Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
File:                     Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft (raw, json)
Hash identifier:          fsc9n/vb5eOpy/eGf8heWxg+Vf/oWo+RxeBG+jP5OIE=
Subject key identifier:   0C:5D:9A:9E:AB:7E:D7:37:19:FB:94:07:58:F2:9F:31:FB:5C:FB:D2
Authority key identifier: 4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF
Certificate issuer:       /CN=4aefbcfa7f059ff10727ea619e59139da37418ef
Certificate serial:       0197488C10AA5DBC2D3E50B874A0C710FAFF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
Manifest number:          1578
Signing time:             Sat 07 Jun 2025 04:00:28 +0000
Manifest this update:     Sat 07 Jun 2025 04:00:28 +0000
Manifest next update:     Sun 08 Jun 2025 04:00:28 +0000
Files and hashes:         1: Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl (hash: DwZ/LRsqoRitckDKfIKjqeKwHyYS+TaC6FX0dqWfUa8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 22:50:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8c:10:aa:5d:bc:2d:3e:50:b8:74:a0:c7:10:fa:ff
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4aefbcfa7f059ff10727ea619e59139da37418ef
        Validity
            Not Before: Jun  7 04:00:28 2025 GMT
            Not After : Jun  8 04:00:28 2025 GMT
        Subject: CN=0c5d9a9eab7ed73719fb940758f29f31fb5cfbd2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:f6:c4:ae:f1:b5:64:0e:d9:12:94:7e:4e:39:
                    44:17:37:d9:3b:f9:43:db:05:ee:3f:87:0f:33:6f:
                    34:fc:26:e6:3d:19:eb:19:2f:d1:51:b0:a9:75:78:
                    1b:44:8e:31:d6:85:f8:55:77:e1:6f:21:c8:ab:b0:
                    03:3c:3a:09:0b:1d:01:52:03:ab:f9:2c:9b:e3:73:
                    b1:1a:27:79:7e:49:d4:21:fe:62:67:34:93:fd:eb:
                    13:34:11:d0:0f:b9:8d:63:20:d0:28:e7:43:35:5d:
                    35:52:7d:85:7b:5c:de:81:5e:0e:e3:d7:d6:64:c0:
                    c0:84:3b:fe:91:11:e1:12:ff:32:59:1d:d7:ed:00:
                    78:28:d7:c1:57:0f:f7:8a:d9:0f:31:c4:83:20:9b:
                    89:50:f0:11:c2:da:45:35:f9:67:b7:de:db:05:2e:
                    e0:50:1a:e8:e7:04:27:51:4f:d9:de:e5:2b:65:f8:
                    7b:86:e6:81:b7:e5:c2:0d:c2:bb:db:c3:8f:b5:0d:
                    4e:2d:30:77:68:c8:8c:31:70:d1:af:db:e4:b7:3e:
                    c7:41:03:fe:a3:7c:7b:97:cf:54:8a:90:34:a2:b4:
                    cf:01:f9:a0:f5:1f:84:f8:71:46:66:4c:e6:a0:84:
                    6e:a8:e1:ab:a2:36:ab:8b:56:41:c1:29:e6:af:ed:
                    e1:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0C:5D:9A:9E:AB:7E:D7:37:19:FB:94:07:58:F2:9F:31:FB:5C:FB:D2
            X509v3 Authority Key Identifier:
                keyid:4A:EF:BC:FA:7F:05:9F:F1:07:27:EA:61:9E:59:13:9D:A3:74:18:EF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/63cff3-c9eb-4211-b92e-45f56b42c6ac/1/Su-8-n8Fn_EHJ-phnlkTnaN0GO8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:56:b6:34:3f:62:38:57:77:d3:09:c5:1f:ae:ff:d4:5e:23:
         81:22:b3:ae:99:67:82:27:f1:70:bf:aa:d5:41:29:99:6a:8e:
         35:61:df:34:98:d8:79:66:ed:34:d0:06:ee:b5:08:9d:32:26:
         c1:6e:2b:f9:9e:be:3f:75:5c:37:82:d0:d3:24:39:d8:c7:71:
         76:12:88:ea:38:26:90:04:6e:3b:1c:cd:d1:de:d9:52:5f:da:
         0a:d9:c9:12:73:f5:58:42:31:2e:b4:87:6e:cf:24:b4:8c:a4:
         67:36:7a:15:1f:20:85:8d:fd:26:65:6f:e8:c0:b3:bf:de:55:
         b0:7b:86:59:d8:04:7b:47:72:ca:c7:8f:4f:25:b3:f9:bb:c1:
         7b:98:46:3b:2f:be:b2:de:bc:cd:2e:66:45:0a:5c:08:95:90:
         6b:09:fd:4f:cf:e8:be:34:9e:3a:e5:9c:06:38:a6:82:c4:df:
         9a:89:b8:30:cb:0e:27:b9:07:72:5f:b2:71:73:a5:ab:9f:95:
         bb:00:2d:7b:72:1c:d5:93:5f:c0:90:16:94:91:32:08:57:d5:
         5b:4a:8c:22:f4:cf:9e:56:96:ae:34:64:41:8e:5b:dd:03:6e:
         f6:09:03:ad:06:35:75:e8:93:83:b9:8d:1e:fd:b7:c5:c4:68:
         9b:9c:44:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----