Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft
File:                     tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft (raw, json)
Hash identifier:          8iwljuc8XLZhrqn1aqrwST1NbnVNsNmUYpgqb4J3gZY=
Subject key identifier:   DE:6B:7D:B5:2B:AE:9B:FA:10:3C:9D:C9:C0:48:44:A7:5A:7B:3F:CA
Authority key identifier: B6:41:B2:88:B4:D4:13:E9:55:FE:A4:46:0B:32:BF:2C:C1:82:AF:03
Certificate issuer:       /CN=b641b288b4d413e955fea4460b32bf2cc182af03
Certificate serial:       01974DB2D09186563BCCDDB9FFDC71C75843
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tkGyiLTUE-lV_qRGCzK_LMGCrwM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft
Manifest number:          157B
Signing time:             Sun 08 Jun 2025 04:00:53 +0000
Manifest this update:     Sun 08 Jun 2025 04:00:53 +0000
Manifest next update:     Mon 09 Jun 2025 04:00:53 +0000
Files and hashes:         1: tkGyiLTUE-lV_qRGCzK_LMGCrwM.crl (hash: Zexo64J8hjiFr/YbjjlBkEFVre6jstuvbSN/aaKF+z0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tkGyiLTUE-lV_qRGCzK_LMGCrwM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4d:b2:d0:91:86:56:3b:cc:dd:b9:ff:dc:71:c7:58:43
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b641b288b4d413e955fea4460b32bf2cc182af03
        Validity
            Not Before: Jun  8 04:00:53 2025 GMT
            Not After : Jun  9 04:00:53 2025 GMT
        Subject: CN=de6b7db52bae9bfa103c9dc9c04844a75a7b3fca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:5c:ee:90:19:0a:6c:cc:45:01:39:41:be:39:
                    4e:39:20:1b:8a:3d:e0:c2:79:65:8e:d6:62:5f:db:
                    76:31:c3:3b:98:93:50:44:77:3f:52:bc:cf:3e:a4:
                    31:36:56:9a:7d:56:92:29:ba:93:93:12:36:de:b9:
                    2c:c4:9c:ca:cc:3a:95:9e:17:0c:15:2d:c3:fa:9f:
                    9d:3f:71:04:f1:13:bf:88:b1:8a:a5:76:8d:f1:26:
                    96:82:f5:b4:55:b1:45:90:4e:74:10:66:6c:98:12:
                    10:00:92:18:71:02:73:db:59:95:29:68:3b:23:95:
                    ce:4d:e6:f2:0c:fb:63:ef:d6:21:91:53:fc:0f:07:
                    c9:3b:be:ff:88:45:3c:10:1b:9a:55:d3:23:ae:57:
                    f7:73:eb:f9:da:be:61:84:76:93:80:fb:e6:a8:98:
                    33:26:69:4f:9d:e4:1e:08:2b:b8:59:36:7c:b9:a1:
                    70:13:58:13:ae:13:4e:da:fd:f4:75:a5:ab:7d:e6:
                    bf:58:f6:89:23:97:9c:58:11:7d:a4:49:27:c4:98:
                    05:84:2b:4b:48:f1:15:a1:57:4d:51:71:91:98:e7:
                    53:76:8e:39:02:c6:54:2a:b7:f6:8a:a1:28:e9:08:
                    48:10:a5:4d:9d:42:dd:ef:65:40:df:b8:f1:8d:fe:
                    ed:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DE:6B:7D:B5:2B:AE:9B:FA:10:3C:9D:C9:C0:48:44:A7:5A:7B:3F:CA
            X509v3 Authority Key Identifier:
                keyid:B6:41:B2:88:B4:D4:13:E9:55:FE:A4:46:0B:32:BF:2C:C1:82:AF:03

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tkGyiLTUE-lV_qRGCzK_LMGCrwM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/93/544f32-7c38-4a7e-9d7a-860ef33c504f/1/tkGyiLTUE-lV_qRGCzK_LMGCrwM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:ac:dc:e2:90:63:18:3b:5e:43:cd:9e:73:26:06:41:51:2e:
         ac:52:ab:e9:9d:43:c9:f9:0d:3a:bd:16:4f:83:d3:80:58:cf:
         e9:d6:5e:c0:bd:80:9b:a8:25:db:ac:7b:af:5c:ce:d7:e7:2b:
         97:e8:2f:67:8f:e0:97:bf:81:61:ea:d4:e5:60:6e:42:43:21:
         d8:9b:13:42:1c:7b:b9:25:00:11:9a:b2:fe:a5:a1:f0:23:a2:
         63:32:9c:d8:7d:fb:7d:85:df:4b:8c:77:36:2b:e8:ef:79:9f:
         64:78:b0:b2:f9:f8:d8:a6:13:9b:f6:6c:0b:6c:7f:9d:b2:bf:
         5d:d9:07:6f:c5:18:3f:16:be:c7:61:f6:e9:ce:d7:9a:df:f0:
         96:50:92:85:ee:81:f9:a5:88:72:f5:d0:7a:75:89:29:1c:34:
         2b:35:3d:e8:f7:ea:59:3f:2f:83:68:e1:64:b1:9b:d6:55:0c:
         38:8f:52:c5:86:3b:7d:68:dc:e6:32:0b:e3:bd:00:fa:3d:3f:
         f7:b6:b0:1f:b0:7a:60:a7:5e:02:5f:03:5f:58:87:b4:a3:50:
         20:d9:ac:30:fa:b1:eb:a3:a9:de:27:01:be:2d:92:83:e4:3f:
         0c:13:40:b2:c3:ed:60:32:7c:f1:cc:cf:ab:c5:22:9b:7f:d5:
         de:56:c5:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----