Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
File:                     tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft (raw, json)
Hash identifier:          4emt04+ouB0XXjnYecsiDzDNrdaFA3Zpj/H1ai8qLOc=
Subject key identifier:   E0:0B:BB:5B:C2:B9:DD:11:B3:92:0F:8C:51:82:52:A9:0F:C4:E5:56
Authority key identifier: B5:3A:CA:36:84:6D:2D:30:23:64:8E:AC:58:1C:7D:9B:63:17:EE:DC
Certificate issuer:       /CN=b53aca36846d2d3023648eac581c7d9b6317eedc
Certificate serial:       019777C1A01D1B7516C80BDCA0E7BAE8A2EC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
Manifest number:          0193
Signing time:             Mon 16 Jun 2025 08:01:07 +0000
Manifest this update:     Mon 16 Jun 2025 08:01:07 +0000
Manifest next update:     Tue 17 Jun 2025 08:01:07 +0000
Files and hashes:         1: tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl (hash: h1D09eogL+tUqKOMVAFFHb6FwlVmbzWCpRSlXAJm2Vg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Jun 2025 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:77:c1:a0:1d:1b:75:16:c8:0b:dc:a0:e7:ba:e8:a2:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b53aca36846d2d3023648eac581c7d9b6317eedc
        Validity
            Not Before: Jun 16 08:01:07 2025 GMT
            Not After : Jun 17 08:01:07 2025 GMT
        Subject: CN=e00bbb5bc2b9dd11b3920f8c518252a90fc4e556
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:c0:c8:95:d6:1c:78:9f:df:7d:97:d4:39:c1:
                    d0:7d:20:6e:32:7d:08:2c:03:cc:af:37:21:dd:7c:
                    83:a4:5a:b7:fb:6a:2b:aa:ca:f5:fd:ba:32:de:69:
                    93:13:ad:32:39:7a:e5:2a:24:e5:13:84:4e:4e:66:
                    13:74:d3:6d:0b:8e:b5:09:45:b7:a7:e7:49:b6:dd:
                    c8:fa:a0:f3:85:76:86:59:87:95:0b:2b:fc:e2:a7:
                    3c:0a:d9:d9:12:57:bc:e3:f5:9e:3a:46:92:b5:27:
                    4b:f7:b5:4d:a3:94:48:4b:79:8b:6a:88:df:08:51:
                    6b:7a:d5:83:d5:37:ce:ff:6d:80:93:24:10:7d:6b:
                    32:3a:6b:cc:8f:83:33:d4:53:f0:99:18:9a:15:5d:
                    11:04:ed:4f:79:6b:d8:68:e5:86:28:0c:20:b4:a0:
                    32:40:a6:d6:b3:79:24:f4:a4:99:ae:50:28:d9:31:
                    f9:81:b2:db:eb:36:6a:8c:93:c4:27:c3:0d:f0:47:
                    1e:7c:00:04:ba:c7:70:55:26:58:f3:d8:5a:0f:9f:
                    4b:f4:27:ca:61:84:aa:22:a6:8f:63:af:69:f7:2e:
                    e6:10:60:3e:63:c8:28:6f:df:40:ee:a8:2a:fe:83:
                    b3:43:ae:3a:7d:06:4c:d9:fd:5c:91:0b:99:a3:58:
                    fc:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:0B:BB:5B:C2:B9:DD:11:B3:92:0F:8C:51:82:52:A9:0F:C4:E5:56
            X509v3 Authority Key Identifier:
                keyid:B5:3A:CA:36:84:6D:2D:30:23:64:8E:AC:58:1C:7D:9B:63:17:EE:DC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTrKNoRtLTAjZI6sWBx9m2MX7tw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aaf36c-666d-4ac4-b0f3-4bb37b18b9fe/1/tTrKNoRtLTAjZI6sWBx9m2MX7tw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:45:ee:b4:70:95:eb:be:3f:f1:ec:9a:06:83:41:0a:23:22:
         90:02:30:bf:da:06:7b:8e:20:b3:da:e2:04:ec:59:05:2e:da:
         45:cb:52:5d:65:d5:bb:56:32:63:72:1d:6b:6c:e6:30:6e:0b:
         38:86:e6:fe:2a:d2:08:54:11:be:1c:fa:1b:14:e6:5f:da:82:
         4c:13:3b:ff:27:91:71:b3:b8:ce:38:09:e8:cf:2a:b7:e4:aa:
         58:0a:ff:53:15:f0:64:e6:ba:42:2c:4e:3b:43:d8:e7:f3:f2:
         ed:bb:02:d2:70:f2:b4:40:10:f0:c9:e1:77:78:d3:24:0d:b0:
         85:20:3a:52:08:1e:76:f9:28:ee:cd:d5:5d:6e:3b:24:07:c5:
         1b:b8:b0:5e:3f:2f:e0:98:7e:87:cb:2b:a6:83:31:60:c1:86:
         4a:a8:1d:64:6d:07:6a:b2:90:e4:0b:34:d0:ee:07:44:57:c7:
         14:ba:a9:2f:8d:2e:23:f9:c7:13:0e:e8:cd:76:8a:ab:ab:8a:
         ff:4d:4d:9c:26:03:7e:45:d0:3d:bc:bc:62:74:f4:4b:25:22:
         67:2a:48:9a:1d:eb:1a:a4:4f:6f:11:1e:29:8b:24:84:61:18:
         84:36:a4:75:8f:e3:ff:07:da:0b:f4:ee:e6:58:97:71:23:f8:
         a6:80:14:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----