Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
File:                     Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft (raw, json)
Hash identifier:          +u3vqABE6gtOE/RfE/d88v2ziOEBoT2bxNXBZn+EqGw=
Subject key identifier:   AB:B1:16:30:42:24:80:55:F0:5F:97:9C:C3:F0:01:AF:AD:A5:F6:4F
Authority key identifier: 4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14
Certificate issuer:       /CN=4b177c450d2035067baa26920b8a4bd36c7b3314
Certificate serial:       01974E583619BE92C784C4B5C6BE812A5EE0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
Manifest number:          0C91
Signing time:             Sun 08 Jun 2025 07:01:33 +0000
Manifest this update:     Sun 08 Jun 2025 07:01:33 +0000
Manifest next update:     Mon 09 Jun 2025 07:01:33 +0000
Files and hashes:         1: Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl (hash: f3wE4YDfK8vLRbvqXYffXRL6swZaD5yi4EXAKrkXP4o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 07:01:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:58:36:19:be:92:c7:84:c4:b5:c6:be:81:2a:5e:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b177c450d2035067baa26920b8a4bd36c7b3314
        Validity
            Not Before: Jun  8 07:01:33 2025 GMT
            Not After : Jun  9 07:01:33 2025 GMT
        Subject: CN=abb1163042248055f05f979cc3f001afada5f64f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:92:5c:c4:92:40:f3:de:9c:ef:a6:23:20:48:
                    34:ee:9c:87:06:96:cf:eb:24:fb:81:5a:2d:da:25:
                    dd:46:99:47:e3:89:69:b4:f6:61:5c:07:b4:9e:8a:
                    9f:87:95:d9:5a:51:d6:ab:80:21:73:34:9a:55:52:
                    f9:d0:8d:0e:63:2c:2e:82:66:a9:92:87:fd:3b:eb:
                    bd:9e:37:ff:83:b5:8a:03:1f:4e:03:c3:8d:d8:aa:
                    7b:1c:04:f7:e0:7f:71:f6:0b:ea:fd:ee:d5:9e:f7:
                    bc:a1:cd:fa:4e:ae:18:83:96:3e:a8:5a:36:05:6d:
                    bc:2f:68:67:15:12:9a:1b:24:68:df:d5:f6:eb:b0:
                    c2:76:df:30:d8:17:a9:1d:ab:97:68:f0:e6:3f:9c:
                    00:b8:f6:db:b2:f8:c9:fc:94:86:ea:01:89:43:47:
                    77:26:c4:f4:b8:05:49:f0:d3:04:13:46:af:ac:3e:
                    b5:45:84:78:5e:49:8f:3d:02:61:9a:38:df:ca:02:
                    07:ef:1a:be:f3:31:d0:b0:a4:73:6b:9e:37:6f:bd:
                    ca:88:24:06:cc:50:d2:8a:36:04:21:90:d4:08:eb:
                    ce:9f:35:26:89:93:91:94:a5:04:40:bc:9b:f1:e9:
                    de:ef:aa:31:c4:e0:0a:78:25:db:82:94:b8:47:d7:
                    78:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:B1:16:30:42:24:80:55:F0:5F:97:9C:C3:F0:01:AF:AD:A5:F6:4F
            X509v3 Authority Key Identifier:
                keyid:4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:03:1c:57:a7:a7:69:45:85:1c:26:de:93:3c:5c:1c:d6:90:
         a0:d7:96:74:96:78:be:97:0a:af:36:92:f9:b2:81:74:29:50:
         63:d6:e4:22:2f:cc:e0:bf:3e:52:c6:7c:b0:e1:99:fc:53:0f:
         01:1d:e2:f6:78:7b:b8:ec:44:e2:3d:c2:6f:21:6b:08:a5:21:
         43:0c:3e:53:f2:d5:bb:8e:35:7c:ba:53:0b:d0:4c:b8:bd:01:
         10:84:f6:7d:64:6a:a3:19:4b:fb:3a:e3:3b:45:f9:2f:a5:be:
         7c:03:c7:3c:de:9d:9b:9e:49:b2:7f:68:23:97:fc:4f:53:f9:
         01:37:e3:56:41:e8:0a:05:a4:cc:66:80:4b:ac:a6:58:6d:45:
         5c:e9:94:ea:ab:82:8c:48:f6:7f:40:82:23:5c:55:18:77:d0:
         45:7e:33:73:57:c6:0a:b9:a3:ac:7b:bf:73:f4:52:c5:32:36:
         b8:a9:2c:94:a0:fe:af:da:e4:46:83:c5:da:af:0a:47:14:38:
         b9:58:bd:fa:49:93:d8:38:be:c2:9e:33:fd:e3:14:87:1f:d8:
         24:82:28:e9:1b:a4:36:81:a6:0c:64:9a:fc:79:87:4f:a9:53:
         81:45:8c:5b:32:64:24:72:5e:3e:64:d0:ce:d5:ac:96:09:38:
         6f:1b:a2:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----