Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.mft
File:                     drtZ2KtKtSd87uX_CYIIQzBiex8.mft (raw, json)
Hash identifier:          Pr3mDHpgHPHS3fABdw1i49KjTLE3ntqp/CTvVZFBlk0=
Subject key identifier:   90:B2:4F:B6:05:AE:A9:B5:3E:04:20:87:B9:27:81:A4:E4:46:B9:D0
Authority key identifier: 76:BB:59:D8:AB:4A:B5:27:7C:EE:E5:FF:09:82:08:43:30:62:7B:1F
Certificate issuer:       /CN=76bb59d8ab4ab5277ceee5ff0982084330627b1f
Certificate serial:       019751FD5301B6C153ABB4BBB15F0C14002C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/drtZ2KtKtSd87uX_CYIIQzBiex8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.mft
Manifest number:          35
Signing time:             Mon 09 Jun 2025 00:00:45 +0000
Manifest this update:     Mon 09 Jun 2025 00:00:45 +0000
Manifest next update:     Tue 10 Jun 2025 00:00:45 +0000
Files and hashes:         1: drtZ2KtKtSd87uX_CYIIQzBiex8.crl (hash: hkG7045Qfvo25lervEA6gmG3/DXGQm6uzNj3F5H2SIE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/drtZ2KtKtSd87uX_CYIIQzBiex8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 17:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:51:fd:53:01:b6:c1:53:ab:b4:bb:b1:5f:0c:14:00:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=76bb59d8ab4ab5277ceee5ff0982084330627b1f
        Validity
            Not Before: Jun  9 00:00:45 2025 GMT
            Not After : Jun 10 00:00:45 2025 GMT
        Subject: CN=90b24fb605aea9b53e042087b92781a4e446b9d0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:30:d4:27:f5:b1:25:63:51:8c:6e:09:f8:6d:
                    28:8e:ec:d4:40:52:cb:ac:10:0f:c3:87:77:94:a8:
                    c2:05:3c:e1:bc:f9:08:e3:d8:d0:45:bc:42:77:9a:
                    2f:64:62:f7:2d:59:d1:2b:cd:2a:5f:54:63:ca:1d:
                    3d:08:c9:86:2d:48:e4:dd:f2:ab:b0:bc:09:01:1b:
                    ce:25:d4:b4:5e:8c:18:52:78:ed:c7:08:2e:a5:8c:
                    b8:61:8d:3b:8b:88:d8:d8:e7:1f:9d:99:b4:2a:3a:
                    5f:cb:4a:f5:89:4b:53:b0:5b:09:99:19:fb:85:37:
                    67:dc:ba:91:49:d9:91:a2:c7:6e:79:f2:3d:d4:b9:
                    43:e1:da:bc:d5:1a:cd:b4:e9:d4:ed:12:67:06:be:
                    c3:53:28:53:ad:2c:bb:84:b2:aa:3e:d5:9e:b0:78:
                    dc:35:7e:c6:b9:a2:eb:e1:f2:88:cb:41:fc:59:5f:
                    11:0d:ee:06:c2:c6:ad:9b:40:db:b9:a1:1e:5a:8f:
                    b6:ad:30:ff:87:19:00:e8:e7:8b:ee:d3:cf:37:91:
                    8d:3f:9e:d3:d9:00:57:38:c3:30:ce:46:2b:be:88:
                    a8:4d:8b:b7:46:d1:ed:3a:a6:98:02:68:99:25:f4:
                    bc:ba:fb:28:eb:e1:7e:03:10:2a:d7:45:8d:92:3b:
                    0b:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:B2:4F:B6:05:AE:A9:B5:3E:04:20:87:B9:27:81:A4:E4:46:B9:D0
            X509v3 Authority Key Identifier:
                keyid:76:BB:59:D8:AB:4A:B5:27:7C:EE:E5:FF:09:82:08:43:30:62:7B:1F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/drtZ2KtKtSd87uX_CYIIQzBiex8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/75/82d65e-e0d9-4fcd-b3ae-4d3a5c042e61/1/drtZ2KtKtSd87uX_CYIIQzBiex8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:44:7c:f7:67:46:bc:80:c7:0a:71:3f:f5:d9:2c:f7:9e:65:
         5c:69:b3:f6:75:56:20:67:b4:00:a4:43:0d:bb:17:0e:4a:ac:
         46:ff:b6:8a:80:64:18:a0:6a:71:ec:d6:00:98:e9:ec:12:73:
         23:dc:77:88:16:3c:c0:d9:48:1b:33:d0:3c:16:19:ef:aa:d7:
         ed:cf:b4:55:81:5e:c6:86:02:60:65:f3:35:7e:68:00:00:14:
         91:63:68:9b:a4:07:a7:75:3e:cc:0d:8f:6a:10:bb:de:9b:2a:
         36:cd:b4:ea:e0:5f:61:f1:c7:2d:5e:b4:e6:cc:e7:5a:01:ce:
         e1:b5:1d:39:11:cf:4e:4b:7a:19:bf:87:16:6b:79:e7:31:5d:
         f9:8f:87:b3:59:c6:c2:28:b8:57:dc:3b:84:b9:1a:f4:9c:7a:
         f5:2b:cd:55:48:b3:9f:0f:26:69:ab:ea:22:50:da:b7:1c:50:
         e5:47:ff:a3:13:b9:fa:3b:48:ec:b5:29:19:75:a2:02:19:18:
         32:31:0b:44:d8:0a:28:44:31:0e:97:0c:89:50:bb:73:b9:1b:
         c9:cb:d6:34:33:ae:e2:3d:7d:2a:08:d2:81:c2:e4:d6:74:27:
         46:2c:c0:1d:fc:8e:29:fb:c5:77:51:02:4d:22:e0:64:ce:3a:
         68:30:8b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----