Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.mft
File:                     oWhu-kcXfglRrIjFZNj4hQvuxdA.mft (raw, json)
Hash identifier:          MseODVsHrdYUfDUT+CswEeQ+qHbcHBH5BoXOlX+/XKQ=
Subject key identifier:   57:D1:15:05:B4:3E:75:00:2B:C0:4D:33:D5:6E:01:37:3E:2D:C4:DF
Authority key identifier: A1:68:6E:FA:47:17:7E:09:51:AC:88:C5:64:D8:F8:85:0B:EE:C5:D0
Certificate issuer:       /CN=a1686efa47177e0951ac88c564d8f8850beec5d0
Certificate serial:       019758A3E161BB90ADBF1A1CEA04EE9BA971
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oWhu-kcXfglRrIjFZNj4hQvuxdA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.mft
Manifest number:          0C14
Signing time:             Tue 10 Jun 2025 07:00:24 +0000
Manifest this update:     Tue 10 Jun 2025 07:00:24 +0000
Manifest next update:     Wed 11 Jun 2025 07:00:24 +0000
Files and hashes:         1: oWhu-kcXfglRrIjFZNj4hQvuxdA.crl (hash: mC039KrAVkTXjwU4M+1aUN4DG7dpQVwCQVl3IJqcbmY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oWhu-kcXfglRrIjFZNj4hQvuxdA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:58:a3:e1:61:bb:90:ad:bf:1a:1c:ea:04:ee:9b:a9:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1686efa47177e0951ac88c564d8f8850beec5d0
        Validity
            Not Before: Jun 10 07:00:24 2025 GMT
            Not After : Jun 11 07:00:24 2025 GMT
        Subject: CN=57d11505b43e75002bc04d33d56e01373e2dc4df
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:7e:d2:85:0a:79:76:d7:e3:5f:a2:54:f6:01:
                    eb:b6:c7:d8:db:3a:da:cc:bd:88:50:3a:50:8c:dc:
                    5d:d7:34:6a:71:80:56:e1:af:61:ac:fb:cb:63:1c:
                    48:06:42:8f:65:99:b2:1e:52:ce:a9:c6:58:c1:f3:
                    66:c9:da:4e:74:97:cb:62:95:41:46:3b:e9:81:d4:
                    83:ab:f8:51:7e:2e:d1:f6:9e:7e:25:99:f0:c4:c8:
                    35:f1:48:10:37:74:d1:33:b4:d0:f9:38:13:c9:43:
                    d3:94:ee:2d:e6:e8:16:2a:59:c4:d9:07:a4:ee:e4:
                    48:64:7e:c2:7c:75:7f:ee:9d:8e:ef:3e:d5:22:f5:
                    4b:29:4e:17:b7:03:a6:14:e5:7b:19:c2:57:4f:b6:
                    24:59:d5:05:8b:d3:eb:dc:a4:a6:06:b5:41:22:b6:
                    2c:14:92:3e:3f:ec:41:c5:2b:3a:2d:c7:d0:0a:fc:
                    ae:80:c1:a6:85:f2:10:64:23:16:83:c9:20:96:e9:
                    5e:23:fd:53:5b:37:fb:53:7c:5e:d1:27:11:c9:6c:
                    c8:27:56:b7:c8:d6:cc:59:d2:3a:8d:e2:a6:dc:bd:
                    53:17:8c:fb:e2:88:ff:64:dc:48:ae:89:5c:5e:06:
                    a8:22:01:f0:07:68:a7:be:c6:49:64:37:85:7f:1f:
                    d4:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:D1:15:05:B4:3E:75:00:2B:C0:4D:33:D5:6E:01:37:3E:2D:C4:DF
            X509v3 Authority Key Identifier:
                keyid:A1:68:6E:FA:47:17:7E:09:51:AC:88:C5:64:D8:F8:85:0B:EE:C5:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oWhu-kcXfglRrIjFZNj4hQvuxdA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/69/11d198-854f-4883-ab90-ca41b33b883a/1/oWhu-kcXfglRrIjFZNj4hQvuxdA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         02:d4:de:cd:a3:33:71:f6:d0:8b:59:1c:be:96:2a:01:f5:e6:
         d1:58:81:66:d3:13:b2:3a:ab:a5:45:59:e8:de:1f:8c:bd:ef:
         6a:05:fd:61:62:39:fd:32:d0:d8:14:a6:b0:21:d7:11:57:e3:
         27:59:25:04:80:fb:35:67:26:6f:bd:ef:f5:a2:1c:82:71:f1:
         69:98:eb:d1:eb:e7:9f:a0:48:c6:e9:5a:30:ce:bc:90:b7:e6:
         2d:9b:0e:52:79:1c:8d:0d:1e:a9:c9:2f:ae:8f:ab:b4:c1:bc:
         28:09:35:82:7c:e8:f5:8e:2c:ff:86:35:ed:bc:91:95:ae:50:
         72:e2:b4:85:a9:b4:c5:ec:c9:39:83:04:2e:94:ce:62:a3:31:
         d9:7d:24:49:df:49:a0:c3:7a:d7:62:86:f9:e8:4a:ca:c4:3b:
         4d:05:5e:b1:02:cd:66:08:74:8a:f2:0a:63:67:25:4d:30:52:
         c4:f5:ab:87:d6:38:9e:bd:31:27:ca:a5:53:ae:71:56:21:82:
         6a:87:1c:7e:e8:e7:4d:86:90:8c:d1:f8:5b:ca:59:10:03:79:
         bd:21:2e:4b:bf:00:64:a8:0b:52:3f:4c:7c:5a:8d:11:85:d9:
         51:72:72:2c:12:f0:a7:18:1a:de:ae:5c:5f:e7:88:d3:19:74:
         24:78:d6:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 10:58:16 2025 by rpki-client