Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
File:                     U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft (raw, json)
Hash identifier:          smC4b16GlRuwW6Jt5Zp+SSLVMoC3zIiURR5V1b4r/vY=
Subject key identifier:   48:97:18:B4:2D:01:07:41:A3:CA:29:31:7F:89:24:34:CD:9F:C0:1A
Authority key identifier: 53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12
Certificate issuer:       /CN=53bf98d53522aa957081fdec28b172084394f112
Certificate serial:       01974E5847D64E79D1968CC035B0D64D4B57
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
Manifest number:          0D93
Signing time:             Sun 08 Jun 2025 07:01:37 +0000
Manifest this update:     Sun 08 Jun 2025 07:01:37 +0000
Manifest next update:     Mon 09 Jun 2025 07:01:37 +0000
Files and hashes:         1: U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl (hash: JKceCnV4lz89w37QbY2hDHFFuudMw7vXZB/yM1sHcbc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 07:01:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:58:47:d6:4e:79:d1:96:8c:c0:35:b0:d6:4d:4b:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=53bf98d53522aa957081fdec28b172084394f112
        Validity
            Not Before: Jun  8 07:01:37 2025 GMT
            Not After : Jun  9 07:01:37 2025 GMT
        Subject: CN=489718b42d010741a3ca29317f892434cd9fc01a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:53:76:38:14:29:c8:fb:d0:05:0a:8c:15:ee:
                    ba:0a:5a:6a:14:ed:e7:e2:9f:e2:d9:55:a9:16:28:
                    48:ea:9e:96:96:3a:84:7d:0d:59:bf:7c:0d:f9:98:
                    e6:09:af:b9:cd:68:71:e2:7e:8d:60:9d:df:85:49:
                    a8:09:95:09:71:f5:df:61:05:cc:38:28:31:c7:4a:
                    54:f3:85:ad:06:98:55:1d:f4:84:cf:19:b3:2c:30:
                    4b:d8:47:e6:ef:ed:4c:0a:df:48:a5:74:04:e2:55:
                    51:ef:72:c4:d4:af:06:65:f0:8a:62:9d:1c:aa:9c:
                    fa:1f:d3:cb:39:2e:31:b6:6c:12:63:e8:9e:9b:15:
                    fb:7d:d9:4d:24:cc:5b:24:95:9f:14:7c:54:13:62:
                    2c:40:28:4f:e5:e3:7d:bd:24:13:e8:2d:9b:6d:69:
                    c1:8b:4f:85:95:55:d9:6b:76:23:72:b2:f3:5f:3c:
                    f8:7a:27:04:4e:79:8c:9f:bf:e7:3b:4b:68:a1:71:
                    20:c4:9d:cf:20:35:67:32:f2:7e:fe:36:a7:21:ba:
                    13:9e:c9:18:a3:b6:c2:ee:c2:17:87:de:6a:ae:0a:
                    67:0d:bc:83:1d:bf:ff:8e:c7:7a:8f:64:cf:ff:47:
                    07:08:16:ed:3d:db:12:51:78:2f:c1:13:5b:ab:f8:
                    6e:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:97:18:B4:2D:01:07:41:A3:CA:29:31:7F:89:24:34:CD:9F:C0:1A
            X509v3 Authority Key Identifier:
                keyid:53:BF:98:D5:35:22:AA:95:70:81:FD:EC:28:B1:72:08:43:94:F1:12

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/36/063b1b-7bde-48cc-b1ac-fad707d9c4f6/1/U7-Y1TUiqpVwgf3sKLFyCEOU8RI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:13:0b:ba:6c:66:6d:47:26:3c:4c:4a:e2:65:b7:38:f8:c3:
         18:aa:e0:fa:fe:ad:e2:71:0b:02:d9:51:05:b8:99:57:17:fa:
         74:fc:7c:dd:6e:28:68:ed:8e:62:6d:f4:37:96:e7:40:51:6d:
         f3:34:13:99:f6:ec:e4:3b:d2:55:be:c7:08:4d:b9:f2:ec:57:
         7c:07:0c:77:ec:83:b2:da:a0:ad:31:7e:25:ff:ee:1a:cf:41:
         76:34:c5:f4:71:a0:1f:d7:65:72:fa:d4:82:b1:a5:6f:72:e9:
         5d:0f:40:eb:90:85:36:d9:f1:9e:b7:67:b8:d3:c6:47:6c:64:
         dc:69:36:a5:83:f9:5b:79:67:ed:f5:37:f0:92:b6:3a:4d:5f:
         59:9e:eb:f0:b7:38:8f:e8:71:94:7f:9c:01:95:94:cd:9d:c6:
         fd:a0:8c:e1:1d:3b:dc:a7:ea:c7:53:13:8d:7d:05:aa:9f:80:
         9a:f1:f3:83:5c:1b:86:d9:d4:a2:03:2f:3e:37:0f:7d:9a:47:
         2b:6e:5d:d1:9c:d3:b0:43:d9:0f:d0:23:6e:69:d9:ab:ea:37:
         9d:e5:55:06:e2:7e:b8:77:6c:75:c4:c6:6f:a7:02:37:5e:cc:
         42:b7:46:49:80:57:f6:21:51:82:20:30:a7:0c:bc:3e:40:4f:
         21:16:e7:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----