Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/70e964-601e-4f4b-911e-6e3a7d969a40/1/5OIv9yeFHntJFhTwetExVxQcwwk.mft
File:                     5OIv9yeFHntJFhTwetExVxQcwwk.mft (raw, json)
Hash identifier:          WyoQcYYn9EftESinE3rfjLOOSWZYnSO+kY9wvtiLA6k=
Subject key identifier:   57:76:9D:36:84:E7:D2:65:5B:75:31:8F:38:8D:F1:95:7E:42:36:07
Authority key identifier: E4:E2:2F:F7:27:85:1E:7B:49:16:14:F0:7A:D1:31:57:14:1C:C3:09
Certificate issuer:       /CN=e4e22ff727851e7b491614f07ad13157141cc309
Certificate serial:       0197684E757A28BC7EA3A35553B386F6F759
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5OIv9yeFHntJFhTwetExVxQcwwk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/70e964-601e-4f4b-911e-6e3a7d969a40/1/5OIv9yeFHntJFhTwetExVxQcwwk.mft
Manifest number:          143B
Signing time:             Fri 13 Jun 2025 08:01:01 +0000
Manifest this update:     Fri 13 Jun 2025 08:01:01 +0000
Manifest next update:     Sat 14 Jun 2025 08:01:01 +0000
Files and hashes:         1: 5OIv9yeFHntJFhTwetExVxQcwwk.crl (hash: +DXsEbhjOvHCtpPjkE411reAxwvuzFFQ7qqIsPPq8Dg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/70e964-601e-4f4b-911e-6e3a7d969a40/1/5OIv9yeFHntJFhTwetExVxQcwwk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/70e964-601e-4f4b-911e-6e3a7d969a40/1/5OIv9yeFHntJFhTwetExVxQcwwk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5OIv9yeFHntJFhTwetExVxQcwwk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 08:01:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:4e:75:7a:28:bc:7e:a3:a3:55:53:b3:86:f6:f7:59
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4e22ff727851e7b491614f07ad13157141cc309
        Validity
            Not Before: Jun 13 08:01:01 2025 GMT
            Not After : Jun 14 08:01:01 2025 GMT
        Subject: CN=57769d3684e7d2655b75318f388df1957e423607
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:34:7f:65:7c:ca:0b:40:44:31:7d:ee:1b:93:
                    65:aa:54:e1:ab:fb:7c:25:18:16:80:b3:0b:1d:11:
                    44:65:ee:f1:16:8b:af:a8:a7:15:71:09:73:6d:ae:
                    01:47:73:f4:b4:99:bb:f7:12:33:0e:ac:1c:5c:c7:
                    d3:48:5a:93:67:99:62:ef:16:3d:8a:4d:db:94:73:
                    ba:6b:56:bf:4a:59:d4:e1:5d:d4:5c:e1:36:12:51:
                    a1:f3:07:72:bf:79:8a:67:db:42:51:f3:5b:35:ec:
                    ef:dd:f0:45:5f:f9:ea:70:bd:f7:77:b8:72:c0:65:
                    e7:33:6a:ab:c8:de:10:14:68:fc:7e:0e:88:e1:e9:
                    33:9c:3b:b9:af:43:10:a0:62:45:30:e7:f1:7c:a8:
                    b1:8e:22:44:2d:59:ee:66:41:e3:a4:cf:9b:96:2b:
                    9f:db:8c:c8:51:e4:8e:7e:2a:c4:2b:5b:ef:f4:5a:
                    47:99:64:6b:d0:22:35:26:a5:bc:6f:ac:27:28:c8:
                    c7:af:24:05:b7:a4:4b:40:83:8a:58:c6:83:a6:12:
                    5e:81:ec:fc:e2:a1:2c:12:8a:c2:6a:75:eb:ff:da:
                    96:da:71:56:c5:ab:1d:f2:41:f4:c3:d9:e9:68:15:
                    81:89:4a:54:66:53:a6:88:1e:8e:1b:52:a4:a0:2e:
                    bb:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:76:9D:36:84:E7:D2:65:5B:75:31:8F:38:8D:F1:95:7E:42:36:07
            X509v3 Authority Key Identifier:
                keyid:E4:E2:2F:F7:27:85:1E:7B:49:16:14:F0:7A:D1:31:57:14:1C:C3:09

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5OIv9yeFHntJFhTwetExVxQcwwk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/70e964-601e-4f4b-911e-6e3a7d969a40/1/5OIv9yeFHntJFhTwetExVxQcwwk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/70e964-601e-4f4b-911e-6e3a7d969a40/1/5OIv9yeFHntJFhTwetExVxQcwwk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:ff:b1:e2:ef:ef:26:7f:08:23:0c:05:98:05:02:d0:8d:eb:
         76:65:47:af:9f:49:3d:bb:23:47:94:75:88:db:bb:7a:5d:ec:
         3d:d2:83:52:24:3b:58:83:5b:0e:09:b8:52:8c:a7:b7:06:cf:
         cc:a5:9e:d7:da:dd:84:1d:90:25:5a:62:90:6e:39:0c:d6:6c:
         0d:9e:a1:ff:25:2e:be:a0:7f:c0:ce:f6:31:c3:25:af:dd:99:
         85:1f:d2:39:06:2e:d1:92:68:19:6b:b8:64:0d:b8:9c:c5:a2:
         55:9c:ed:97:8b:e7:95:d5:26:54:1a:8e:1d:07:57:c5:da:25:
         f4:4e:7a:f5:26:34:c9:4b:ac:d7:c2:34:cd:08:21:45:32:cf:
         e6:7d:e6:e2:c8:ff:3c:41:00:26:bf:9a:46:4f:16:1b:56:28:
         4a:c3:cb:b7:99:ed:d0:cb:ad:4d:8c:d2:00:f7:4f:88:29:bd:
         5d:46:f0:38:76:8d:5b:a4:fa:92:7e:31:59:12:0b:65:3e:99:
         58:e4:13:24:a3:b9:62:1a:57:b5:15:46:78:d5:be:46:5d:97:
         c1:f6:22:10:1d:72:e9:72:7f:2f:d0:b1:10:6c:db:5e:89:44:
         eb:f7:06:48:03:f2:67:2d:ac:6e:c0:3a:1a:31:4a:ae:93:9d:
         e1:af:5d:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----