Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
File:                     0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft (raw, json)
Hash identifier:          dpjZmznYaBUv5a7UUpjW8y1NqbZwSbfkBbkEnmTdkJo=
Subject key identifier:   06:FF:59:45:3F:A3:9E:71:5A:9A:FA:1A:A3:24:F3:8E:64:E5:38:4B
Authority key identifier: D1:DB:4A:7D:1E:6A:BF:FB:CD:A7:8B:FC:33:12:50:DD:16:BE:3D:E0
Certificate issuer:       /CN=d1db4a7d1e6abffbcda78bfc331250dd16be3de0
Certificate serial:       01975E38C9CAEB283FF73F60780D231C729D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
Manifest number:          0C31
Signing time:             Wed 11 Jun 2025 09:01:09 +0000
Manifest this update:     Wed 11 Jun 2025 09:01:09 +0000
Manifest next update:     Thu 12 Jun 2025 09:01:09 +0000
Files and hashes:         1: 0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl (hash: W4oZpvB2SeXRxYyK1aHqJ49bCRMUF1hlGul3c2j62Cc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 08:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5e:38:c9:ca:eb:28:3f:f7:3f:60:78:0d:23:1c:72:9d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d1db4a7d1e6abffbcda78bfc331250dd16be3de0
        Validity
            Not Before: Jun 11 09:01:09 2025 GMT
            Not After : Jun 12 09:01:09 2025 GMT
        Subject: CN=06ff59453fa39e715a9afa1aa324f38e64e5384b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:8e:30:ce:2c:0e:64:75:10:05:5f:36:6d:2d:
                    cd:f6:ed:a7:57:ec:a1:31:39:73:8d:8f:26:6e:fe:
                    88:28:49:86:0a:43:94:7d:33:dd:b5:43:4d:41:aa:
                    d9:05:a6:d8:8a:16:ba:7b:72:b8:53:d1:9f:6e:ac:
                    d1:97:ba:0a:c5:af:e9:65:54:55:87:d5:f7:ef:b9:
                    e5:64:76:2b:cd:c4:67:2a:95:96:fa:25:83:d0:b3:
                    e1:df:a4:c3:98:84:76:d3:82:a1:4e:7a:af:49:8c:
                    4c:15:8e:a3:c4:00:ea:de:8b:33:0e:bb:92:91:db:
                    ea:d8:e7:e9:6c:cc:09:4a:1e:7d:0f:0c:19:ee:4c:
                    03:16:b1:0a:b4:d0:19:c9:b1:2e:98:30:c7:27:40:
                    c9:9a:a8:9f:dd:ea:cc:34:8c:44:00:6f:63:d9:16:
                    07:07:05:12:6c:a5:28:61:a5:81:f3:76:2d:33:ec:
                    64:9c:19:72:0b:08:dc:19:9d:75:92:e7:5d:9e:2e:
                    ff:fc:e6:23:d6:ca:5f:93:6c:f5:2a:85:02:67:88:
                    ed:e7:77:96:14:b2:f4:ef:db:00:38:73:78:5f:a3:
                    7b:d0:ee:fa:15:da:f3:ee:b7:00:90:52:29:d3:c5:
                    7a:ed:23:68:88:b7:2b:42:4a:94:e8:8b:51:f2:c5:
                    3d:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:FF:59:45:3F:A3:9E:71:5A:9A:FA:1A:A3:24:F3:8E:64:E5:38:4B
            X509v3 Authority Key Identifier:
                keyid:D1:DB:4A:7D:1E:6A:BF:FB:CD:A7:8B:FC:33:12:50:DD:16:BE:3D:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/15ad08-0fd0-4000-9662-cc78af4e8016/1/0dtKfR5qv_vNp4v8MxJQ3Ra-PeA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:83:a6:a9:a5:c3:f7:38:9b:2d:cc:0e:85:ad:c3:ed:d0:7d:
         89:0b:97:39:22:d5:e1:e3:34:29:f4:db:e9:9b:25:c4:6a:08:
         7b:a9:82:75:66:ae:7e:a0:dc:05:f7:2b:aa:74:5e:f9:9d:4b:
         c6:1d:92:ec:16:de:4a:2f:ce:68:8b:7d:b6:f1:8e:dc:7a:23:
         34:ef:a4:aa:67:8e:5a:2d:16:44:da:78:21:de:bd:cc:09:e5:
         7b:44:8b:8b:63:0a:f8:f9:9f:b1:53:f9:eb:98:95:e9:9a:2f:
         71:b3:4b:cd:a6:40:02:7d:f5:5b:86:2f:27:ed:67:dd:f1:28:
         68:2c:09:c5:de:2f:75:06:c9:57:b8:fa:ca:69:ee:6e:19:a4:
         64:ba:03:d8:2f:b5:5f:21:04:17:e5:33:52:6a:e2:32:08:3c:
         ba:5a:37:b1:65:00:fc:01:6e:bb:72:08:07:fb:4a:14:f8:68:
         6d:2d:64:2d:04:f2:d9:b5:4f:f9:cd:63:a4:5a:cf:f4:3d:bc:
         e1:11:70:94:da:ba:c9:2c:60:be:4e:ec:0c:3b:e2:80:a4:46:
         cf:55:59:58:ad:39:0d:e6:04:1b:36:0d:81:ab:22:76:01:15:
         ea:1f:77:a8:17:61:28:28:22:bf:47:42:1a:50:87:b1:f9:ac:
         60:1c:df:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----