Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft
File:                     a3tNxJzDUDQveq4ssyBbn3dfZh0.mft (raw, json)
Hash identifier:          eRvjRGfNHDiVPQcYvra50akep8kOM5PJ+3QHcit6ddM=
Subject key identifier:   F3:67:E8:4B:5B:4C:CC:07:0C:8E:D4:FA:0C:34:B1:A6:6C:77:41:42
Authority key identifier: 6B:7B:4D:C4:9C:C3:50:34:2F:7A:AE:2C:B3:20:5B:9F:77:5F:66:1D
Certificate issuer:       /CN=6b7b4dc49cc350342f7aae2cb3205b9f775f661d
Certificate serial:       01974A7B6415AF109ED21D41F641BB3D0196
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/a3tNxJzDUDQveq4ssyBbn3dfZh0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft
Manifest number:          1578
Signing time:             Sat 07 Jun 2025 13:01:29 +0000
Manifest this update:     Sat 07 Jun 2025 13:01:29 +0000
Manifest next update:     Sun 08 Jun 2025 13:01:29 +0000
Files and hashes:         1: a3tNxJzDUDQveq4ssyBbn3dfZh0.crl (hash: zF/xtvol8tYE9H/hvgTIpvX4Uh3MwDYwySmuAUnEOWI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/a3tNxJzDUDQveq4ssyBbn3dfZh0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 11:24:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7b:64:15:af:10:9e:d2:1d:41:f6:41:bb:3d:01:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6b7b4dc49cc350342f7aae2cb3205b9f775f661d
        Validity
            Not Before: Jun  7 13:01:29 2025 GMT
            Not After : Jun  8 13:01:29 2025 GMT
        Subject: CN=f367e84b5b4ccc070c8ed4fa0c34b1a66c774142
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:da:29:ea:05:93:47:b3:d8:a4:4d:88:77:db:
                    b9:d8:a5:55:e1:97:53:63:80:f9:fe:3d:43:d2:9c:
                    e8:7d:5a:62:d6:17:45:fa:ca:23:a8:0c:74:0f:94:
                    e7:a8:e4:e2:64:37:7b:a8:03:30:be:7e:d7:d7:64:
                    45:f0:f4:4a:33:10:ea:52:69:37:f5:9b:b6:e1:c6:
                    2b:a6:db:f8:6a:ee:92:b7:1a:a2:04:3f:81:c0:b3:
                    8e:58:70:57:ee:86:ad:86:d3:09:0a:0a:f2:9d:94:
                    25:7f:cf:a0:b8:91:1d:2f:af:93:e1:db:0e:85:ca:
                    7c:30:c2:60:d1:f0:6a:00:2d:ee:10:40:7e:19:d4:
                    5d:32:38:e4:d5:89:77:6c:44:98:a6:4d:65:04:6e:
                    ee:50:e6:fb:05:f5:7a:ce:c3:23:af:ee:36:96:fd:
                    31:f9:bb:48:b4:95:ab:a2:2b:a4:35:b0:61:83:f2:
                    a9:e0:75:af:23:30:f9:aa:2c:f4:7e:f5:04:48:76:
                    26:63:52:fb:fe:df:f6:31:bc:71:03:a5:7a:e6:b4:
                    8b:d8:24:03:5a:87:9c:48:5f:a8:3e:dd:05:0c:21:
                    24:88:5c:e4:fc:5b:db:07:5e:2b:55:e2:c0:5b:06:
                    9f:d7:5b:d5:a7:84:99:33:89:31:e8:89:a2:b4:b6:
                    9f:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:67:E8:4B:5B:4C:CC:07:0C:8E:D4:FA:0C:34:B1:A6:6C:77:41:42
            X509v3 Authority Key Identifier:
                keyid:6B:7B:4D:C4:9C:C3:50:34:2F:7A:AE:2C:B3:20:5B:9F:77:5F:66:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3tNxJzDUDQveq4ssyBbn3dfZh0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b52709-38af-4545-a8db-c6d4c1a54a4b/1/a3tNxJzDUDQveq4ssyBbn3dfZh0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b4:71:67:a6:01:bf:f3:f2:28:1b:3e:ab:1a:a3:14:b5:e4:f3:
         fe:e7:da:2e:ca:14:ce:b7:b5:86:a1:e0:1b:b3:a4:c8:6b:a5:
         ce:e5:9b:99:f9:c0:74:d3:8b:7d:11:d4:96:db:37:4d:b2:8d:
         24:a3:f6:b2:21:9e:c5:34:3e:2d:5f:38:09:38:d2:48:02:17:
         b7:de:f4:e5:ab:c1:38:7d:61:b5:fb:c8:a3:67:d1:14:15:43:
         79:03:02:58:74:4f:06:08:ae:b9:83:29:4e:f1:9a:f1:1e:c1:
         f4:44:dd:90:1c:71:14:8d:6b:7a:c8:68:3a:e9:e5:6e:5e:5e:
         7b:57:95:6f:50:52:e0:ee:3d:ae:79:fa:a4:a8:5c:ab:d1:04:
         1f:d3:94:fb:bc:d2:2b:62:3b:23:88:15:75:c0:4c:7c:60:30:
         09:fb:f9:d0:57:70:52:8c:3c:be:1d:a0:3f:b6:b4:b0:6d:6a:
         1b:d6:fe:99:d2:31:51:fa:11:08:11:cd:55:b7:55:34:79:d5:
         91:82:72:72:ed:34:ee:2e:05:a4:b5:9f:4a:15:9b:40:d8:cd:
         ec:0a:89:05:07:5f:a5:b9:33:21:81:28:cb:31:33:3e:27:c9:
         e6:6c:4f:1f:b0:39:e1:95:11:58:da:6c:87:52:2f:91:fc:47:
         d7:dd:69:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----