Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft
File:                     dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft (raw, json)
Hash identifier:          4tcn5mGFpy3FV2an9d4ET7iSacd7V8QrTwUrKX2IrxY=
Subject key identifier:   EE:9A:B1:F2:00:C3:C4:DA:38:AA:4B:37:B3:3F:51:40:9E:D7:85:A9
Authority key identifier: 74:23:0D:14:2E:EC:7F:6A:99:B0:DB:40:96:F9:3A:04:20:48:3F:E6
Certificate issuer:       /CN=74230d142eec7f6a99b0db4096f93a0420483fe6
Certificate serial:       019757FFE5781E375E587E2B2C593CE0060D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft
Manifest number:          0779
Signing time:             Tue 10 Jun 2025 04:01:17 +0000
Manifest this update:     Tue 10 Jun 2025 04:01:17 +0000
Manifest next update:     Wed 11 Jun 2025 04:01:17 +0000
Files and hashes:         1: dCMNFC7sf2qZsNtAlvk6BCBIP-Y.crl (hash: YHhoySBsmyuGR7w8jYhS/ObI9GHFzFMetRGuvEzXqOk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:57:ff:e5:78:1e:37:5e:58:7e:2b:2c:59:3c:e0:06:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74230d142eec7f6a99b0db4096f93a0420483fe6
        Validity
            Not Before: Jun 10 04:01:17 2025 GMT
            Not After : Jun 11 04:01:17 2025 GMT
        Subject: CN=ee9ab1f200c3c4da38aa4b37b33f51409ed785a9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:eb:e1:f2:b0:2f:dc:3c:ac:d2:61:d1:1e:bd:7e:
                    04:d3:99:eb:dc:2b:93:74:94:8c:56:f6:f6:3e:8f:
                    b5:45:fa:a4:c0:74:c7:d7:78:33:94:0d:ac:2a:c3:
                    7f:e7:a7:29:05:7a:f4:17:c0:c9:d4:3d:31:4a:8d:
                    94:c0:aa:2e:a3:80:27:28:ce:26:8a:d0:8b:20:f5:
                    43:5f:bb:3a:b8:41:a2:c2:83:1b:b9:98:cc:64:f3:
                    7a:57:f4:7b:33:8a:e4:bb:1e:30:a2:c8:f6:fb:c3:
                    cc:eb:34:9f:20:76:09:bd:75:e0:2a:a1:b8:d3:0a:
                    2b:16:96:a4:0f:16:06:95:f0:f3:03:6a:97:bf:61:
                    41:14:4e:6f:1a:26:08:26:89:fc:d1:38:73:a1:61:
                    dc:c6:8f:3d:dd:e4:99:ac:fc:b5:a1:e4:26:2f:66:
                    3a:47:a2:d9:31:06:49:5c:2a:0d:17:f1:4a:0c:77:
                    2c:f7:67:ca:b0:e6:f8:21:95:92:48:84:5a:ea:e9:
                    f1:78:0b:44:97:a6:cf:22:4c:15:ab:61:f1:9d:ca:
                    03:98:b4:4c:28:38:12:2d:d4:fd:fb:2c:a6:7e:b3:
                    ff:46:9f:61:e1:11:3c:79:a0:a9:54:4e:22:fc:3c:
                    c7:6b:c4:e1:c5:f1:a9:9b:05:0d:a4:ee:3e:0e:f4:
                    b4:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:9A:B1:F2:00:C3:C4:DA:38:AA:4B:37:B3:3F:51:40:9E:D7:85:A9
            X509v3 Authority Key Identifier:
                keyid:74:23:0D:14:2E:EC:7F:6A:99:B0:DB:40:96:F9:3A:04:20:48:3F:E6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/30/697564-0025-4f92-8dfd-ce1c03400d4d/1/dCMNFC7sf2qZsNtAlvk6BCBIP-Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         36:e7:7a:05:fc:e0:d5:1e:00:5b:c8:1a:d2:d8:2d:5e:ea:ec:
         3e:96:54:74:68:51:68:8d:33:ce:a1:54:70:4f:0e:4e:a3:a1:
         4c:e8:b5:74:a8:fd:6e:d6:f8:ac:95:63:31:35:0f:d4:ea:1f:
         0b:ce:16:29:c5:26:40:c0:0b:86:40:f9:ea:b7:ec:66:25:9e:
         66:21:96:82:6a:6b:1d:a4:9b:f6:c7:c2:43:fc:35:df:1d:39:
         19:e3:41:8c:1a:95:7e:cc:0b:b1:73:71:43:13:9c:b1:f1:9d:
         c8:8e:fc:59:e7:a9:d4:a2:2a:39:14:14:d7:3a:d7:07:e2:0a:
         7a:00:4e:ba:31:c0:63:8f:55:52:da:bf:8e:16:6e:6a:cf:8a:
         69:02:81:69:1f:36:da:d8:e9:17:a9:e7:51:75:f8:bc:dd:fe:
         3f:f9:64:21:22:78:1f:ce:fb:b3:17:ec:01:04:fc:dc:ba:91:
         03:ce:07:48:7e:a7:24:0e:04:cf:c1:db:0d:1b:73:e5:43:39:
         a9:9c:f7:e6:ff:86:dc:fe:e6:0a:6f:5b:74:41:55:f9:fc:dd:
         e2:7f:8a:fa:96:11:0e:9a:66:45:15:0f:54:9f:b0:a4:c2:30:
         c3:5b:f7:d8:59:1f:9e:5a:0c:17:1c:9a:65:f2:a2:9d:60:35:
         80:09:d7:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 10:21:10 2025 by rpki-client