Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
File:                     96wXOfUp2vTMczgkibgFl-ugf0E.mft (raw, json)
Hash identifier:          ux79JrdXZqOCENii5OQLPSPDxlVDPnA3h3sMSyubu3I=
Subject key identifier:   D3:D7:10:AE:5D:83:15:18:1C:07:70:9A:79:0F:28:1E:1A:75:13:6F
Authority key identifier: F7:AC:17:39:F5:29:DA:F4:CC:73:38:24:89:B8:05:97:EB:A0:7F:41
Certificate issuer:       /CN=f7ac1739f529daf4cc73382489b80597eba07f41
Certificate serial:       0197605DADB0DCEF03F632D8B90BEBE63D34
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
Manifest number:          07C1
Signing time:             Wed 11 Jun 2025 19:00:41 +0000
Manifest this update:     Wed 11 Jun 2025 19:00:41 +0000
Manifest next update:     Thu 12 Jun 2025 19:00:41 +0000
Files and hashes:         1: 96wXOfUp2vTMczgkibgFl-ugf0E.crl (hash: oljeaJZZkF0DM08+fisdXByorf4tig8IA6FsILLswHQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 15:40:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:60:5d:ad:b0:dc:ef:03:f6:32:d8:b9:0b:eb:e6:3d:34
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f7ac1739f529daf4cc73382489b80597eba07f41
        Validity
            Not Before: Jun 11 19:00:41 2025 GMT
            Not After : Jun 12 19:00:41 2025 GMT
        Subject: CN=d3d710ae5d8315181c07709a790f281e1a75136f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:1e:9f:b3:28:50:3d:86:8c:3f:00:ba:19:98:
                    1a:d1:04:6f:42:4b:6c:84:bc:85:03:e3:2c:38:fe:
                    df:14:bc:e8:85:e3:cd:91:ab:b3:35:ae:ec:4b:8a:
                    5a:c9:8a:a0:93:1d:23:80:8b:39:c0:95:8e:de:4e:
                    33:04:c2:40:4a:3f:c4:6a:a2:f6:c4:66:a9:4c:9c:
                    e4:b3:26:7b:58:f2:30:c2:09:ce:cc:13:0d:0f:b7:
                    66:84:fc:52:78:be:10:9c:39:bd:b5:75:ca:82:be:
                    e6:32:56:aa:d1:68:e8:ca:c9:df:a0:21:3e:30:4c:
                    fa:3f:03:a3:d1:7d:3c:87:36:be:3c:67:b0:43:0b:
                    68:0b:85:b5:44:0f:c5:1a:9e:84:e2:85:6d:8a:2a:
                    28:65:4d:a0:1c:7d:d4:73:76:20:b4:55:6b:4c:0b:
                    73:d9:99:45:af:6b:63:2c:1d:22:0c:20:83:9a:bf:
                    f6:68:a8:32:9c:08:32:07:8c:c9:86:85:2c:5d:54:
                    81:84:ac:97:1d:ec:13:b2:92:69:3c:74:45:4e:9e:
                    7b:6b:78:5e:1a:2e:63:78:16:7d:80:24:fc:64:f9:
                    3e:5f:63:4b:51:13:d8:38:36:ef:e5:f6:f7:a6:c2:
                    76:2d:32:8d:de:3e:bd:3b:ff:a1:db:25:d1:f8:39:
                    ea:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:D7:10:AE:5D:83:15:18:1C:07:70:9A:79:0F:28:1E:1A:75:13:6F
            X509v3 Authority Key Identifier:
                keyid:F7:AC:17:39:F5:29:DA:F4:CC:73:38:24:89:B8:05:97:EB:A0:7F:41

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96wXOfUp2vTMczgkibgFl-ugf0E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/83/123b25-fee4-490b-be00-0b8a792c1b9d/1/96wXOfUp2vTMczgkibgFl-ugf0E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:24:da:fb:d1:42:2a:6e:50:24:45:a0:62:3b:bd:81:eb:4e:
         01:be:06:c7:62:ff:b9:65:9d:a1:15:cc:af:ef:83:97:6f:86:
         84:c5:77:91:3a:7d:c1:ad:25:e9:6d:8b:69:9a:b4:dd:1a:76:
         85:d9:63:2a:78:52:bf:9c:2f:08:c8:56:3c:82:cc:db:f7:99:
         10:3f:cf:00:30:eb:11:bb:c6:f3:74:6c:de:fd:33:17:8a:56:
         dd:f8:77:ef:38:a6:86:e0:07:01:ac:ec:11:d4:28:5a:70:cf:
         ea:df:54:d8:d6:ed:3a:05:fb:fb:d5:1d:36:93:6a:f8:28:e2:
         be:65:34:1c:2b:72:ee:34:f5:12:9b:f8:31:f3:09:78:93:d3:
         ad:f7:bc:f3:6a:c4:33:c9:60:a0:e1:7c:56:3c:01:a2:cd:33:
         f5:aa:de:5b:b7:d8:f5:e9:84:b5:f1:4d:39:6c:69:e2:a0:fd:
         27:3c:f5:1e:5f:13:d4:77:85:bb:e6:7d:78:5f:2c:fe:f6:cc:
         a3:12:de:29:92:31:73:11:93:a2:4c:16:a0:48:ef:63:3e:ba:
         c7:31:a6:25:ba:9a:23:fd:e7:d0:59:80:fa:0b:f0:59:51:5d:
         a3:1e:c3:29:0e:52:c4:6d:23:b2:46:36:b8:e0:2d:9c:cb:f0:
         8d:a9:16:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 22:14:06 2025 by rpki-client