Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
File:                     sxwNSGRgtxY3A-X_TYre2XiIx00.mft (raw, json)
Hash identifier:          Y3sCmqArkGe+tUsW9EkvwmgZ0Gpxhj8zPl9v8P+9l3s=
Subject key identifier:   84:BE:55:10:0D:1F:66:BB:AA:4F:42:09:7C:2A:59:C8:24:01:C1:28
Authority key identifier: B3:1C:0D:48:64:60:B7:16:37:03:E5:FF:4D:8A:DE:D9:78:88:C7:4D
Certificate issuer:       /CN=b31c0d486460b7163703e5ff4d8aded97888c74d
Certificate serial:       01974BC43935F9F179441212FB1CABE06D3E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
Manifest number:          0732
Signing time:             Sat 07 Jun 2025 19:00:40 +0000
Manifest this update:     Sat 07 Jun 2025 19:00:40 +0000
Manifest next update:     Sun 08 Jun 2025 19:00:40 +0000
Files and hashes:         1: sxwNSGRgtxY3A-X_TYre2XiIx00.crl (hash: pUTXoU8ccfFp2mqjvAaIjBDcTSbc1OsouVj8Va+VIUU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 18:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4b:c4:39:35:f9:f1:79:44:12:12:fb:1c:ab:e0:6d:3e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b31c0d486460b7163703e5ff4d8aded97888c74d
        Validity
            Not Before: Jun  7 19:00:40 2025 GMT
            Not After : Jun  8 19:00:40 2025 GMT
        Subject: CN=84be55100d1f66bbaa4f42097c2a59c82401c128
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:e0:a9:b0:81:5e:2e:67:1c:c0:35:ce:82:dd:
                    8c:d5:31:52:aa:b8:c9:df:96:47:af:e7:e4:a4:0b:
                    80:2a:b3:f4:5c:bf:8b:c4:9e:b5:c9:43:b4:ae:fb:
                    b1:bf:8c:2c:a8:5f:2f:78:65:9e:ec:94:56:2d:5d:
                    5f:2c:5f:cd:21:7a:09:89:22:c3:d1:bd:f1:53:26:
                    50:01:58:82:09:12:a2:32:03:4c:da:d2:af:76:b3:
                    5e:ee:0c:5c:17:bb:55:0a:35:0e:81:15:ef:b2:e9:
                    f1:82:25:02:49:20:fd:8d:d9:6e:12:6c:89:12:23:
                    b5:24:da:76:d2:da:2b:fd:ec:5b:17:e0:55:d4:a5:
                    a6:9f:17:4f:3c:02:58:c2:d2:b5:a9:e9:7c:f9:fd:
                    eb:48:07:0e:64:bd:26:3b:20:47:88:d5:35:3e:6b:
                    ce:86:6e:15:23:e4:e9:be:a4:20:cd:64:f3:c8:42:
                    f9:dd:20:13:05:e8:4b:3f:70:f9:34:8b:eb:b0:28:
                    e4:ce:d8:58:5c:4e:98:9b:47:b2:20:99:8b:79:60:
                    86:95:26:4a:4a:73:8f:65:8e:91:fd:2a:3f:7d:c5:
                    6e:6c:b4:7f:be:6c:ee:63:ae:b0:66:f4:47:28:f0:
                    05:e2:f3:20:42:ed:54:3c:a1:f4:bf:a5:4f:bf:17:
                    bb:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                84:BE:55:10:0D:1F:66:BB:AA:4F:42:09:7C:2A:59:C8:24:01:C1:28
            X509v3 Authority Key Identifier:
                keyid:B3:1C:0D:48:64:60:B7:16:37:03:E5:FF:4D:8A:DE:D9:78:88:C7:4D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxwNSGRgtxY3A-X_TYre2XiIx00.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/29441c-281c-4e02-9a91-8243b7db105e/1/sxwNSGRgtxY3A-X_TYre2XiIx00.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:b7:78:70:55:9b:de:e5:e3:05:92:2b:05:23:39:82:73:20:
         6e:b1:21:e6:0f:a6:6e:4b:a6:76:be:69:8c:3f:5b:6c:17:73:
         b2:ad:8d:7b:f6:5e:8e:3d:22:63:21:61:b0:1b:ad:21:e1:bc:
         1d:0c:f1:f8:06:f4:ee:ef:c9:da:08:36:27:02:35:7b:13:b3:
         2f:c3:ff:f7:e1:e7:4a:1c:0f:ba:e2:62:9e:a8:13:3a:eb:b9:
         dc:c6:e4:5d:bf:e7:39:46:95:ab:5f:dd:12:4f:56:3a:f4:8e:
         e8:31:98:68:94:bc:bf:c5:0b:81:eb:b0:e3:ba:45:6f:0d:6c:
         df:99:f2:87:9f:5a:34:28:79:00:81:ed:52:e2:0f:1f:9e:ac:
         2e:07:24:fa:9c:ce:5d:b6:87:95:55:f8:89:df:64:60:b9:96:
         10:e3:31:a7:e9:1a:d0:8e:a7:78:6a:92:7e:19:eb:bf:68:81:
         6b:c1:78:30:02:9f:ee:08:63:7d:54:4d:5f:4c:73:24:3b:26:
         12:26:7e:ec:34:37:c1:be:ad:48:fe:b8:b2:d3:da:74:bc:5b:
         d2:cc:00:9c:7e:2d:02:57:e7:68:45:1d:be:fb:f7:a9:21:7c:
         96:13:6c:88:ef:6e:8c:53:90:bb:8c:5c:7e:45:6c:49:d1:44:
         d6:16:6f:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----