Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
File:                     5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft (raw, json)
Hash identifier:          KNN5S5G/OJ/61gyEJ8aDKqlCWZFq7BVNiwHyEBNZoJQ=
Subject key identifier:   80:03:E7:2B:C5:60:0A:52:99:31:4B:B6:9B:38:15:DE:50:E8:5D:65
Authority key identifier: E7:33:B2:EA:B7:E2:34:68:7B:E9:7F:8C:35:D6:E6:CC:3E:2D:FC:BA
Certificate issuer:       /CN=e733b2eab7e234687be97f8c35d6e6cc3e2dfcba
Certificate serial:       019747426F3E1B201AA67AEF5772D213AC83
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
Manifest number:          1578
Signing time:             Fri 06 Jun 2025 22:00:25 +0000
Manifest this update:     Fri 06 Jun 2025 22:00:25 +0000
Manifest next update:     Sat 07 Jun 2025 22:00:25 +0000
Files and hashes:         1: 5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl (hash: AZc+VIqR11j/+T0tBxm86cqtQfChedIJ7pAIgcOARd4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 22:00:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:47:42:6f:3e:1b:20:1a:a6:7a:ef:57:72:d2:13:ac:83
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e733b2eab7e234687be97f8c35d6e6cc3e2dfcba
        Validity
            Not Before: Jun  6 22:00:25 2025 GMT
            Not After : Jun  7 22:00:25 2025 GMT
        Subject: CN=8003e72bc5600a5299314bb69b3815de50e85d65
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:20:e6:1d:c3:7e:7c:69:42:4f:9d:b5:b0:80:
                    d3:1b:69:70:ba:02:f6:01:35:24:a9:89:c7:35:b6:
                    05:a8:b0:86:0a:5a:59:1e:6a:de:3b:d3:b2:2c:32:
                    dd:c0:50:19:ea:04:5d:14:47:8f:27:5d:de:0c:79:
                    50:8c:2b:77:0e:ee:22:eb:e3:0d:84:18:60:03:6e:
                    d2:ca:45:1f:2b:c4:b6:bb:2e:d2:37:0b:ab:7d:5d:
                    f6:6b:5b:70:e4:85:91:ee:d6:83:be:f0:97:bb:24:
                    de:25:d7:5c:0b:a4:dd:8c:2a:ee:21:26:20:2a:bb:
                    e1:3d:ae:27:4d:9f:7a:0a:23:6d:79:11:5e:47:25:
                    cb:35:75:49:43:e5:6a:b4:2f:33:c2:6f:5b:a4:f4:
                    6c:03:75:a1:ee:bf:e0:76:33:8b:74:e5:e5:d0:dd:
                    f8:1c:f8:b9:d7:c2:51:98:2e:6a:d1:6e:b2:5d:3c:
                    2a:e1:2e:2d:52:be:ea:5b:bc:c7:8b:b7:e5:3d:72:
                    3a:bc:9a:64:74:27:46:b7:38:3d:75:96:29:1d:a3:
                    44:51:6c:27:08:f0:15:55:cf:5e:23:c3:94:1f:58:
                    e3:8f:08:33:5b:ff:5e:e4:de:b8:52:e5:92:65:09:
                    97:e5:28:c9:90:62:8f:aa:a5:97:e7:bc:47:17:58:
                    53:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:03:E7:2B:C5:60:0A:52:99:31:4B:B6:9B:38:15:DE:50:E8:5D:65
            X509v3 Authority Key Identifier:
                keyid:E7:33:B2:EA:B7:E2:34:68:7B:E9:7F:8C:35:D6:E6:CC:3E:2D:FC:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zOy6rfiNGh76X-MNdbmzD4t_Lo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/9360f5-1deb-4b43-a32f-ac44bc569a78/1/5zOy6rfiNGh76X-MNdbmzD4t_Lo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:5b:a1:b8:32:40:af:3d:81:c5:f2:15:28:b5:46:e6:40:1f:
         58:c3:37:4f:d6:9a:cf:47:fb:6c:a2:44:12:75:cd:91:87:20:
         bd:35:ae:ea:26:4c:4e:37:60:5f:f5:c1:6d:e8:5c:9a:8f:c8:
         3f:0c:54:04:d6:04:04:12:57:14:d9:f9:c1:d7:51:28:30:af:
         3f:62:25:a3:7c:c3:ba:b0:cb:eb:5f:39:9c:95:c8:0a:2b:c0:
         c1:a0:23:d4:9b:88:6a:03:23:6b:44:6c:5d:f6:42:05:6e:d3:
         fd:6a:1b:d6:a8:af:49:c2:a9:f8:85:17:f9:b2:4e:04:d4:00:
         b2:5e:19:55:0f:78:be:05:c3:5b:6a:7f:eb:0e:ff:6b:e9:cd:
         df:6a:09:7a:c8:11:67:f7:5c:fa:25:fb:98:2f:0a:8f:2c:7c:
         e7:ad:b3:94:10:6e:7e:b0:ac:b8:06:49:99:86:36:18:1f:f7:
         25:e4:f3:5c:80:f3:f8:87:5f:ff:df:6a:18:75:cc:82:22:86:
         95:21:5c:71:87:04:3e:d4:49:52:8e:60:83:82:45:ce:b4:96:
         45:17:cc:fd:52:6c:87:bc:07:dc:a0:fe:18:52:96:41:75:22:
         00:26:ec:e8:92:0f:1f:8d:b5:f9:60:1d:fd:27:ae:1e:5b:ae:
         de:50:3e:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----