Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft
File:                     zy3L5YDpQvIQonhxtWUMjCkGOFE.mft (raw, json)
Hash identifier:          GwZ8VTUf8r1KLGyShoWVccEl+5dcBwD2p5C5fnnCH5I=
Subject key identifier:   E5:55:76:15:7F:2D:A4:DC:A6:93:62:28:61:09:55:3F:2D:F5:02:6C
Authority key identifier: CF:2D:CB:E5:80:E9:42:F2:10:A2:78:71:B5:65:0C:8C:29:06:38:51
Certificate issuer:       /CN=cf2dcbe580e942f210a27871b5650c8c29063851
Certificate serial:       01984965BD7B7507790BC2041CDDC62A7D54
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/zy3L5YDpQvIQonhxtWUMjCkGOFE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft
Manifest number:          15FD
Signing time:             Sun 27 Jul 2025 01:01:01 +0000
Manifest this update:     Sun 27 Jul 2025 01:01:01 +0000
Manifest next update:     Mon 28 Jul 2025 01:01:01 +0000
Files and hashes:         1: zy3L5YDpQvIQonhxtWUMjCkGOFE.crl (hash: vpue+ajCWCQRvd3BLX/2M+Js+uDX3IRc5hED4wx1Qfc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/zy3L5YDpQvIQonhxtWUMjCkGOFE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 28 Jul 2025 00:00:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:49:65:bd:7b:75:07:79:0b:c2:04:1c:dd:c6:2a:7d:54
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cf2dcbe580e942f210a27871b5650c8c29063851
        Validity
            Not Before: Jul 27 01:01:01 2025 GMT
            Not After : Jul 28 01:01:01 2025 GMT
        Subject: CN=e55576157f2da4dca69362286109553f2df5026c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:0b:24:32:15:47:4e:20:39:ce:3e:28:9a:67:
                    6d:4b:5b:51:bf:4b:1e:7a:ce:ed:e7:c1:eb:af:42:
                    c6:13:51:9f:8c:23:84:d8:e6:7d:b0:c1:ff:44:46:
                    f2:cf:81:ab:da:ff:a1:af:b2:ca:9b:92:8b:cb:ed:
                    7b:47:ef:dc:d7:51:d6:19:16:2d:73:47:bb:41:c1:
                    13:64:4f:24:4d:b1:2e:75:db:27:06:b9:d1:66:ff:
                    9a:8d:f2:d3:cc:e8:c4:06:57:5a:fe:53:4b:1c:ad:
                    34:0b:7f:a7:25:4b:cc:07:67:2c:74:4f:b0:a9:bd:
                    03:01:9a:95:ff:63:4c:42:f3:c1:85:76:47:0e:58:
                    1e:c7:c8:44:17:2b:56:ff:00:32:b3:54:59:8b:ac:
                    3a:d1:e3:ae:5b:6d:e2:42:d5:06:5b:91:32:c6:94:
                    dd:81:21:bf:6a:90:33:ed:68:18:2c:28:34:a8:39:
                    d4:b5:82:df:8d:0a:82:a9:2d:e6:f5:31:a2:d1:be:
                    5a:64:e4:a4:89:09:11:11:f2:c0:85:5b:1b:79:8f:
                    63:87:71:63:82:16:dd:88:77:71:30:c8:d0:90:99:
                    71:6e:aa:f2:33:2b:3e:3f:b0:ee:f2:a2:e2:9f:0c:
                    6c:3c:77:8a:e0:91:15:d2:b0:34:68:16:3b:8f:ec:
                    08:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:55:76:15:7F:2D:A4:DC:A6:93:62:28:61:09:55:3F:2D:F5:02:6C
            X509v3 Authority Key Identifier:
                keyid:CF:2D:CB:E5:80:E9:42:F2:10:A2:78:71:B5:65:0C:8C:29:06:38:51

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zy3L5YDpQvIQonhxtWUMjCkGOFE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/d8713e-d499-451c-88cb-5d49368dd2ff/1/zy3L5YDpQvIQonhxtWUMjCkGOFE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         95:11:bd:0c:bf:15:e3:5a:0b:be:ff:99:cd:0f:b4:a3:93:2e:
         35:a5:ae:3f:9d:4b:1e:4a:c9:56:3c:87:b0:4f:80:ea:f4:33:
         fc:8b:2e:da:b8:ff:1d:f9:88:8f:df:b8:ce:5f:35:b9:b0:64:
         9b:7f:ca:99:e3:b7:c3:a6:be:62:3b:a1:71:ad:52:23:24:43:
         0a:7e:eb:f1:5b:63:d9:e5:0b:1e:a1:08:40:2a:20:ba:45:38:
         45:c3:95:e4:57:71:40:02:c2:96:1a:5d:88:24:84:f6:df:4a:
         65:66:2c:e5:a9:6e:32:41:97:2e:57:35:87:c5:de:e6:9d:57:
         6b:0b:4f:a4:f6:f4:ed:8c:de:0f:b5:06:12:b1:68:b8:01:12:
         d2:aa:df:80:12:36:96:ed:6e:8b:67:96:84:c9:59:0a:c3:ff:
         c5:8b:b0:17:48:ea:78:e8:50:25:ee:67:2d:bf:cd:d8:f4:db:
         66:97:48:ac:fe:76:1a:5e:f5:22:0a:29:a8:74:22:aa:9e:5c:
         6e:a1:fe:37:a8:bc:a3:2e:96:71:3c:4b:ef:b6:c2:ff:d3:99:
         2c:5f:d8:4d:ee:c4:01:51:23:e1:3c:dd:70:83:b5:b4:cd:5b:
         64:6e:6d:f5:a3:87:69:97:61:63:d7:53:24:4a:57:6f:80:07:
         70:0a:26:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----