31:ed:33:b2:
         19:52:3c:a2:a0:08:d5:56:36:50:fd:66:7b:ac:dc:42:d4:c2:
         03:5f:b8:cd:2d:95:61:7f:00:96:e6:1a:c7:4d:4b:88:5c:ff:
         02:43:48:2e:8d:55:0e:e7:dd:67:f4:dc:ed:b1:32:55:a8:4e:
         e4:e0:75:f4:a2:2e:73:21:f9:46:40:a5:f5:fb:31:a5:b0:86:
         36:31:1a:34:ad:55:c2:57:71:aa:27:32:3e:c1:39:76:8a:d4:
         e5:c8:e3:9d:c8:19:2a:03:4d:2f:46:be:32:71:f9:24:eb:df:
         27:4c:98:d4:6b:ed:80:42:37:05:3f:20:07:0a:57:18:d7:6d:
         29:66:34:e4:9a:9d:d3:d4:ce:ae:98:6e:fc:1e:2f:59:bf:5a:
         d5:01:37:68:f7:2b:c2:33:54:54:f9:0f:5c:26:01:f5:88:cf:
         3b:54:66:ff:b1:3e:25:fe:6d:ef:d9:52:34:86:56:0e:9a:ee:
         ac:e2:80:b7:30:cd:ac:d3:dd:16:bf:1c:4e:1a:c3:c9:6c:d9:
         52:08:39:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----