Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft
File:                     xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft (raw, json)
Hash identifier:          gOTFNVWqtQi4guLQerY5joIXRWb0FL8mlBiojUez1ts=
Subject key identifier:   F9:27:AF:37:84:06:4B:6F:2A:5D:F6:3D:B3:01:58:78:3F:88:38:ED
Authority key identifier: C6:CC:F9:CE:97:D1:23:2E:01:62:FC:CD:43:F6:0C:4E:79:83:1E:1A
Certificate issuer:       /CN=c6ccf9ce97d1232e0162fccd43f60c4e79831e1a
Certificate serial:       01976583E48C7DB12B22688A9C110C366D9C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xsz5zpfRIy4BYvzNQ_YMTnmDHho.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft
Manifest number:          0CE9
Signing time:             Thu 12 Jun 2025 19:00:31 +0000
Manifest this update:     Thu 12 Jun 2025 19:00:31 +0000
Manifest next update:     Fri 13 Jun 2025 19:00:31 +0000
Files and hashes:         1: xsz5zpfRIy4BYvzNQ_YMTnmDHho.crl (hash: Efm/rHO1nO1QREtLrcy+Qd4xAtkBwN+j6JasvUbsRN8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xsz5zpfRIy4BYvzNQ_YMTnmDHho.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 19:00:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:65:83:e4:8c:7d:b1:2b:22:68:8a:9c:11:0c:36:6d:9c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c6ccf9ce97d1232e0162fccd43f60c4e79831e1a
        Validity
            Not Before: Jun 12 19:00:31 2025 GMT
            Not After : Jun 13 19:00:31 2025 GMT
        Subject: CN=f927af3784064b6f2a5df63db30158783f8838ed
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:5f:12:f8:89:56:51:5f:0e:04:6a:97:75:99:
                    dc:1b:5d:d5:47:d9:7f:7b:ea:2f:68:9c:a6:44:bb:
                    cf:72:ab:7b:58:0a:fc:27:eb:3f:24:32:da:11:e8:
                    3b:53:3e:66:7a:fb:90:19:77:7b:1d:30:b7:e8:e5:
                    3a:e1:09:9d:2d:38:c0:f4:a1:21:f1:9c:00:72:72:
                    61:72:f6:01:11:d7:e9:1b:98:43:5c:0f:d7:b8:9d:
                    bb:5d:65:f7:d4:29:80:89:ea:3f:2d:17:2a:2c:a2:
                    9b:c7:f5:f2:97:63:ab:49:9b:b5:c0:d8:fa:b5:1e:
                    2b:5f:33:3b:39:09:af:84:8e:2a:e7:38:91:8e:70:
                    9d:2c:25:42:11:3a:d7:61:ba:20:76:1d:e8:fd:74:
                    28:09:30:e6:0c:b3:d7:5c:53:3a:32:21:77:7c:3e:
                    da:bd:62:0c:74:43:33:13:83:05:71:ce:64:98:41:
                    fb:3d:12:d1:f7:bd:42:68:55:44:71:4d:cc:fa:ce:
                    c8:54:db:e6:75:81:17:a5:48:9e:7e:6b:52:e3:22:
                    2a:3b:7f:18:84:41:31:5b:67:40:f0:de:3e:0d:a2:
                    ce:51:66:7e:24:8e:89:5b:9e:9b:25:ec:87:fc:f5:
                    a9:2f:4b:22:09:0d:d5:0f:23:12:73:c4:ae:89:75:
                    ae:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F9:27:AF:37:84:06:4B:6F:2A:5D:F6:3D:B3:01:58:78:3F:88:38:ED
            X509v3 Authority Key Identifier:
                keyid:C6:CC:F9:CE:97:D1:23:2E:01:62:FC:CD:43:F6:0C:4E:79:83:1E:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsz5zpfRIy4BYvzNQ_YMTnmDHho.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/186bf2-fb88-4728-bf67-5a1e5fa73e4d/1/xsz5zpfRIy4BYvzNQ_YMTnmDHho.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:b1:56:fd:d1:9b:75:5d:ab:08:b6:c0:0d:8a:29:d1:a6:de:
         f7:cf:12:2d:bf:f8:90:cb:cf:03:4f:05:d0:7f:30:ff:a9:65:
         32:93:20:2f:40:b8:da:17:c5:15:84:ac:7c:5b:b9:09:c9:7a:
         e0:63:67:e8:7a:b7:f1:20:f0:3e:73:c3:56:f2:9d:b0:d0:e6:
         65:a0:22:f8:c3:46:2c:a3:3b:e9:a0:9d:c8:50:f6:f9:e8:41:
         74:8c:27:45:d3:2c:9d:2e:57:bb:f6:33:ec:2a:31:23:d6:15:
         b9:f9:71:2f:0b:67:28:a6:56:52:c1:36:73:e2:cf:72:5e:53:
         5d:38:f2:27:09:f6:d0:72:ff:24:cc:1a:e2:9c:88:88:11:f5:
         87:a0:90:57:0d:ca:57:64:42:22:9a:4c:3c:e9:f8:da:0e:01:
         54:b5:de:64:f2:90:50:36:b5:0f:e6:4a:30:dd:b0:af:0d:a2:
         60:89:22:e1:80:39:b6:22:c8:ad:d9:af:8b:c3:20:7a:51:20:
         ba:6b:f8:ce:e2:33:87:0b:49:55:7b:dd:d0:2e:90:26:5f:d0:
         88:a4:a8:39:11:f8:63:c2:56:cc:d8:c9:91:33:e1:31:d5:68:
         22:ef:c8:f3:09:3b:76:d9:aa:bc:10:04:55:50:f1:33:2a:2e:
         c5:ae:e0:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 03:56:45 2025 by rpki-client