Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
File:                     rfjUKjroBc6WqpT66fW0QG_0VZk.mft (raw, json)
Hash identifier:          nzL/S7t4BX50YdL3gZ4i68EnmXe6dEPyKRXQBguyqEI=
Subject key identifier:   33:D5:FF:E0:89:0C:D0:59:80:05:AE:58:A0:7A:90:11:FE:40:9B:FF
Authority key identifier: AD:F8:D4:2A:3A:E8:05:CE:96:AA:94:FA:E9:F5:B4:40:6F:F4:55:99
Certificate issuer:       /CN=adf8d42a3ae805ce96aa94fae9f5b4406ff45599
Certificate serial:       01976629421BB6026CCB286A72E6CE07A708
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
Manifest number:          02F2
Signing time:             Thu 12 Jun 2025 22:01:09 +0000
Manifest this update:     Thu 12 Jun 2025 22:01:09 +0000
Manifest next update:     Fri 13 Jun 2025 22:01:09 +0000
Files and hashes:         1: rfjUKjroBc6WqpT66fW0QG_0VZk.crl (hash: 7DmrfUzdE+xsX/5kRmDEUBIJo3XtGQAPHmWonA/TAfE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:66:29:42:1b:b6:02:6c:cb:28:6a:72:e6:ce:07:a7:08
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=adf8d42a3ae805ce96aa94fae9f5b4406ff45599
        Validity
            Not Before: Jun 12 22:01:09 2025 GMT
            Not After : Jun 13 22:01:09 2025 GMT
        Subject: CN=33d5ffe0890cd0598005ae58a07a9011fe409bff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:25:ef:e6:c3:91:2a:b0:5d:24:c0:99:92:32:
                    c4:f2:49:88:8a:53:c8:24:84:27:b8:21:ad:b5:a0:
                    9e:3e:08:0e:bf:59:5e:c9:20:76:d5:8f:19:9f:ed:
                    75:f6:bc:ee:32:68:d9:e2:2b:a1:09:e3:c3:6c:61:
                    b1:4c:56:64:be:7e:bd:4e:02:09:6d:4b:77:3b:45:
                    1c:56:41:c9:48:f0:6d:08:59:ab:ca:83:10:db:fc:
                    71:8f:20:c5:93:e3:6a:30:12:22:ce:c0:7c:27:ec:
                    f9:95:60:ba:9f:21:33:50:46:e5:33:db:14:fb:ef:
                    46:fb:93:d9:29:d8:89:c6:69:2c:b2:40:48:6c:5f:
                    0c:39:fd:cc:e4:66:11:1b:47:2b:26:74:00:85:dc:
                    16:5f:bd:df:38:f0:2a:0c:53:bb:ee:fb:53:e4:b2:
                    a3:64:b9:66:97:85:f7:30:11:ee:37:fd:5c:e4:37:
                    2b:d2:17:06:24:78:9b:84:27:2c:77:4b:ca:f2:dd:
                    88:e6:13:52:6f:22:0a:ff:7f:1c:2b:ae:20:f1:65:
                    13:71:74:05:6d:c2:d1:da:ac:30:a9:29:2b:16:20:
                    38:69:e2:78:3e:36:b7:f2:20:31:ea:54:da:3d:07:
                    b3:4b:6e:d0:16:49:69:0e:21:ea:d9:f4:71:af:0c:
                    cb:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                33:D5:FF:E0:89:0C:D0:59:80:05:AE:58:A0:7A:90:11:FE:40:9B:FF
            X509v3 Authority Key Identifier:
                keyid:AD:F8:D4:2A:3A:E8:05:CE:96:AA:94:FA:E9:F5:B4:40:6F:F4:55:99

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:d6:1d:f4:2f:2e:5e:0e:f1:01:02:33:93:6d:ad:18:fc:5a:
         f7:6d:84:fc:80:43:30:8b:68:f3:56:39:06:44:04:24:89:e2:
         f6:9d:86:7d:13:64:80:34:61:82:2d:e8:d3:55:35:0d:3f:ad:
         6d:4d:4b:22:2b:c9:60:c5:65:d7:4e:bc:30:8e:61:df:50:12:
         79:cf:82:c3:b3:3d:da:ef:4a:86:dd:8f:b7:0e:a4:b8:3a:90:
         97:8b:63:61:4f:a3:57:78:4e:f3:e7:67:ff:c3:09:aa:f2:cc:
         14:0a:b4:51:b9:34:cf:f4:52:96:00:a5:ee:03:bb:cd:57:b0:
         38:e7:6f:79:bc:6f:46:d8:5c:1b:d3:c7:f7:fb:93:72:9c:bb:
         a9:c8:13:53:64:9d:fd:7d:11:41:ef:24:0d:28:4f:43:6d:37:
         8e:58:e1:8e:42:e0:02:cf:24:cc:8d:71:f2:06:03:27:d7:ca:
         88:82:5e:dc:02:e9:96:7a:0f:3c:93:38:c3:69:16:c6:b7:68:
         20:7e:71:cb:d9:45:19:0d:a1:13:9c:07:4e:cd:7b:41:02:91:
         28:c8:40:a7:14:a2:20:08:e4:be:35:db:26:21:2d:c2:f2:bc:
         78:a2:a3:bd:ea:c4:f7:5b:70:e1:7a:6e:a3:bb:e7:9c:24:60:
         9a:3e:fe:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----