Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
File:                     o_60EOB9CI-2UbkTdJuBJX47mVI.mft (raw, json)
Hash identifier:          tpwmyPPjJ+pVzwBVaRjHRzMsNS0mivqvAu4xPSb3dHY=
Subject key identifier:   C6:AB:93:96:E2:DF:DD:FF:03:6E:B3:19:5D:57:94:BB:57:A4:95:A8
Authority key identifier: A3:FE:B4:10:E0:7D:08:8F:B6:51:B9:13:74:9B:81:25:7E:3B:99:52
Certificate issuer:       /CN=a3feb410e07d088fb651b913749b81257e3b9952
Certificate serial:       0197696133E8238BA7F69D7915290E569EAA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
Manifest number:          0FD7
Signing time:             Fri 13 Jun 2025 13:01:07 +0000
Manifest this update:     Fri 13 Jun 2025 13:01:07 +0000
Manifest next update:     Sat 14 Jun 2025 13:01:07 +0000
Files and hashes:         1: o_60EOB9CI-2UbkTdJuBJX47mVI.crl (hash: cV7kfsiq3SbmmUasVLnIUu0QnLfDdy25U+OE7IoKzx0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:01:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:61:33:e8:23:8b:a7:f6:9d:79:15:29:0e:56:9e:aa
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a3feb410e07d088fb651b913749b81257e3b9952
        Validity
            Not Before: Jun 13 13:01:07 2025 GMT
            Not After : Jun 14 13:01:07 2025 GMT
        Subject: CN=c6ab9396e2dfddff036eb3195d5794bb57a495a8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:9c:95:98:d3:a6:ef:75:12:38:47:d3:e8:9d:
                    f3:10:e0:08:6d:2c:d9:2f:2b:f3:85:74:d4:79:e6:
                    6b:63:b7:b1:93:46:56:a5:aa:88:09:49:7c:b5:73:
                    cb:c2:f7:05:2e:8c:d4:85:05:70:0f:a7:02:18:d8:
                    04:07:15:e2:e2:a2:f4:8d:10:b8:d1:65:9c:0e:4f:
                    24:a5:6e:5e:a3:34:ab:0b:6e:32:8e:ca:78:31:34:
                    04:51:04:54:4b:ff:39:89:72:98:05:d4:e5:56:1c:
                    d5:2e:6b:eb:c6:f9:12:85:d6:bb:f9:3d:f1:2b:b4:
                    b9:d4:40:a0:d7:3e:43:72:f4:50:b4:d8:cb:f0:cc:
                    22:15:46:d9:34:5c:00:de:e3:d4:82:0c:89:98:70:
                    b8:b3:4c:29:a9:78:48:e9:38:41:d7:5c:24:e4:97:
                    e4:82:46:48:3a:b4:40:f8:e6:6e:3c:9b:1c:dc:b5:
                    24:de:91:b9:a1:24:23:5d:b5:d3:47:1a:6e:98:e4:
                    d5:59:f5:c7:ac:b5:ac:e7:4f:10:ef:22:14:c6:38:
                    4f:cb:c2:14:db:47:0b:db:de:cf:50:aa:68:bf:cf:
                    74:b8:41:fe:ba:3e:75:fe:f0:38:a6:63:71:5b:2f:
                    a5:1c:3e:18:1e:58:ae:c7:c9:9b:2d:e0:e7:02:50:
                    41:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:AB:93:96:E2:DF:DD:FF:03:6E:B3:19:5D:57:94:BB:57:A4:95:A8
            X509v3 Authority Key Identifier:
                keyid:A3:FE:B4:10:E0:7D:08:8F:B6:51:B9:13:74:9B:81:25:7E:3B:99:52

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:5d:e1:71:a2:74:ac:16:c4:bd:61:72:ae:0f:dc:cb:33:c9:
         c5:9c:e8:3f:6a:c6:5e:83:e2:33:1d:11:76:b5:84:9f:44:bb:
         12:c5:e0:e1:b6:e1:f4:53:3f:c0:1b:d0:4b:7e:4b:9a:47:15:
         cd:d8:b8:4b:26:17:d6:b5:9d:a1:04:03:54:c2:dd:63:c5:8b:
         89:12:8f:cf:8e:57:f1:57:43:77:4a:9b:82:b4:65:cb:44:f0:
         d6:aa:b9:a6:31:2a:92:02:46:67:e0:08:91:f9:da:9f:fe:8c:
         39:ee:be:a6:46:f6:d0:52:61:8f:86:2c:f1:2f:61:8a:c9:09:
         53:41:01:e2:8c:2e:62:b2:59:59:60:3f:a8:66:0c:cf:3d:a7:
         3a:07:7c:e9:ec:2e:36:af:93:3d:70:18:80:a6:36:7a:82:66:
         66:71:0d:f9:bf:43:87:b3:45:7f:28:06:d4:5e:c8:80:69:1e:
         d7:2b:d2:ad:a9:c9:49:d5:48:95:b6:ec:c3:e6:d7:8f:b0:ab:
         1c:37:a8:04:21:7c:57:99:de:b2:cc:87:49:c1:97:6b:13:f3:
         02:ad:1f:32:af:d4:e2:82:82:0e:63:6c:6f:d8:ef:21:69:12:
         3e:a4:3b:72:af:e8:f2:71:da:7c:a3:fe:41:87:0c:bd:d3:5e:
         66:47:e1:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----