Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
File:                     INShQtHjFwTrW88Dp4X2N4NVt5k.mft (raw, json)
Hash identifier:          vs2waoX0W0dawc1oCMjeuOtvsd7TlTIr2jHpXFqAfpM=
Subject key identifier:   D3:E6:7C:C5:34:85:96:67:70:9A:11:F3:B8:E7:9A:EA:BC:7C:FB:FB
Authority key identifier: 20:D4:A1:42:D1:E3:17:04:EB:5B:CF:03:A7:85:F6:37:83:55:B7:99
Certificate issuer:       /CN=20d4a142d1e31704eb5bcf03a785f6378355b799
Certificate serial:       0197470B660A76404B539530F8F59D8E7D5D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
Manifest number:          059F
Signing time:             Fri 06 Jun 2025 21:00:18 +0000
Manifest this update:     Fri 06 Jun 2025 21:00:18 +0000
Manifest next update:     Sat 07 Jun 2025 21:00:18 +0000
Files and hashes:         1: INShQtHjFwTrW88Dp4X2N4NVt5k.crl (hash: 4iQe8l0xz29phj42WKW5sY+9w7+zh8W67TLFRMGZe1Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 15:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:47:0b:66:0a:76:40:4b:53:95:30:f8:f5:9d:8e:7d:5d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=20d4a142d1e31704eb5bcf03a785f6378355b799
        Validity
            Not Before: Jun  6 21:00:18 2025 GMT
            Not After : Jun  7 21:00:18 2025 GMT
        Subject: CN=d3e67cc534859667709a11f3b8e79aeabc7cfbfb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:21:1c:34:93:38:78:d5:0d:ef:cf:24:6b:4a:
                    03:37:7e:38:b0:c9:4f:67:55:77:16:62:d0:3d:21:
                    f0:36:fc:e4:e7:72:ca:1c:e8:0a:01:2f:99:74:51:
                    6a:ad:08:01:a5:1b:62:60:bd:75:27:b1:30:5d:ec:
                    49:65:26:3b:92:0a:a4:b4:18:96:48:9f:e0:a9:09:
                    e3:44:48:61:0d:7b:4c:94:55:97:d9:c5:7e:9c:a8:
                    ad:a7:6c:ac:7d:18:83:83:9f:3f:f6:37:41:25:99:
                    cf:ac:84:1b:ad:89:29:43:1c:75:c0:00:af:df:d3:
                    62:9b:e8:fd:2d:4d:81:e5:20:ab:61:ce:87:7e:a0:
                    da:40:56:8a:d9:af:75:d4:a1:4a:4c:61:fe:46:d8:
                    53:a1:11:a5:86:a5:50:c4:c9:c2:53:a2:65:a9:fe:
                    df:6c:1e:82:68:ea:20:54:40:09:72:34:9f:3b:87:
                    1d:48:33:41:6c:fb:80:11:b9:61:17:03:ef:49:40:
                    7d:0b:2e:94:e1:c4:34:2d:0a:00:04:d3:c9:fe:f1:
                    b1:2f:19:42:e4:10:cb:f5:ad:02:72:69:88:af:17:
                    f5:87:73:5f:0f:46:ff:ec:97:a0:90:36:e4:41:08:
                    de:6a:5e:4d:a8:65:a3:99:50:c4:2c:ee:40:a3:da:
                    9d:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:E6:7C:C5:34:85:96:67:70:9A:11:F3:B8:E7:9A:EA:BC:7C:FB:FB
            X509v3 Authority Key Identifier:
                keyid:20:D4:A1:42:D1:E3:17:04:EB:5B:CF:03:A7:85:F6:37:83:55:B7:99

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:ea:9f:0d:d1:88:a7:d4:29:3b:db:d6:b0:e4:0b:26:16:e8:
         0b:c7:34:bf:a2:df:45:79:05:54:59:04:27:7c:8f:d0:35:bf:
         8a:ed:4f:a2:07:3a:7f:82:e3:01:b7:33:23:72:3a:33:68:0e:
         85:ef:df:98:ef:87:60:81:e5:83:8a:e9:58:a7:b1:3a:72:44:
         93:d0:ad:b8:a5:67:7c:86:45:c5:de:61:7b:ef:ce:7e:3e:a6:
         cb:93:92:1d:39:33:ac:ad:d2:c2:ad:60:04:8e:4d:d8:1b:16:
         30:c9:37:5a:e6:b0:a9:80:75:64:8f:3a:f2:27:3a:77:eb:2d:
         44:4b:f4:65:fd:eb:23:c3:21:c9:3c:f4:1c:e2:af:c4:5b:15:
         b3:42:f3:86:19:41:03:d1:7e:9d:02:e4:1e:06:4f:a9:55:6e:
         b9:4f:9d:3d:bc:5d:cc:21:b7:be:74:b2:e2:a1:ef:d9:ff:6c:
         5f:e2:fb:b1:fe:0b:42:8c:36:5e:73:13:16:e5:e7:0d:44:01:
         3e:35:e9:fe:27:d3:b4:2a:90:50:07:bc:d7:28:c0:1c:ca:3a:
         cc:33:e2:ba:b3:bd:5a:a1:27:9b:c0:84:56:ed:f5:07:c9:25:
         d6:d1:bd:29:4a:60:5b:61:ce:95:50:5e:4b:a4:d4:1f:91:5d:
         f3:ee:76:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----