Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
File:                     IgTxXPMNc4SLB038rCYTgAYVatQ.mft (raw, json)
Hash identifier:          0UOMeK6y3pK8EkjJoFEqas7a62ZKUrcSbAb5eNi/oXk=
Subject key identifier:   25:6B:99:09:34:D8:64:C5:78:F7:8C:75:C9:88:76:05:E6:C8:CC:9C
Authority key identifier: 22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4
Certificate issuer:       /CN=2204f15cf30d73848b074dfcac26138006156ad4
Certificate serial:       0197469EB2D37FEA346BAB12A07599A31A9A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
Manifest number:          0C88
Signing time:             Fri 06 Jun 2025 19:01:34 +0000
Manifest this update:     Fri 06 Jun 2025 19:01:34 +0000
Manifest next update:     Sat 07 Jun 2025 19:01:34 +0000
Files and hashes:         1: IgTxXPMNc4SLB038rCYTgAYVatQ.crl (hash: UDjlmBjV35tiM2G51SSyUCQwXAvAs9n3HFkJsnfo/yQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 15:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:46:9e:b2:d3:7f:ea:34:6b:ab:12:a0:75:99:a3:1a:9a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2204f15cf30d73848b074dfcac26138006156ad4
        Validity
            Not Before: Jun  6 19:01:34 2025 GMT
            Not After : Jun  7 19:01:34 2025 GMT
        Subject: CN=256b990934d864c578f78c75c9887605e6c8cc9c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:bd:2a:03:50:9c:73:8d:b6:17:64:d4:73:1e:
                    d0:b9:c4:c9:37:7e:a9:83:f0:ee:8e:62:b7:1c:d3:
                    6f:e0:47:f2:ae:ee:48:35:34:34:95:78:e5:c5:94:
                    74:bf:9b:e6:07:34:51:50:e0:37:79:f0:64:79:ea:
                    71:70:54:33:01:17:1a:77:fc:98:8c:2e:f6:58:4e:
                    48:d7:c8:ba:66:11:01:9a:86:af:34:43:b1:a8:ad:
                    f7:35:a1:17:96:6a:27:2f:21:c0:21:a5:f3:ee:6d:
                    b6:d3:66:20:67:c9:87:c2:c8:3c:16:fa:aa:cc:37:
                    5b:0f:53:00:56:9e:ad:24:24:5f:80:27:77:94:0b:
                    8c:7c:0a:de:81:40:bc:12:e4:af:de:a3:b6:38:c1:
                    82:26:b1:3c:59:92:66:75:6b:1a:03:ea:25:a8:df:
                    01:b9:84:15:c7:77:5f:ca:a9:64:1e:83:f1:6e:dd:
                    e3:5d:19:61:85:2b:4e:57:9c:44:28:c9:dc:c8:30:
                    2b:ca:59:4c:d8:6b:57:f2:67:e3:21:1a:ef:bc:d2:
                    98:a3:0e:6e:61:4f:d3:3a:cd:84:46:b0:76:60:8c:
                    31:c8:2b:48:d2:6d:60:ef:7a:81:ce:86:9b:e7:33:
                    7b:2c:83:fe:dc:e3:de:f9:f8:58:56:f5:10:8a:64:
                    b3:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                25:6B:99:09:34:D8:64:C5:78:F7:8C:75:C9:88:76:05:E6:C8:CC:9C
            X509v3 Authority Key Identifier:
                keyid:22:04:F1:5C:F3:0D:73:84:8B:07:4D:FC:AC:26:13:80:06:15:6A:D4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IgTxXPMNc4SLB038rCYTgAYVatQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3872cf-aa59-4c98-b7a3-c1b10239dd58/1/IgTxXPMNc4SLB038rCYTgAYVatQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:15:12:12:78:b0:fa:a8:60:9e:15:7c:bd:c4:95:83:0c:d8:
         ad:2d:34:02:0e:61:6e:81:db:11:dd:f9:7a:85:a9:10:bc:74:
         0f:b2:c6:b0:25:1d:2f:e4:3c:d2:f9:e1:ab:f5:00:73:96:c4:
         2f:a6:d6:07:b1:a8:2d:33:9a:30:12:1a:09:a0:11:a7:9f:02:
         6b:5f:91:2b:64:de:ee:a1:fd:d7:f5:fe:3c:41:1b:9c:fb:a8:
         6e:7d:67:e6:43:d1:aa:46:b7:87:e2:db:d9:63:14:27:08:e3:
         b8:63:60:49:39:05:b4:ec:99:25:9f:ba:5f:4e:46:60:31:65:
         9c:ac:db:a0:d1:05:77:3f:50:7e:0c:b9:8f:97:c9:7b:42:8d:
         3e:52:8b:11:62:08:f1:c7:a7:91:c4:60:b1:40:a6:ad:8c:41:
         ad:5c:00:b4:7f:87:a5:d6:7b:d5:97:49:05:35:17:68:62:ef:
         53:0a:9c:3c:8c:a0:e0:d1:4d:e4:c6:80:24:b5:6d:7c:4b:b1:
         87:39:74:34:fa:fd:8f:1d:45:44:d4:ae:6c:b4:4f:ca:f1:35:
         6c:d9:f8:8a:ce:33:ff:0c:b7:fb:d0:3b:a7:aa:87:dd:43:ae:
         b5:68:59:bc:ee:73:98:bf:6e:09:24:ff:d1:19:49:a9:49:55:
         93:87:a2:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----