Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
File:                     FW-pMchet5jGgtwy5CkJ1xySOyM.mft (raw, json)
Hash identifier:          52ZWN8Q6KJnNt83pP1NXUveJnSEAZ+YWkvttsI7qcKw=
Subject key identifier:   CA:6B:57:C3:2F:49:23:C0:0A:0A:AF:08:A0:CE:83:C5:1A:09:06:6B
Authority key identifier: 15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23
Certificate issuer:       /CN=156fa931c85eb798c682dc32e42909d71c923b23
Certificate serial:       019759120DCDCC3717C744E08E627DAB883D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
Manifest number:          046E
Signing time:             Tue 10 Jun 2025 09:00:44 +0000
Manifest this update:     Tue 10 Jun 2025 09:00:44 +0000
Manifest next update:     Wed 11 Jun 2025 09:00:44 +0000
Files and hashes:         1: FW-pMchet5jGgtwy5CkJ1xySOyM.crl (hash: WNxssjX+nSOA43bgJ0R1FiPwnG/3PLEUiaYicVLCstE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:59:12:0d:cd:cc:37:17:c7:44:e0:8e:62:7d:ab:88:3d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=156fa931c85eb798c682dc32e42909d71c923b23
        Validity
            Not Before: Jun 10 09:00:44 2025 GMT
            Not After : Jun 11 09:00:44 2025 GMT
        Subject: CN=ca6b57c32f4923c00a0aaf08a0ce83c51a09066b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:25:16:bb:6c:23:5f:1c:72:07:a6:f0:27:34:
                    77:13:20:e7:73:88:b5:ae:b4:dc:a8:77:91:4d:f0:
                    83:71:20:d5:00:e0:d8:a3:98:a9:22:ba:c5:5e:44:
                    f7:1d:8d:ec:9e:91:c9:74:9b:c5:d0:3e:06:31:22:
                    7a:11:27:94:33:ee:d0:c1:8c:96:4c:d4:a9:e0:a8:
                    77:f6:0e:b2:71:de:1f:1e:1e:63:ec:2e:03:a8:00:
                    fb:81:a9:b5:b1:a3:e4:ac:c1:6b:e9:32:b4:5d:64:
                    bf:a3:de:68:fb:e6:19:c8:92:c1:31:a0:5b:81:91:
                    1a:d4:ed:9c:cb:5c:2f:67:fa:8c:0f:c7:4e:19:ac:
                    f7:d9:4a:33:08:26:41:e4:f2:01:91:80:fe:54:81:
                    c1:40:78:bd:7f:4e:0a:a5:43:7b:b6:e9:a5:df:03:
                    af:ac:61:4d:74:cf:ab:ef:ab:51:70:f3:81:39:74:
                    1c:46:a5:39:a6:58:22:5a:49:dc:d7:c7:07:da:be:
                    51:de:3d:0d:1d:c4:2b:00:04:65:f6:72:7e:f0:82:
                    f3:cc:03:11:dc:93:46:67:e3:fb:0b:5f:d2:e5:0c:
                    3a:cf:6b:b2:b3:8b:74:36:80:bb:72:e6:f1:29:b2:
                    2e:80:a9:cb:f3:04:fb:69:50:00:72:55:b4:71:43:
                    7b:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CA:6B:57:C3:2F:49:23:C0:0A:0A:AF:08:A0:CE:83:C5:1A:09:06:6B
            X509v3 Authority Key Identifier:
                keyid:15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:b4:15:f9:a5:63:c9:5e:68:98:53:fd:10:06:eb:af:18:d1:
         ac:f0:b0:88:98:a4:94:9b:6d:a6:2d:83:0c:9b:39:fd:be:7d:
         60:70:6b:9a:db:c0:94:03:bb:74:98:77:b9:ac:1c:4a:8e:01:
         5e:80:76:eb:71:a7:3e:a2:d0:77:fe:3f:6d:7c:5c:51:8f:91:
         33:a7:4e:e7:d5:4f:cc:e7:fe:86:21:8e:38:4c:3a:e2:08:a0:
         d3:fa:a9:a0:54:1a:3b:04:0e:ab:2b:6f:e2:37:e2:08:16:56:
         86:8a:d1:9c:39:02:4d:67:8f:db:03:03:21:ad:b6:d8:23:4a:
         19:f3:0d:bc:3a:10:2b:ea:06:e2:19:e6:ee:48:d2:31:b3:9e:
         58:bf:10:d4:ad:20:c2:06:83:d5:ec:33:82:a9:bc:65:0a:1b:
         f3:6a:67:d3:10:79:75:cd:82:2a:0b:d8:f0:ab:ba:6f:16:93:
         3c:67:b5:8d:5a:b5:3a:97:78:e1:2e:75:49:67:73:59:d5:5f:
         27:8a:fc:57:cf:31:39:22:ff:29:ae:36:23:75:74:f4:6f:ed:
         f6:a1:c5:11:92:28:1d:66:7a:ce:b7:fb:5e:7b:24:ae:ae:8a:
         34:8b:0c:6c:91:5a:86:7c:9a:c7:18:4a:74:96:c2:12:cd:33:
         3d:6f:a5:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 14:26:32 2025 by rpki-client