Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft
File:                     l5SL1vKtFY5iT9jonp718b2x05o.mft (raw, json)
Hash identifier:          zaKs+OB/p3z6TG795lsR2SLbAsiKlu2+OVS1dJzoMXA=
Subject key identifier:   32:5C:69:FC:5F:0E:71:20:9E:EA:41:15:A5:88:41:FC:14:31:F5:0A
Authority key identifier: 97:94:8B:D6:F2:AD:15:8E:62:4F:D8:E8:9E:9E:F5:F1:BD:B1:D3:9A
Certificate issuer:       /CN=97948bd6f2ad158e624fd8e89e9ef5f1bdb1d39a
Certificate serial:       0197485541A2E785CBF9EFFAAB6E01E41FDD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/l5SL1vKtFY5iT9jonp718b2x05o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft
Manifest number:          02AB
Signing time:             Sat 07 Jun 2025 03:00:36 +0000
Manifest this update:     Sat 07 Jun 2025 03:00:36 +0000
Manifest next update:     Sun 08 Jun 2025 03:00:36 +0000
Files and hashes:         1: l5SL1vKtFY5iT9jonp718b2x05o.crl (hash: pD8F8pi1pZ8JeKlxEiiGbd0U7Q1WbtFb/8YiYFTnxHQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/l5SL1vKtFY5iT9jonp718b2x05o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:55:41:a2:e7:85:cb:f9:ef:fa:ab:6e:01:e4:1f:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=97948bd6f2ad158e624fd8e89e9ef5f1bdb1d39a
        Validity
            Not Before: Jun  7 03:00:36 2025 GMT
            Not After : Jun  8 03:00:36 2025 GMT
        Subject: CN=325c69fc5f0e71209eea4115a58841fc1431f50a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:f7:3b:08:0d:e4:46:1c:14:6e:ee:e1:96:f9:
                    98:91:87:76:47:ce:11:a6:67:c3:5f:64:7b:80:a8:
                    f5:a4:7c:a5:5b:5b:9d:2c:1a:ee:c2:f2:22:98:c0:
                    01:2c:54:8c:44:0c:8e:90:a8:c4:65:e7:34:83:e3:
                    38:55:d6:43:28:92:59:7a:c1:1b:06:31:10:6b:9a:
                    de:0e:b9:e2:19:0a:3b:d5:1d:e1:3e:dd:a5:96:e7:
                    d0:7d:65:04:4e:05:aa:dd:6a:c3:1c:a2:d1:ef:06:
                    05:7f:5b:fe:c2:ce:85:3b:50:ca:36:ea:5e:dd:41:
                    b0:40:5f:96:57:72:12:3f:af:e5:7c:f5:2f:76:d2:
                    1f:28:c8:7b:cf:0c:f5:50:23:3f:3e:a4:45:9e:ff:
                    bf:39:6b:6a:9a:01:c0:cd:7e:f8:c1:ae:6a:72:a5:
                    0a:d0:30:dd:df:2c:39:98:9d:11:3b:b1:01:59:be:
                    a8:f7:91:df:31:4d:e3:b3:06:be:a7:e5:91:92:0c:
                    88:3d:7f:1f:3f:2a:b1:93:f9:70:42:20:f4:91:0e:
                    84:90:2b:92:c9:75:21:62:c5:e0:38:e5:4d:80:be:
                    95:84:7d:b7:a8:e9:6b:8f:ce:12:a2:82:ed:a7:a4:
                    7f:f9:20:1c:fb:3f:cf:85:e7:e1:58:88:b6:46:97:
                    8f:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                32:5C:69:FC:5F:0E:71:20:9E:EA:41:15:A5:88:41:FC:14:31:F5:0A
            X509v3 Authority Key Identifier:
                keyid:97:94:8B:D6:F2:AD:15:8E:62:4F:D8:E8:9E:9E:F5:F1:BD:B1:D3:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5SL1vKtFY5iT9jonp718b2x05o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:ec:ae:80:89:6c:3d:1e:04:3e:fb:54:32:20:d8:a7:a2:0d:
         5e:d0:a3:43:0c:56:97:53:b2:e2:e0:5c:e9:0b:05:ff:8b:f1:
         b8:77:19:67:cd:41:34:35:53:db:c2:bb:4b:05:c4:07:17:ea:
         23:e1:13:5f:34:ba:2a:21:d0:1a:b8:fa:e3:26:d1:1e:46:24:
         c6:cd:57:b7:41:d1:c3:6e:39:30:2c:33:29:e7:8e:83:88:aa:
         68:2f:63:89:34:4b:49:23:0a:ea:26:e0:46:67:59:61:31:50:
         ff:ec:06:65:0b:b5:9d:fb:b9:6a:6a:fe:f7:fc:cd:06:38:51:
         5b:42:fe:0b:04:b0:f4:39:6b:78:22:23:9b:74:e3:24:12:cb:
         11:91:69:79:21:d4:cf:3d:5e:28:42:c3:12:16:66:aa:e0:d3:
         90:93:c9:53:64:b7:f4:ff:6b:da:9e:1f:b0:24:00:48:7c:1f:
         0a:3b:88:a3:fa:01:3b:45:7a:6a:c3:91:15:af:20:04:a5:56:
         3d:9d:84:87:e0:e4:d1:a2:d2:50:0d:8e:42:61:1b:a2:f0:a6:
         d6:11:40:ea:e8:21:5c:1f:05:34:4e:53:a5:7b:33:48:b4:41:
         a8:af:90:64:1b:9a:e1:a8:f6:d2:2f:d6:12:0d:b2:4a:71:f7:
         bd:95:a3:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----