Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft
File:                     b27JJY79ACkhePqBwjzXfAKhoRA.mft (raw, json)
Hash identifier:          jmY8aFP46cA17cWlRC8x6ecxVVCqFjAJa+qvGU16r7w=
Subject key identifier:   5D:AB:80:F0:DD:11:49:3C:E9:0B:BC:7D:73:D0:10:FC:EC:D3:92:E6
Authority key identifier: 6F:6E:C9:25:8E:FD:00:29:21:78:FA:81:C2:3C:D7:7C:02:A1:A1:10
Certificate issuer:       /CN=6f6ec9258efd00292178fa81c23cd77c02a1a110
Certificate serial:       019750B379A2C293D4C260289FA48537DC74
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/b27JJY79ACkhePqBwjzXfAKhoRA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft
Manifest number:          0BFF
Signing time:             Sun 08 Jun 2025 18:00:28 +0000
Manifest this update:     Sun 08 Jun 2025 18:00:28 +0000
Manifest next update:     Mon 09 Jun 2025 18:00:28 +0000
Files and hashes:         1: b27JJY79ACkhePqBwjzXfAKhoRA.crl (hash: ncj6KIyiLrNy2auEubj4kQJIayiIr1VV8VHW0p4hJrc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/b27JJY79ACkhePqBwjzXfAKhoRA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 17:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:50:b3:79:a2:c2:93:d4:c2:60:28:9f:a4:85:37:dc:74
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6f6ec9258efd00292178fa81c23cd77c02a1a110
        Validity
            Not Before: Jun  8 18:00:28 2025 GMT
            Not After : Jun  9 18:00:28 2025 GMT
        Subject: CN=5dab80f0dd11493ce90bbc7d73d010fcecd392e6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:0a:be:ca:0c:2a:66:5a:6e:d7:fb:99:df:f1:
                    1e:ec:35:ad:bb:82:f2:37:de:55:3f:5f:41:2e:29:
                    a9:4d:ec:75:1f:72:07:85:4e:2c:f1:38:04:6f:88:
                    d1:a8:69:9c:1d:23:3e:87:c6:1b:01:20:90:97:af:
                    c9:09:cd:de:13:6f:02:f6:86:c1:47:b8:dd:00:99:
                    37:b7:25:c0:47:c9:d5:11:c5:d7:f2:fe:d8:4b:bf:
                    03:16:6d:f2:2d:25:95:59:d8:c3:d9:21:9c:0f:2f:
                    cd:1d:87:e8:3c:e8:e8:c3:26:ee:49:5a:3e:56:9f:
                    48:12:f9:70:2e:60:9c:74:30:10:45:d3:25:75:45:
                    86:3d:ed:c3:90:59:ee:34:d3:e3:63:2c:28:8d:a7:
                    8e:0d:e6:20:14:de:db:4e:4b:a0:a6:b9:ea:97:7c:
                    39:72:1a:ce:da:ca:a0:bb:f6:1d:74:56:ed:13:7a:
                    e2:78:73:8a:12:ad:02:74:3b:57:bc:43:ed:51:de:
                    86:46:b5:a4:ae:36:e0:95:e0:76:47:a0:a2:99:ea:
                    d4:67:e1:a4:63:ac:e0:11:e3:03:78:d5:0a:ba:f9:
                    be:4e:5f:06:cd:22:07:7d:2b:4c:28:ce:ac:49:9c:
                    3e:c4:ed:be:da:3f:aa:a9:4e:9c:7b:a7:f2:b1:b5:
                    c0:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:AB:80:F0:DD:11:49:3C:E9:0B:BC:7D:73:D0:10:FC:EC:D3:92:E6
            X509v3 Authority Key Identifier:
                keyid:6F:6E:C9:25:8E:FD:00:29:21:78:FA:81:C2:3C:D7:7C:02:A1:A1:10

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b27JJY79ACkhePqBwjzXfAKhoRA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/50/160d81-c728-462f-aa26-a15935064add/1/b27JJY79ACkhePqBwjzXfAKhoRA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:e2:9b:e0:0d:17:29:b2:52:02:cd:c9:05:c8:d5:c5:4a:08:
         7e:62:30:8a:86:00:c1:2f:ec:fc:dc:35:0f:41:ba:35:a3:91:
         89:dc:16:05:67:6b:bd:13:e0:35:42:3b:d3:e4:99:90:04:11:
         2f:cd:2e:1b:f0:0a:59:51:f1:8b:40:27:0e:fd:01:4f:c8:a1:
         ab:4d:1d:a0:ee:24:33:5d:66:53:66:75:9b:01:f5:74:d6:f8:
         94:c4:e6:5a:de:1b:0f:9d:ea:e9:1b:16:b8:ee:f4:b1:53:4c:
         23:23:92:40:53:27:35:73:71:22:13:f4:a9:80:29:5a:f0:f0:
         e6:44:15:e3:1c:3c:13:bf:b8:44:26:5f:f7:df:e0:26:2e:1d:
         18:6c:55:3d:40:e6:80:4e:24:54:29:d3:a8:9d:6e:6f:20:f6:
         5e:d3:dc:00:ba:ed:d9:e4:80:54:34:d4:f0:fe:67:16:ee:c7:
         23:75:3e:86:13:fe:96:ea:08:50:d3:d1:a2:04:60:c1:4d:f4:
         4f:1b:d9:b9:1b:5d:37:86:65:57:ba:1f:68:78:65:c8:6a:c9:
         47:f8:47:60:ac:40:a5:11:50:15:fd:1b:97:78:98:77:3f:87:
         85:5d:4f:ca:e5:10:54:b6:55:48:79:c2:9f:51:9f:39:85:bc:
         dd:e6:f7:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----