Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft
File:                     Ad0iu63J75fJwaOGG21rTE3dhoc.mft (raw, json)
Hash identifier:          ngwligO3spvLhyTWAdJ4Abw3z7C07PLYLETIgvo/LWc=
Subject key identifier:   4E:64:0E:47:11:29:49:73:0D:6B:20:9E:40:00:88:BA:21:67:5A:75
Authority key identifier: 01:DD:22:BB:AD:C9:EF:97:C9:C1:A3:86:1B:6D:6B:4C:4D:DD:86:87
Certificate issuer:       /CN=01dd22bbadc9ef97c9c1a3861b6d6b4c4ddd8687
Certificate serial:       01974C69625C86FB973B08439D1692BC5F65
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft
Manifest number:          0F6F
Signing time:             Sat 07 Jun 2025 22:01:04 +0000
Manifest this update:     Sat 07 Jun 2025 22:01:04 +0000
Manifest next update:     Sun 08 Jun 2025 22:01:04 +0000
Files and hashes:         1: Ad0iu63J75fJwaOGG21rTE3dhoc.crl (hash: bft/EvtaLO363JRyb3bt2xaPURHBlT7y5VXY3FQB6uE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 18:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4c:69:62:5c:86:fb:97:3b:08:43:9d:16:92:bc:5f:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=01dd22bbadc9ef97c9c1a3861b6d6b4c4ddd8687
        Validity
            Not Before: Jun  7 22:01:04 2025 GMT
            Not After : Jun  8 22:01:04 2025 GMT
        Subject: CN=4e640e47112949730d6b209e400088ba21675a75
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:bf:11:7c:39:2e:f2:4c:3a:60:38:0a:e0:53:
                    3b:bf:6b:81:d9:3f:85:35:5f:09:24:62:12:6d:50:
                    f8:10:d6:0a:48:39:c4:9b:85:45:97:a3:db:48:7e:
                    1b:43:d1:22:5e:3f:a8:f5:f7:c7:a2:a1:04:7e:bf:
                    55:c8:3c:8f:08:21:5f:64:ea:11:5c:e4:9c:a0:0f:
                    3c:86:f8:2b:98:33:af:5e:d8:d9:7d:b8:a6:67:48:
                    e0:c5:62:19:51:1f:37:b3:fd:31:2d:04:9a:43:1f:
                    76:f9:c3:0d:e5:4c:77:79:6d:93:b6:fe:aa:be:7d:
                    03:d1:84:8c:0b:8b:3e:d5:2a:1b:8a:14:cb:99:8e:
                    66:65:a0:17:01:a4:af:19:0e:74:01:02:2c:88:9d:
                    d8:02:8d:40:1c:48:c7:3d:2a:ec:ab:4c:6e:97:3b:
                    07:1c:7f:4e:b7:a9:ef:39:95:c5:59:b6:af:4d:a0:
                    55:eb:9b:4e:e2:34:80:1a:52:a5:42:8d:36:f9:12:
                    06:49:87:98:0f:f1:2b:34:6b:f5:cb:0c:69:a2:0d:
                    6c:12:f0:92:2a:85:d9:d4:5c:bf:80:59:12:48:1a:
                    ca:4a:05:b9:46:70:81:b2:04:54:5e:ad:13:56:b0:
                    4d:56:d3:15:cb:29:bc:f0:d4:58:fd:b4:b6:6a:d0:
                    e3:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:64:0E:47:11:29:49:73:0D:6B:20:9E:40:00:88:BA:21:67:5A:75
            X509v3 Authority Key Identifier:
                keyid:01:DD:22:BB:AD:C9:EF:97:C9:C1:A3:86:1B:6D:6B:4C:4D:DD:86:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ad0iu63J75fJwaOGG21rTE3dhoc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/857a83-6ed0-41c6-bdd6-707db2524e6b/1/Ad0iu63J75fJwaOGG21rTE3dhoc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         69:84:df:de:e6:1b:f0:04:3a:5f:51:96:f7:8d:24:ef:9d:df:
         4f:de:49:f0:26:ba:a6:c9:d9:6e:d6:3e:fa:d4:9e:ce:0d:21:
         84:9c:53:83:19:97:e3:8c:9c:1e:bc:0f:f4:16:09:fe:c8:d8:
         88:52:ea:73:3d:21:87:58:d2:57:02:ef:a5:b0:58:d3:5f:39:
         0c:80:2f:fa:6c:67:10:62:36:8f:d4:0b:c6:b6:0d:32:e6:3b:
         96:aa:c5:60:80:4f:66:12:1c:29:5e:51:e9:ec:7b:7a:55:c9:
         db:54:80:19:87:2b:05:07:46:46:5a:8d:bc:ff:d5:ac:26:9b:
         90:e4:a9:e6:c0:58:83:2b:3d:7f:07:dc:be:61:3b:41:5b:60:
         3d:55:dd:5e:ed:57:4b:9d:8a:fd:bf:b8:a4:14:33:de:c9:50:
         e0:72:52:e7:00:60:12:76:fb:e1:66:ee:cf:97:08:2e:80:72:
         2f:73:b3:63:90:61:1f:c2:21:e0:83:3b:fa:83:99:ba:69:f1:
         a5:0e:35:46:28:d0:1c:f1:2c:49:6d:21:20:88:9b:f4:fa:3b:
         92:02:e9:21:be:ed:17:a5:48:a6:8e:63:02:db:25:20:07:a6:
         94:c3:11:fe:d3:56:76:69:8e:5c:a8:48:08:ab:9e:08:e5:9f:
         94:c1:c8:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----