Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
File:                     FW-pMchet5jGgtwy5CkJ1xySOyM.mft (raw, json)
Hash identifier:          1NapXvQStE4DoUt9vbp3kbYPM1giYFEmWSlnWgxezs4=
Subject key identifier:   E5:B9:A1:F6:85:45:B1:88:1A:B7:B5:D4:94:CB:BD:45:6B:44:47:98
Authority key identifier: 15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23
Certificate issuer:       /CN=156fa931c85eb798c682dc32e42909d71c923b23
Certificate serial:       01975346F77C282F5BB65D24507C24C7D85C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
Manifest number:          046B
Signing time:             Mon 09 Jun 2025 06:00:49 +0000
Manifest this update:     Mon 09 Jun 2025 06:00:49 +0000
Manifest next update:     Tue 10 Jun 2025 06:00:49 +0000
Files and hashes:         1: FW-pMchet5jGgtwy5CkJ1xySOyM.crl (hash: wj/iQ/hmHqUznwEUaB+nGteNlgbLaVoVUWfEpFTzGQ8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 06:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:46:f7:7c:28:2f:5b:b6:5d:24:50:7c:24:c7:d8:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=156fa931c85eb798c682dc32e42909d71c923b23
        Validity
            Not Before: Jun  9 06:00:49 2025 GMT
            Not After : Jun 10 06:00:49 2025 GMT
        Subject: CN=e5b9a1f68545b1881ab7b5d494cbbd456b444798
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:f8:c1:ce:b7:f9:f9:20:13:47:bc:76:88:c8:
                    63:e7:38:3d:92:fe:19:fa:71:78:b1:3c:66:97:f1:
                    a2:02:ae:be:79:32:6c:ce:5a:c2:62:ff:9f:6a:10:
                    ed:7f:eb:a9:f6:fe:e8:a6:58:67:7c:ca:db:36:1a:
                    b2:96:b5:4a:cc:e5:1d:15:85:2e:64:6d:d6:56:b4:
                    7e:ea:eb:fd:d6:10:54:8d:0f:17:cf:cb:4d:91:2c:
                    7d:1c:ef:1d:69:8b:33:5c:d8:46:b1:d9:75:b3:1f:
                    b2:6e:7e:cf:7c:37:4c:d9:8a:f3:59:7f:4e:b0:6a:
                    55:4f:75:77:01:8c:4a:9b:cc:cf:ff:b5:11:95:85:
                    ed:eb:7f:c9:6a:5f:9e:4c:b9:1c:19:c7:d5:01:f7:
                    94:90:43:92:13:c5:1f:e3:1b:94:65:6b:49:88:1c:
                    93:a3:23:91:87:16:2b:6c:77:81:9f:28:6a:92:13:
                    6d:17:e4:b8:32:8b:9d:04:ee:2e:99:a2:bb:be:c9:
                    d1:15:9f:bc:55:4d:e0:53:d0:d6:8a:96:92:19:3a:
                    ea:83:7b:cc:1c:5a:3d:70:5c:58:73:07:0d:14:68:
                    d8:1e:9f:16:e3:39:35:a5:62:a4:d9:1a:27:dc:7c:
                    06:50:99:2c:d9:05:59:17:e4:f1:00:0e:a0:75:47:
                    6d:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:B9:A1:F6:85:45:B1:88:1A:B7:B5:D4:94:CB:BD:45:6B:44:47:98
            X509v3 Authority Key Identifier:
                keyid:15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ac:36:24:f0:8c:d0:42:df:4e:9d:cc:8b:3f:b9:7a:d0:58:8c:
         3d:9a:7d:a8:aa:54:d4:c1:39:a1:ab:70:02:c6:3f:1c:f3:ec:
         33:2d:02:0e:85:03:5d:1d:4a:0e:18:aa:a9:1d:8b:41:1a:d3:
         02:87:d9:0a:59:7e:da:2b:5d:4d:8f:fa:01:d5:21:22:2c:d7:
         e2:06:26:d1:4e:13:a5:03:7c:6d:e7:f9:39:3f:1a:55:53:b0:
         9f:ee:2c:6f:01:5c:65:75:2b:7b:7e:4e:34:05:2e:4e:77:99:
         2f:88:8b:b5:6b:4f:fc:29:f0:89:50:d0:4f:73:7c:e6:90:aa:
         ab:be:10:87:af:8b:3e:63:3a:fb:1f:95:bc:84:c6:17:1b:b6:
         e2:de:df:1c:c4:e1:31:fc:c1:fe:ec:02:a3:4e:b8:97:db:a7:
         eb:34:3b:da:4f:6a:5d:3e:c6:d7:0c:10:21:2e:8e:fa:38:ba:
         60:72:61:f3:e1:f6:e9:2a:50:ad:90:5e:cf:e2:67:c6:25:a7:
         8e:dd:f4:14:f0:d5:95:dc:9e:07:bf:99:30:69:c1:43:87:74:
         c3:6d:a4:bf:27:ee:73:81:fc:13:aa:51:11:58:c4:40:d5:9d:
         37:ed:fb:ce:79:e3:b6:f5:04:e4:79:c7:15:80:98:46:61:fe:
         70:4c:dd:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:48:29 2025 by rpki-client