Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft
File:                     4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft (raw, json)
Hash identifier:          gGCAR2LQVlKqOaqBcoxuzDg+iKBNCjq1J9HsicXpapw=
Subject key identifier:   73:8D:FD:FF:EA:FD:1B:13:3A:B3:2C:24:AE:D1:48:3B:A4:B9:02:16
Authority key identifier: E2:AE:E5:A5:92:B3:A7:EC:73:B5:49:44:24:99:6F:7E:BE:C6:8F:BC
Certificate issuer:       /CN=e2aee5a592b3a7ec73b5494424996f7ebec68fbc
Certificate serial:       0197677333B968CEC77055C4C4FDD0A5D2B4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4q7lpZKzp-xztUlEJJlvfr7Gj7w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft
Manifest number:          1589
Signing time:             Fri 13 Jun 2025 04:01:32 +0000
Manifest this update:     Fri 13 Jun 2025 04:01:32 +0000
Manifest next update:     Sat 14 Jun 2025 04:01:32 +0000
Files and hashes:         1: 4q7lpZKzp-xztUlEJJlvfr7Gj7w.crl (hash: nPzFDWFx6G6E5MuzZIxPiNj/FnJLfXfNagsbO9cbwhU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4q7lpZKzp-xztUlEJJlvfr7Gj7w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:73:33:b9:68:ce:c7:70:55:c4:c4:fd:d0:a5:d2:b4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e2aee5a592b3a7ec73b5494424996f7ebec68fbc
        Validity
            Not Before: Jun 13 04:01:32 2025 GMT
            Not After : Jun 14 04:01:32 2025 GMT
        Subject: CN=738dfdffeafd1b133ab32c24aed1483ba4b90216
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:82:98:29:f9:3d:dc:95:94:b4:fd:75:b4:92:
                    3f:34:44:ea:7f:4a:1a:2d:3c:39:90:42:48:30:91:
                    a4:52:db:58:b1:ff:a1:e1:29:52:f3:78:16:3f:54:
                    fa:39:e7:59:4f:e4:37:a3:ca:6f:b1:6f:d7:1c:35:
                    86:23:3f:76:23:16:b1:59:b8:68:d4:54:f2:9b:76:
                    94:b2:53:a3:c8:ac:d9:cf:ee:7f:32:79:3b:43:b3:
                    0c:77:45:b2:fb:df:17:09:a5:eb:67:e4:d3:4f:1a:
                    38:bc:06:e6:34:a9:fa:ac:57:da:6b:a4:5a:96:10:
                    20:76:f1:12:9c:26:70:77:1c:58:88:ef:39:98:64:
                    2c:19:a7:21:1e:37:a3:b9:4c:7f:b1:e0:08:33:a8:
                    6d:30:8e:77:6b:d6:f9:38:df:61:2d:6a:e9:3c:18:
                    c8:33:70:33:b5:08:a7:17:1f:a2:fb:66:92:78:cf:
                    ff:1c:b0:58:95:e1:05:71:3d:14:75:2b:c2:cd:03:
                    03:33:78:55:b4:64:38:a4:69:80:46:cd:e6:5a:64:
                    14:e7:53:db:6c:ca:c4:86:a1:a5:9e:83:82:3e:e9:
                    69:4d:e6:04:47:b9:e0:1b:26:86:c4:4c:b9:43:05:
                    09:cf:2b:7e:2b:76:5d:4d:fe:3a:f1:d9:8c:ad:a1:
                    bd:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:8D:FD:FF:EA:FD:1B:13:3A:B3:2C:24:AE:D1:48:3B:A4:B9:02:16
            X509v3 Authority Key Identifier:
                keyid:E2:AE:E5:A5:92:B3:A7:EC:73:B5:49:44:24:99:6F:7E:BE:C6:8F:BC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4q7lpZKzp-xztUlEJJlvfr7Gj7w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:4c:7b:df:08:30:cb:b0:42:0d:61:66:55:f7:df:cc:45:3f:
         f6:d8:38:ba:57:de:1d:26:bc:38:4b:b6:56:48:5d:4b:0d:00:
         a3:76:62:93:e0:0d:31:f6:f7:17:63:08:e9:90:ec:45:7c:4b:
         35:2b:2e:84:db:ae:86:ae:dd:87:01:39:f4:74:4d:be:85:4b:
         0c:dd:76:c7:8d:be:5a:47:ea:35:49:13:01:de:68:ed:d2:d3:
         bb:83:c5:00:fb:34:c5:d5:c0:8f:6f:8e:01:0d:46:95:3b:00:
         87:c2:d3:a7:75:6a:67:43:85:2d:c5:68:d7:37:29:72:7d:c5:
         34:69:74:07:fd:d9:7a:89:d4:22:fe:aa:a9:eb:ef:63:af:22:
         c9:ef:f0:1a:8f:42:30:d2:a8:f7:b8:b9:8d:59:ab:27:a9:ad:
         cb:55:a6:c8:37:6d:32:4a:e0:d9:97:d2:c1:1e:a6:cc:b4:5c:
         b9:d0:d6:83:be:e1:08:59:2f:cd:0f:ff:58:c5:31:dc:f3:a4:
         3a:14:17:94:7a:7c:cb:b0:43:30:fa:43:0d:a1:08:a3:5e:ff:
         87:03:9f:64:5a:6a:91:49:51:7e:0c:56:71:48:84:6a:0b:4f:
         b4:d2:d7:bb:18:0c:aa:bc:a1:3e:1c:9e:e4:ad:27:7e:39:c6:
         45:ab:9d:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----