Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
File:                     pyiF7ybebTsiYKtj0sXKD4Y33wM.mft (raw, json)
Hash identifier:          PeT5IQbYOLEeCF7Ojbr7AmfWM+dx3B7vRxMugV1cWJI=
Subject key identifier:   10:AE:23:BE:AE:00:C4:32:10:D5:0F:56:90:37:5A:D9:69:34:96:19
Authority key identifier: A7:28:85:EF:26:DE:6D:3B:22:60:AB:63:D2:C5:CA:0F:86:37:DF:03
Certificate issuer:       /CN=a72885ef26de6d3b2260ab63d2c5ca0f8637df03
Certificate serial:       01974A7A655CBCC600F09AD8ABD1209A9527
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
Manifest number:          1490
Signing time:             Sat 07 Jun 2025 13:00:24 +0000
Manifest this update:     Sat 07 Jun 2025 13:00:24 +0000
Manifest next update:     Sun 08 Jun 2025 13:00:24 +0000
Files and hashes:         1: pyiF7ybebTsiYKtj0sXKD4Y33wM.crl (hash: rbuUgBfIGUHtkpqXWkbgOLzzwdonPoGSIng123ZkriQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 13:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7a:65:5c:bc:c6:00:f0:9a:d8:ab:d1:20:9a:95:27
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a72885ef26de6d3b2260ab63d2c5ca0f8637df03
        Validity
            Not Before: Jun  7 13:00:24 2025 GMT
            Not After : Jun  8 13:00:24 2025 GMT
        Subject: CN=10ae23beae00c43210d50f5690375ad969349619
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:4c:87:ae:71:aa:75:64:52:a2:60:cf:72:74:
                    1e:8c:3c:40:95:bc:81:d7:a4:12:11:cc:92:3b:73:
                    f2:c1:65:b4:ff:87:d0:26:84:4d:64:f5:cc:81:cc:
                    f8:d3:d5:04:27:8b:d8:a4:90:57:b8:91:96:45:b5:
                    87:e5:2a:75:2f:bc:c5:5b:8c:d8:be:1a:06:3e:db:
                    0c:68:75:21:23:f6:e8:07:6b:f1:d3:30:dc:b8:db:
                    85:b4:64:77:f5:7f:b0:93:19:62:1e:ac:a9:ed:a5:
                    bd:c8:eb:f7:0d:cd:ec:a7:85:03:c8:d9:c2:47:6d:
                    03:19:17:9f:28:14:ec:c4:a9:d2:96:40:3c:0a:d2:
                    97:fa:de:da:47:8b:8b:6f:1c:bf:75:2f:af:b6:aa:
                    27:3b:f6:54:7a:18:0b:4d:80:f7:2c:b7:67:1e:f8:
                    c1:cb:cf:ad:d6:ec:67:6e:71:84:1b:12:b5:a7:80:
                    1e:ed:c5:2a:77:b9:16:5a:be:2f:d8:03:0b:a2:c2:
                    91:db:e2:c4:e6:d3:69:6d:89:ff:e8:24:45:e5:cc:
                    a9:82:ac:fa:57:d7:9c:3e:d2:8b:41:73:32:e1:bd:
                    58:88:42:2e:0f:32:d8:ab:01:08:97:8c:08:f6:df:
                    54:0a:3f:04:c7:94:cc:c2:cd:64:54:0a:d1:65:5a:
                    f9:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:AE:23:BE:AE:00:C4:32:10:D5:0F:56:90:37:5A:D9:69:34:96:19
            X509v3 Authority Key Identifier:
                keyid:A7:28:85:EF:26:DE:6D:3B:22:60:AB:63:D2:C5:CA:0F:86:37:DF:03

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:ad:d0:69:70:4e:e3:a1:e4:68:0b:9e:f5:2b:65:75:46:5c:
         aa:a4:d1:10:aa:a8:e4:50:e4:12:72:34:db:f2:8f:3a:72:85:
         66:76:df:8a:1c:52:85:9e:1b:0c:34:41:0b:b0:c9:90:f9:5e:
         02:80:ad:31:54:af:47:60:22:81:34:e2:0f:6c:03:e5:6f:7b:
         61:d4:c2:1e:c9:ac:1c:75:00:23:7a:55:81:0a:15:dd:44:ef:
         5b:fe:4c:81:63:30:02:49:7b:40:2b:7d:ad:4a:6b:94:72:1e:
         59:15:6f:49:c6:71:cf:5f:7c:4c:be:49:84:9a:7c:5e:bc:13:
         b1:5b:25:34:47:be:03:03:20:8f:60:4f:97:95:be:21:d7:ac:
         e1:8b:fb:ad:e9:fb:8a:2e:a4:b3:e8:bc:08:5e:d8:58:a2:9f:
         4b:9b:f8:6d:4f:b6:4a:b1:ae:49:0d:3d:03:ee:c9:a8:54:e0:
         6b:c2:f3:62:3d:68:f4:99:86:0c:28:36:e8:9b:72:f4:f9:e6:
         c8:a5:0f:57:99:fa:2a:59:d3:bd:88:9a:2d:5e:2d:36:90:a6:
         8e:2b:91:4a:7c:e7:7b:1e:1f:ad:3e:da:1b:33:c3:bf:31:af:
         64:ab:5c:60:b2:40:0f:1c:2e:34:73:08:a8:95:2e:b9:6d:c0:
         0f:57:7d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----