Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
File:                     KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft (raw, json)
Hash identifier:          glqt9IDwETVOIC05O2oFdFlMdju5Gb0DQb6eWnD9/gE=
Subject key identifier:   DA:72:AA:12:6A:D6:5F:13:19:13:2A:EE:62:ED:30:F2:05:55:95:1E
Authority key identifier: 29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0
Certificate issuer:       /CN=293bc3a5749733104f7b9cc0512dade136d70ad0
Certificate serial:       0197C9F1C78E7C0CDBC7DE13B8BF72441FC9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
Manifest number:          15BC
Signing time:             Wed 02 Jul 2025 07:02:35 +0000
Manifest this update:     Wed 02 Jul 2025 07:02:35 +0000
Manifest next update:     Thu 03 Jul 2025 07:02:35 +0000
Files and hashes:         1: KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl (hash: 33gs4mKpOl6V9qfAHQBqNRYlO155V4ws5MITF4hRrMA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 03 Jul 2025 07:02:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:c9:f1:c7:8e:7c:0c:db:c7:de:13:b8:bf:72:44:1f:c9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=293bc3a5749733104f7b9cc0512dade136d70ad0
        Validity
            Not Before: Jul  2 07:02:35 2025 GMT
            Not After : Jul  3 07:02:35 2025 GMT
        Subject: CN=da72aa126ad65f1319132aee62ed30f20555951e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:51:8d:c0:66:58:ff:c1:a4:10:99:a7:5e:83:
                    5b:68:63:50:52:a4:fd:d2:85:af:14:7c:b3:7b:4a:
                    86:37:de:82:6d:a1:bd:48:8f:fb:13:46:36:9e:fd:
                    5f:0d:1c:4f:a1:bd:1b:3d:9f:09:a9:6a:76:03:01:
                    87:a9:c3:82:41:10:2a:d4:06:d6:45:13:6f:3b:a2:
                    81:cd:02:ba:16:f3:22:4e:dd:7e:ff:92:91:30:5c:
                    09:71:70:f3:ed:d7:cd:2f:ed:ab:a5:31:9f:d5:91:
                    e2:1a:18:bb:bd:f1:d0:c8:f6:b4:80:d7:7c:1f:b2:
                    a1:86:f4:11:65:c3:18:10:5b:b9:84:28:24:2b:d7:
                    19:2e:a6:a6:d7:83:50:d0:8d:0b:5f:9f:1a:7c:d3:
                    ba:a6:63:22:cb:cf:e0:0e:5f:46:3a:0e:95:9f:ae:
                    e6:91:82:e4:e6:2c:6a:47:90:e6:a6:4e:57:b1:77:
                    8f:ed:ad:11:78:cc:32:ec:f1:ad:94:d2:32:c4:1e:
                    1a:3a:fa:e1:8b:e7:5d:59:b6:98:99:2a:5b:32:f6:
                    db:76:db:11:f1:aa:d6:a1:7a:70:af:7a:63:cd:af:
                    7f:87:7d:0f:c2:66:3c:3a:e3:d3:48:55:db:06:49:
                    c0:4f:07:62:ae:ee:f4:3d:de:be:75:cf:e5:8b:9d:
                    5b:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:72:AA:12:6A:D6:5F:13:19:13:2A:EE:62:ED:30:F2:05:55:95:1E
            X509v3 Authority Key Identifier:
                keyid:29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:4e:74:28:9b:05:dd:39:3d:71:21:91:5b:62:d5:dd:16:70:
         e3:86:2f:a2:86:ea:7a:45:98:a4:db:30:44:28:a4:5a:b5:08:
         72:48:88:68:ab:77:09:af:27:f2:8e:16:86:38:ef:4d:ce:62:
         01:4e:bd:db:27:4d:7e:59:e1:8c:54:97:8a:82:f2:86:88:3c:
         e9:af:f7:55:39:43:b1:0d:5c:5f:01:cf:55:11:fc:11:68:65:
         6a:8d:f1:f8:d6:07:3f:0f:de:f6:9b:0b:bf:8f:ee:a3:da:29:
         14:b8:51:55:b7:44:0e:9d:8d:f5:bd:f5:5c:4d:90:c4:d9:04:
         2e:10:06:c7:de:d8:11:5e:53:67:e2:37:0c:9b:8c:72:15:6e:
         2d:8f:31:57:cf:c0:e2:3c:5c:6d:57:c7:59:b8:30:9e:1b:4c:
         93:29:1e:24:2f:a6:7d:e2:16:82:e9:02:13:bb:c6:a9:15:39:
         5e:d1:65:10:b3:1d:d5:7a:c5:c7:3c:b8:63:1d:6c:0a:0e:91:
         a3:b4:f9:19:12:11:12:a1:18:0e:24:ef:5d:ac:9a:54:b3:f1:
         cc:fd:e1:5d:98:37:87:24:82:32:ca:fc:ab:b0:6e:97:c7:3c:
         a4:6a:ce:50:a5:46:97:5a:b4:3a:55:92:37:f9:1a:e7:59:50:
         30:15:1f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----