Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/41f6f5-cef0-4a57-8e47-0a85986208a9/1/X1G82J639bOrCIBu9Rp8L265jvw.mft
File:                     X1G82J639bOrCIBu9Rp8L265jvw.mft (raw, json)
Hash identifier:          5msi5rA3q+a6vpEjgG4Ih9pS7/hzN+4Z9s8iK7J3Qy4=
Subject key identifier:   0F:B9:98:DF:AF:39:DA:58:B4:CD:AD:64:93:0C:DE:46:DA:53:99:1B
Authority key identifier: 5F:51:BC:D8:9E:B7:F5:B3:AB:08:80:6E:F5:1A:7C:2F:6E:B9:8E:FC
Certificate issuer:       /CN=5f51bcd89eb7f5b3ab08806ef51a7c2f6eb98efc
Certificate serial:       01975BDC917253B7A7901DEEB1CAD17A262C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/X1G82J639bOrCIBu9Rp8L265jvw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/41f6f5-cef0-4a57-8e47-0a85986208a9/1/X1G82J639bOrCIBu9Rp8L265jvw.mft
Manifest number:          158C
Signing time:             Tue 10 Jun 2025 22:01:11 +0000
Manifest this update:     Tue 10 Jun 2025 22:01:11 +0000
Manifest next update:     Wed 11 Jun 2025 22:01:11 +0000
Files and hashes:         1: X1G82J639bOrCIBu9Rp8L265jvw.crl (hash: VoIS2zu7tS71j77woz03clbahnPgriIm6FLCZoVu4C4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/41f6f5-cef0-4a57-8e47-0a85986208a9/1/X1G82J639bOrCIBu9Rp8L265jvw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/41f6f5-cef0-4a57-8e47-0a85986208a9/1/X1G82J639bOrCIBu9Rp8L265jvw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/X1G82J639bOrCIBu9Rp8L265jvw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 22:01:11 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5b:dc:91:72:53:b7:a7:90:1d:ee:b1:ca:d1:7a:26:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5f51bcd89eb7f5b3ab08806ef51a7c2f6eb98efc
        Validity
            Not Before: Jun 10 22:01:11 2025 GMT
            Not After : Jun 11 22:01:11 2025 GMT
        Subject: CN=0fb998dfaf39da58b4cdad64930cde46da53991b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:9f:e9:f1:7d:17:15:e4:bb:41:5a:ca:e9:a3:
                    e3:99:87:a8:87:6f:1e:35:7a:8f:49:fb:3c:fe:6f:
                    37:64:51:31:f9:8b:b7:e6:d7:fa:fd:b7:93:fb:40:
                    a0:3a:ab:8b:bf:40:3e:ac:29:f2:6a:42:14:a3:99:
                    86:ee:3b:0d:a5:24:64:30:ea:c7:60:cb:88:51:57:
                    0c:90:c8:36:93:10:e8:7b:f7:63:ed:83:7b:31:99:
                    a5:c3:88:7d:42:71:73:a9:4f:9e:8a:fb:41:ec:b2:
                    f8:40:05:2d:f9:0f:14:b4:4d:83:cc:3e:64:8a:1f:
                    a5:ee:14:96:58:87:0b:fa:dd:c1:db:4e:76:31:8c:
                    f1:be:ca:33:91:7e:07:c0:61:94:a7:de:be:87:d3:
                    64:9b:53:4e:d2:60:28:08:fe:8e:5e:5f:6f:2f:43:
                    3a:42:3b:29:33:38:ba:cf:f1:26:a0:a7:b0:d7:d3:
                    e9:0f:75:1d:73:31:bf:a5:8d:52:92:f2:1b:f3:e2:
                    8e:41:f2:28:56:f7:86:4d:e0:17:2c:64:a5:57:03:
                    9a:b4:84:42:e1:f8:e2:d5:25:16:74:9a:ee:0e:77:
                    9e:03:0a:a2:5e:f1:e1:49:9b:ca:46:6e:1e:56:35:
                    06:55:56:d3:5c:a1:5d:83:34:f2:7d:19:19:25:09:
                    d3:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:B9:98:DF:AF:39:DA:58:B4:CD:AD:64:93:0C:DE:46:DA:53:99:1B
            X509v3 Authority Key Identifier:
                keyid:5F:51:BC:D8:9E:B7:F5:B3:AB:08:80:6E:F5:1A:7C:2F:6E:B9:8E:FC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X1G82J639bOrCIBu9Rp8L265jvw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/41f6f5-cef0-4a57-8e47-0a85986208a9/1/X1G82J639bOrCIBu9Rp8L265jvw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/41f6f5-cef0-4a57-8e47-0a85986208a9/1/X1G82J639bOrCIBu9Rp8L265jvw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:2a:60:72:af:2a:eb:69:3d:47:9d:4a:dc:66:03:b6:51:83:
         b6:f4:2f:33:21:b1:44:ae:a0:c3:48:cf:c9:98:72:0d:76:1f:
         ad:6b:17:04:9a:6d:ad:70:99:31:0b:8b:dc:12:d5:72:af:1c:
         59:7a:78:26:93:3f:ae:1c:5f:e1:13:9d:48:d7:6a:b7:9a:2a:
         2e:90:5c:29:0d:c1:be:a5:8d:f1:fc:ef:a9:7b:0c:c2:47:11:
         2f:90:8d:bc:e4:38:92:e4:e2:02:a5:d6:df:9b:da:69:af:6a:
         e1:da:91:58:66:ed:80:50:07:50:76:0c:88:c6:d4:3b:7a:b0:
         1c:7f:7c:16:92:2e:fb:42:6b:26:76:8c:cc:45:e9:9c:ec:66:
         89:ae:0f:20:f0:c1:65:cc:6e:83:78:cb:ea:02:dc:9b:54:a5:
         ef:21:8c:c8:e7:9f:22:02:f1:43:f0:19:84:9b:69:14:92:c8:
         aa:14:4a:6d:26:e0:71:37:2c:24:63:66:96:29:40:ab:7d:ba:
         b6:a6:ee:ab:ad:c3:d4:1b:87:49:6c:b4:5d:51:c1:26:d0:a4:
         e4:67:73:ba:56:a1:9b:80:d4:4f:18:ba:9e:3f:b5:e8:1d:42:
         83:0a:e2:8c:32:1b:51:84:a9:57:5d:33:05:d0:91:d7:96:76:
         f5:a7:9b:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----