Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
File:                     obtQVKF8yU__wrwpWhW_74qQQwo.mft (raw, json)
Hash identifier:          vqREO4/3Nsp3CJriRZOGOBmi8C0/oM+I9/rii02XHcc=
Subject key identifier:   98:D6:3D:F3:27:28:6A:D3:67:93:D2:60:D1:BD:23:C3:EA:70:98:CE
Authority key identifier: A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A
Certificate issuer:       /CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
Certificate serial:       0197684E745DE632AE10492BF6375143C646
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
Manifest number:          05A1
Signing time:             Fri 13 Jun 2025 08:01:01 +0000
Manifest this update:     Fri 13 Jun 2025 08:01:01 +0000
Manifest next update:     Sat 14 Jun 2025 08:01:01 +0000
Files and hashes:         1: obtQVKF8yU__wrwpWhW_74qQQwo.crl (hash: k8cUknV8rF/WryZuvIIhY2pvqhEx1ndxBl9E+M5kOvc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 08:01:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:4e:74:5d:e6:32:ae:10:49:2b:f6:37:51:43:c6:46
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1bb5054a17cc94fffc2bc295a15bfef8a90430a
        Validity
            Not Before: Jun 13 08:01:01 2025 GMT
            Not After : Jun 14 08:01:01 2025 GMT
        Subject: CN=98d63df327286ad36793d260d1bd23c3ea7098ce
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:12:66:9e:b7:13:97:7e:c6:44:53:c3:92:e3:
                    6d:5a:5b:99:66:c3:71:95:10:ea:4d:b9:74:ff:48:
                    5d:02:36:f7:85:fd:49:73:cb:e3:12:6c:1a:3b:45:
                    fd:8e:ff:23:39:c1:cf:f8:4f:34:6e:9d:fb:43:2d:
                    16:49:6f:a6:3f:cd:66:d8:95:71:df:83:9f:30:71:
                    f6:e7:a9:48:d2:0e:16:9d:39:65:9f:97:f7:3b:08:
                    d8:97:b8:cd:97:f6:e4:aa:ee:e4:71:56:34:db:98:
                    42:b4:f5:3a:54:b2:04:d4:dc:28:b5:6b:9b:87:9a:
                    cc:28:de:4e:35:0b:a7:49:2a:d4:52:89:87:13:13:
                    38:45:21:86:4f:38:cf:9f:04:28:ef:74:2c:a9:1e:
                    8a:58:71:66:1d:bd:f9:2f:57:43:45:f5:48:9b:6d:
                    06:b5:44:6d:cc:e4:e8:81:47:8a:2b:a2:1d:83:24:
                    7d:7c:77:78:77:03:24:e7:9e:9d:2e:00:b9:59:7f:
                    f8:c7:fb:0f:27:83:df:35:57:f5:ed:52:35:eb:32:
                    d2:01:c2:49:0b:ef:77:3a:4f:ba:46:e5:78:14:7a:
                    5e:e9:87:e6:0a:6c:e1:53:f3:b9:47:dc:28:a4:6f:
                    27:bb:12:d3:3d:53:a8:c7:84:a5:d9:39:0c:29:bd:
                    98:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:D6:3D:F3:27:28:6A:D3:67:93:D2:60:D1:BD:23:C3:EA:70:98:CE
            X509v3 Authority Key Identifier:
                keyid:A1:BB:50:54:A1:7C:C9:4F:FF:C2:BC:29:5A:15:BF:EF:8A:90:43:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obtQVKF8yU__wrwpWhW_74qQQwo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a30c10-1c2d-478c-9cf8-72255d249c5d/1/obtQVKF8yU__wrwpWhW_74qQQwo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         51:97:eb:50:96:b9:d1:a3:8b:57:82:89:17:14:13:48:04:50:
         4e:03:c2:cb:9c:a1:13:2f:b3:a5:27:dc:c8:10:a1:7b:b0:4f:
         32:66:4c:fd:c4:f2:33:95:75:f7:a2:60:ad:27:0b:62:5a:e3:
         d3:01:f0:62:34:15:88:06:74:8c:14:f2:ce:d5:df:53:8c:d7:
         29:0c:3e:91:57:25:50:d2:16:36:b4:78:86:56:cf:49:59:b6:
         67:b7:b0:9d:3e:0a:63:4b:fa:3d:8a:a0:70:13:1e:7a:ef:b2:
         ed:07:d2:f8:cd:7a:09:c9:cd:aa:31:95:1a:52:b6:e7:42:42:
         39:ea:2d:d6:82:01:68:0e:cb:8a:7d:a5:a9:cb:5b:98:c5:21:
         09:4a:85:b8:88:43:f3:c6:47:1b:dd:21:95:56:56:c0:c7:b9:
         bf:9a:a6:e3:84:ae:70:08:6b:4c:21:ea:69:8d:4d:89:1c:7b:
         70:f6:c8:fa:27:5a:78:a2:fd:bf:60:8c:f1:2e:ef:3f:6f:ec:
         a1:e5:b8:b7:0d:4d:61:e8:40:c1:a9:70:dd:70:46:0e:80:d4:
         82:bc:1c:fa:5b:f4:9a:ae:3d:f8:ba:e7:50:f8:14:b4:7f:a4:
         2c:95:16:c2:65:19:bc:0c:ea:9e:4f:d8:ff:98:0e:9b:6e:b5:
         31:de:ac:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----