Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
File:                     aDjl4BZgX27c1MlhwZys9YFMeKM.mft (raw, json)
Hash identifier:          ddeaxc+YBwlMdoqBwh+aNYYx30HyGoOe1C1jGfbh/Qs=
Subject key identifier:   60:80:10:D5:3E:A8:9A:CB:95:E4:36:A4:BA:FC:41:6B:2F:66:97:61
Authority key identifier: 68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3
Certificate issuer:       /CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
Certificate serial:       019768173BDF86B4214DE8A363967F3A149D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
Manifest number:          0FC8
Signing time:             Fri 13 Jun 2025 07:00:42 +0000
Manifest this update:     Fri 13 Jun 2025 07:00:42 +0000
Manifest next update:     Sat 14 Jun 2025 07:00:42 +0000
Files and hashes:         1: aDjl4BZgX27c1MlhwZys9YFMeKM.crl (hash: 4J6J49doLYKx0054R4cQDkiLBNXkKwWeCCXx/4aj+eI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:17:3b:df:86:b4:21:4d:e8:a3:63:96:7f:3a:14:9d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
        Validity
            Not Before: Jun 13 07:00:42 2025 GMT
            Not After : Jun 14 07:00:42 2025 GMT
        Subject: CN=608010d53ea89acb95e436a4bafc416b2f669761
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:65:d1:58:0d:73:44:23:7e:a9:53:5c:b3:e1:
                    c0:46:85:61:db:90:98:c9:a9:23:47:37:fc:9f:42:
                    89:71:54:ae:70:9e:00:f6:54:85:f1:db:d3:3d:e3:
                    e8:df:d7:90:55:f0:1c:77:6b:98:e8:83:d1:40:55:
                    b2:7c:e6:6a:ba:0b:a4:eb:72:cc:a8:00:b4:66:a0:
                    ab:9a:b5:07:ad:c8:8c:61:3e:3b:fe:6d:0a:1b:7f:
                    81:2d:e1:8a:1b:6e:9f:db:0d:fa:93:6d:4f:74:36:
                    b7:40:70:10:ff:e0:9c:bd:a8:93:59:bc:22:87:c6:
                    ef:29:a3:66:70:01:cc:d7:40:b2:7d:be:0b:6d:93:
                    ae:0c:af:3f:0d:04:2d:57:73:59:dc:55:49:2c:c3:
                    a6:ce:cc:90:c5:b2:55:1f:6a:9a:10:c6:83:cb:45:
                    b4:0c:87:a1:ea:03:74:13:23:b6:69:5a:ad:d1:43:
                    e3:f7:83:ec:c9:a5:df:99:1e:46:27:c0:58:f8:c1:
                    b6:2f:c7:75:fe:8b:20:95:45:51:dd:0f:81:4b:0d:
                    5d:42:ff:ef:59:bb:7c:60:54:a1:d6:be:52:a2:ff:
                    96:fb:90:2c:3a:9e:31:73:95:ab:65:3f:f3:ff:2e:
                    e2:8c:97:f7:75:96:be:35:b7:5a:2f:c5:22:aa:97:
                    9f:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:80:10:D5:3E:A8:9A:CB:95:E4:36:A4:BA:FC:41:6B:2F:66:97:61
            X509v3 Authority Key Identifier:
                keyid:68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:82:44:7b:2c:5d:97:ba:1d:86:e4:7c:ea:75:89:55:ad:d7:
         c7:69:1b:d9:db:82:ff:f1:7b:bd:fe:b5:89:1a:b1:16:51:db:
         48:58:f3:e5:ae:f1:c5:23:6a:f4:3d:e8:54:43:01:9e:8e:9c:
         34:45:3c:05:b5:62:2b:cc:1d:ff:0b:59:43:f7:de:3e:93:61:
         ec:00:38:80:1c:f9:1e:61:48:ad:99:f6:eb:3d:65:a0:2f:12:
         bb:f6:e3:ac:50:0f:6b:c5:2c:f7:a6:5d:f4:7c:4a:ef:c0:32:
         78:bc:7f:65:db:c0:a2:0c:f1:64:07:43:82:24:f5:ca:02:49:
         52:9a:88:10:8d:0a:5d:0e:8a:19:ed:78:22:87:7d:9a:00:be:
         00:8c:22:10:e9:25:ad:1f:5b:ad:50:34:05:eb:57:d2:81:df:
         3a:a1:39:53:47:5a:0c:fc:b0:d5:35:ba:4c:72:fa:dd:41:99:
         43:17:a6:7e:7f:39:04:b8:7c:d6:90:3c:de:56:a5:83:ab:67:
         ad:84:af:cd:58:63:e1:2a:05:f2:b4:df:b1:ea:0f:94:ef:d4:
         16:14:c3:0c:a7:93:8f:42:23:33:e3:28:f8:61:53:9d:8e:ca:
         38:60:46:9f:7e:97:5f:8d:9f:6e:98:ce:24:0b:81:83:d3:c7:
         77:4a:9a:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----