Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
File:                     0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft (raw, json)
Hash identifier:          rTiWn0zMDROAZxhBH+pK6UGxElglSOlmN7eZsSoXJko=
Subject key identifier:   60:36:16:5F:C6:58:B2:F9:81:A1:8C:D6:04:D0:39:C1:BE:D7:C2:FB
Authority key identifier: D1:DB:4A:7D:1E:6A:BF:FB:CD:A7:8B:FC:33:12:50:DD:16:BE:3D:E0
Certificate issuer:       /CN=d1db4a7d1e6abffbcda78bfc331250dd16be3de0
Certificate serial:       019767DFF48A940282FD19BA035F25C85865
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
Manifest number:          0C36
Signing time:             Fri 13 Jun 2025 06:00:19 +0000
Manifest this update:     Fri 13 Jun 2025 06:00:19 +0000
Manifest next update:     Sat 14 Jun 2025 06:00:19 +0000
Files and hashes:         1: 0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl (hash: HTeohTqKPpLcYIECeC9fejtJDRcCz+NUwvYtxObX8Bw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 06:00:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:df:f4:8a:94:02:82:fd:19:ba:03:5f:25:c8:58:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d1db4a7d1e6abffbcda78bfc331250dd16be3de0
        Validity
            Not Before: Jun 13 06:00:19 2025 GMT
            Not After : Jun 14 06:00:19 2025 GMT
        Subject: CN=6036165fc658b2f981a18cd604d039c1bed7c2fb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:af:57:41:3b:43:a8:6a:d9:c3:2d:8d:04:27:
                    f6:86:98:f4:f9:8b:36:82:03:98:58:d4:d5:69:fc:
                    6d:70:e0:f5:0d:be:a7:b4:5e:e5:79:10:b4:48:bd:
                    81:22:9a:e8:1e:43:c0:14:9a:b1:41:ac:76:95:66:
                    83:e0:d5:33:03:1c:24:07:32:c2:1e:74:fd:26:40:
                    27:29:44:31:0f:dd:46:69:d0:63:fa:74:71:fb:f3:
                    ea:c4:d0:52:d6:fc:ef:ea:6f:ef:a4:2a:5f:10:b7:
                    5b:54:b5:94:a5:8b:5e:87:07:bb:3b:e9:57:b9:6a:
                    68:36:5b:0b:f1:ca:5f:64:0a:60:1a:eb:2e:8d:3e:
                    99:8f:bb:14:00:85:12:fa:95:63:ff:6e:d1:75:cc:
                    61:f4:16:4e:76:52:94:d4:d4:bc:84:a3:69:71:0f:
                    ff:e7:80:39:10:29:55:86:60:98:8d:73:24:f8:ef:
                    da:81:af:23:2f:83:c7:19:50:14:ee:6e:a8:50:4c:
                    b5:e2:31:cf:7b:a0:43:99:f4:86:ea:31:84:1b:0a:
                    23:c9:fc:2f:57:d4:66:58:2f:a2:7a:e9:55:f2:15:
                    48:5e:af:cb:4b:8b:a9:d7:e0:72:d2:62:52:66:29:
                    a8:77:8b:43:ec:82:8c:c4:39:b2:0d:6e:02:16:56:
                    c6:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:36:16:5F:C6:58:B2:F9:81:A1:8C:D6:04:D0:39:C1:BE:D7:C2:FB
            X509v3 Authority Key Identifier:
                keyid:D1:DB:4A:7D:1E:6A:BF:FB:CD:A7:8B:FC:33:12:50:DD:16:BE:3D:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:e2:b8:7a:da:d6:f5:32:f9:ff:19:c4:9e:f7:2d:e2:56:d7:
         91:f0:c7:53:5f:82:9c:fb:a3:49:ab:55:66:2d:69:a8:fb:a4:
         c0:dd:3f:d9:c7:fe:cb:1b:60:f2:e2:27:56:f7:a0:a3:81:fd:
         bc:70:6f:93:df:53:06:47:7d:9e:c7:1c:d6:e9:7c:3d:bf:55:
         b1:41:dc:bd:b4:d2:2b:6b:7a:57:03:61:c4:aa:51:a0:3c:e2:
         7b:a0:11:ac:18:b5:82:de:22:69:fd:49:ac:1e:a4:a6:cb:7c:
         70:59:47:9f:cd:54:7a:0e:46:f5:7c:d1:a1:79:82:4a:34:b8:
         1d:47:c0:29:f3:ec:53:23:af:f0:33:02:77:f4:2f:3d:70:bc:
         07:dc:70:7c:1f:ba:38:e7:0c:9e:6d:e0:8d:28:6e:45:ed:0b:
         70:88:68:64:49:67:7b:86:29:36:d7:fb:d3:9a:5b:8b:58:8a:
         0b:c9:a5:de:e9:b1:e4:9e:7a:7d:bf:48:1f:ee:ae:4d:e3:8d:
         ac:10:1a:3d:d0:b0:8d:0a:e9:e3:5b:4d:78:66:f4:ce:79:24:
         be:cf:63:1c:d9:b5:6d:30:4a:51:b6:52:59:d7:65:ac:7a:7b:
         c5:1e:7f:8f:4e:23:c0:99:42:8e:e6:1f:c7:c0:0b:2d:b8:b8:
         57:ae:51:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----