Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/5ebf50-dea3-4778-8923-dfef1d2b669c/1/g8t2BW38QWNCZu0C0GkCA6dUoXs.mft
File:                     g8t2BW38QWNCZu0C0GkCA6dUoXs.mft (raw, json)
Hash identifier:          0iwvHhH+n1zo1WabU3MDx64kLfv7eW5VCMAySz9c5xA=
Subject key identifier:   A0:7E:0B:22:46:6D:D9:7B:C9:A1:E1:B4:65:98:B5:7B:EB:2E:8C:F9
Authority key identifier: 83:CB:76:05:6D:FC:41:63:42:66:ED:02:D0:69:02:03:A7:54:A1:7B
Certificate issuer:       /CN=83cb76056dfc41634266ed02d0690203a754a17b
Certificate serial:       01974E20443F2ADC24F9D0CFC88F624C5986
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/g8t2BW38QWNCZu0C0GkCA6dUoXs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6d/5ebf50-dea3-4778-8923-dfef1d2b669c/1/g8t2BW38QWNCZu0C0GkCA6dUoXs.mft
Manifest number:          33
Signing time:             Sun 08 Jun 2025 06:00:26 +0000
Manifest this update:     Sun 08 Jun 2025 06:00:26 +0000
Manifest next update:     Mon 09 Jun 2025 06:00:26 +0000
Files and hashes:         1: g8t2BW38QWNCZu0C0GkCA6dUoXs.crl (hash: bHG7TMb/HOHvcsrp+0H3/9T6a/yJ3F3CLFND9WKPzxE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6d/5ebf50-dea3-4778-8923-dfef1d2b669c/1/g8t2BW38QWNCZu0C0GkCA6dUoXs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6d/5ebf50-dea3-4778-8923-dfef1d2b669c/1/g8t2BW38QWNCZu0C0GkCA6dUoXs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/g8t2BW38QWNCZu0C0GkCA6dUoXs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:20:44:3f:2a:dc:24:f9:d0:cf:c8:8f:62:4c:59:86
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=83cb76056dfc41634266ed02d0690203a754a17b
        Validity
            Not Before: Jun  8 06:00:26 2025 GMT
            Not After : Jun  9 06:00:26 2025 GMT
        Subject: CN=a07e0b22466dd97bc9a1e1b46598b57beb2e8cf9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:49:a4:49:52:27:70:11:95:9b:39:56:af:8d:
                    7e:e6:4f:f2:5f:c3:68:fe:da:56:df:e7:a4:2b:40:
                    0e:c9:2c:7c:5b:be:3b:0a:02:fb:c1:44:4c:52:93:
                    8b:50:41:dc:d4:d0:85:f8:13:9c:c9:9b:99:ac:78:
                    af:99:e2:f2:4b:ee:26:bd:6d:be:ce:af:dd:46:cf:
                    9e:c6:80:dc:26:50:84:89:02:91:9b:c9:c4:7d:1e:
                    ea:59:05:97:8a:8d:cc:14:2d:c6:48:b8:3c:e3:9d:
                    a5:e1:ea:02:16:ea:3e:49:8b:c9:06:75:e8:52:ac:
                    af:13:42:f3:f1:8d:50:39:de:7f:1c:ea:bf:e3:6a:
                    78:63:f8:89:40:d2:e7:17:b8:e0:2c:7f:f3:8e:94:
                    f3:9c:0b:f7:01:1a:8b:b1:30:3c:8a:72:24:e6:16:
                    90:0d:e5:2c:21:08:be:4e:eb:6e:6e:25:67:e0:7b:
                    24:0c:e9:c6:3e:07:28:26:7b:22:c8:1e:c8:6a:a1:
                    99:ec:e1:82:d6:06:77:8c:35:7b:9a:65:d0:b9:24:
                    d5:ef:7e:9d:2c:27:98:3c:37:d2:aa:50:62:d7:a2:
                    8f:06:c8:14:45:5c:42:ae:2d:e1:c9:38:81:60:15:
                    62:d0:8a:0d:76:69:08:a2:f9:cd:7c:ac:b4:56:55:
                    69:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:7E:0B:22:46:6D:D9:7B:C9:A1:E1:B4:65:98:B5:7B:EB:2E:8C:F9
            X509v3 Authority Key Identifier:
                keyid:83:CB:76:05:6D:FC:41:63:42:66:ED:02:D0:69:02:03:A7:54:A1:7B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8t2BW38QWNCZu0C0GkCA6dUoXs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/5ebf50-dea3-4778-8923-dfef1d2b669c/1/g8t2BW38QWNCZu0C0GkCA6dUoXs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/5ebf50-dea3-4778-8923-dfef1d2b669c/1/g8t2BW38QWNCZu0C0GkCA6dUoXs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:56:e5:a0:58:a1:2e:dc:fc:f6:6f:c0:33:32:c5:a9:e0:8b:
         71:d0:6d:95:35:b9:35:1b:e9:3d:49:d5:70:f2:45:a3:4b:18:
         8f:10:b4:7a:cb:ee:dd:a1:1b:30:23:4a:5a:8d:a1:e3:09:e8:
         5f:be:02:dd:ef:33:3f:50:0f:d9:2f:5f:ae:27:88:58:4d:44:
         96:bd:d0:ae:4a:8e:70:68:d1:0b:4a:3d:28:16:a1:a2:b5:de:
         cb:da:4e:99:a2:d9:c1:d0:a6:6a:2b:77:75:ba:3d:31:86:b1:
         f2:7a:00:74:29:42:2e:95:c4:60:44:00:55:93:3d:9c:02:cf:
         26:1c:46:3b:da:63:0b:35:11:29:6b:8c:a4:a5:bf:5b:27:47:
         c2:d4:d5:92:de:35:a0:1f:60:d4:dd:6e:21:59:37:c9:e1:ce:
         5d:41:ea:c0:7f:a2:77:3c:f7:be:b9:9d:4f:2f:c0:7b:05:a8:
         42:74:29:6f:8e:d4:01:fe:d8:ca:fe:86:48:f7:62:56:de:25:
         17:f1:a2:91:d9:db:b7:a9:ae:00:4f:73:60:7d:2d:0e:06:ae:
         42:b8:c4:e8:ce:b7:1e:39:56:77:33:ca:a0:a0:e8:21:8c:09:
         bf:8d:8f:cc:b4:bc:ef:cb:d3:d8:8f:81:a8:6f:a1:f7:62:e0:
         89:76:69:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----