Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft
File:                     rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft (raw, json)
Hash identifier:          sYT1NXO2sUoUgCxDkRqJkKJJ0KsOz8Hm/PFHTlkaPdU=
Subject key identifier:   1F:74:A7:26:61:B0:82:2C:21:67:06:60:DD:7F:4D:F7:A9:AE:4B:99
Authority key identifier: AD:30:FB:43:88:EE:67:14:4A:E0:4D:DC:86:81:2D:63:E0:28:F4:78
Certificate issuer:       /CN=ad30fb4388ee67144ae04ddc86812d63e028f478
Certificate serial:       01974A7A7396998B2456BEEFA1FCF4A4CBA7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft
Manifest number:          1579
Signing time:             Sat 07 Jun 2025 13:00:28 +0000
Manifest this update:     Sat 07 Jun 2025 13:00:28 +0000
Manifest next update:     Sun 08 Jun 2025 13:00:28 +0000
Files and hashes:         1: rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl (hash: XHOmn+GFmwytFVWeEftEbHQqYjxPxbbAZyd6C99PRdA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7a:73:96:99:8b:24:56:be:ef:a1:fc:f4:a4:cb:a7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ad30fb4388ee67144ae04ddc86812d63e028f478
        Validity
            Not Before: Jun  7 13:00:28 2025 GMT
            Not After : Jun  8 13:00:28 2025 GMT
        Subject: CN=1f74a72661b0822c21670660dd7f4df7a9ae4b99
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:fd:85:e1:81:0b:2f:32:7b:9b:b4:f5:89:59:
                    9c:43:e1:8a:f1:95:34:7f:ec:c1:3e:2e:a6:f5:04:
                    95:7b:b6:64:6e:f7:e1:53:13:f4:29:56:ee:21:8e:
                    73:b1:bf:d7:ed:3d:47:71:68:e0:03:8e:20:01:6f:
                    58:73:bf:db:86:3b:aa:4f:6f:45:a5:16:7f:6d:19:
                    d1:1b:3f:20:7f:94:c3:31:1d:f7:38:a4:a3:95:c1:
                    03:f5:8a:27:f9:3b:ec:b6:b8:77:d3:46:75:4a:6e:
                    18:8d:c1:78:88:30:0e:cd:f0:f5:4e:8b:fb:5c:b5:
                    44:ab:eb:ae:c0:6e:c0:db:1f:e5:e5:24:4c:cc:1a:
                    2e:e6:1f:9a:f2:41:22:35:e4:dc:26:05:69:66:d8:
                    73:30:07:32:81:23:c8:1e:37:30:d3:77:00:41:5e:
                    69:e4:1a:3d:76:38:3b:75:cb:7f:33:37:60:39:ea:
                    9f:dd:1a:d1:32:09:8d:ed:16:d7:ed:35:78:c1:e0:
                    0d:01:5f:84:0c:80:53:57:a4:37:b3:f2:61:ed:4d:
                    5d:f8:18:cd:44:3b:ba:be:64:b5:a3:70:56:e5:7d:
                    4d:7d:90:3d:c7:51:d3:df:2d:4e:15:dd:46:a8:72:
                    02:1f:81:09:7d:3c:6f:56:7f:7e:75:e7:64:99:68:
                    e6:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1F:74:A7:26:61:B0:82:2C:21:67:06:60:DD:7F:4D:F7:A9:AE:4B:99
            X509v3 Authority Key Identifier:
                keyid:AD:30:FB:43:88:EE:67:14:4A:E0:4D:DC:86:81:2D:63:E0:28:F4:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTD7Q4juZxRK4E3choEtY-Ao9Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d341a6-98a2-4b1e-9ba4-b66044adbcb1/1/rTD7Q4juZxRK4E3choEtY-Ao9Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:c6:82:8f:42:fb:71:59:75:80:3e:58:95:4a:1b:ab:b1:bc:
         fc:b6:a8:18:35:52:2f:90:3c:94:75:ac:37:21:d6:7a:3d:3a:
         80:e6:bb:62:35:80:92:aa:ae:dd:de:71:fe:67:61:a1:4d:23:
         69:85:14:0a:d4:89:bb:b3:41:67:01:fc:56:d7:8b:0d:1b:ec:
         ac:ca:21:43:ed:70:e0:a1:44:55:b6:c1:f3:57:1b:37:14:7e:
         43:37:f6:85:d1:0a:1f:85:30:7f:96:70:0e:e9:11:79:c8:7b:
         7c:e0:a9:8e:d4:13:e1:aa:b1:02:fe:51:bf:eb:f1:3f:7f:59:
         27:c1:f9:34:2d:77:03:87:90:26:35:23:33:d8:8e:10:c4:b9:
         f6:0c:68:02:a7:4d:20:2b:45:bb:25:58:46:4a:e5:23:1e:3c:
         93:8e:f4:d6:68:b9:e0:85:8e:a6:6a:07:8a:4f:b3:78:66:64:
         5f:ac:31:cc:e7:b9:94:b9:37:6d:74:88:ee:c1:78:af:1a:5a:
         7a:d8:71:73:83:5a:92:3c:35:3d:3b:08:26:a1:a6:ce:18:e0:
         ed:63:4b:3b:57:86:d8:0f:0f:a5:49:c4:b0:d2:f5:e1:65:79:
         fa:b3:65:05:02:31:05:7f:bf:ea:58:a7:dc:7c:f8:c3:9d:7b:
         e9:31:70:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----