Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
File:                     FW-pMchet5jGgtwy5CkJ1xySOyM.mft (raw, json)
Hash identifier:          cqSq20qsaWpsOEZ2rliW93KPQaD0lFLCKk9JWWlUB3k=
Subject key identifier:   74:9F:71:9F:AE:89:D7:72:A5:B8:01:CA:9A:1E:8A:A7:8C:4B:54:4D
Authority key identifier: 15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23
Certificate issuer:       /CN=156fa931c85eb798c682dc32e42909d71c923b23
Certificate serial:       019764A82DF6B619CCE8DFFDC6C5F528A1E8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
Manifest number:          0474
Signing time:             Thu 12 Jun 2025 15:00:32 +0000
Manifest this update:     Thu 12 Jun 2025 15:00:32 +0000
Manifest next update:     Fri 13 Jun 2025 15:00:32 +0000
Files and hashes:         1: FW-pMchet5jGgtwy5CkJ1xySOyM.crl (hash: igM/1xaAOAErvuPGV2xb+99iUeEM77nxh6eL8+LKWq4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:a8:2d:f6:b6:19:cc:e8:df:fd:c6:c5:f5:28:a1:e8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=156fa931c85eb798c682dc32e42909d71c923b23
        Validity
            Not Before: Jun 12 15:00:32 2025 GMT
            Not After : Jun 13 15:00:32 2025 GMT
        Subject: CN=749f719fae89d772a5b801ca9a1e8aa78c4b544d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:9b:96:30:ea:ee:b6:6f:85:dc:97:b9:a0:10:
                    2a:dd:36:fd:65:e9:43:cf:24:0e:94:57:7d:a4:c3:
                    f2:1b:ed:4b:46:13:17:97:32:9c:34:31:a2:3d:9b:
                    76:14:dc:23:7b:56:c5:c0:9f:e8:ab:43:ee:7b:1a:
                    5c:6a:65:56:0f:9f:55:ac:6d:dc:c9:5b:10:72:3a:
                    b4:ca:48:56:14:59:7f:4f:54:04:1f:c1:98:76:80:
                    c8:74:8f:24:d2:b3:19:6a:6f:d5:0a:c3:8f:14:ec:
                    c8:45:4e:af:60:e7:20:e9:16:77:5c:09:63:52:ff:
                    c2:75:4c:fd:28:ab:3a:58:79:94:ef:6c:4d:da:1c:
                    9b:17:f5:e6:db:07:2e:f2:05:dd:ef:95:1d:b7:34:
                    ed:01:14:a2:c0:0f:9d:f1:9b:cc:12:e6:b2:70:f3:
                    02:b3:b1:ab:fc:b7:38:17:d1:d6:39:aa:47:34:4c:
                    f5:d3:4a:48:e7:c9:2f:d3:69:c8:af:a0:30:e8:9f:
                    4c:39:59:a1:35:8f:50:7d:6a:5c:2d:79:9d:0f:f7:
                    b5:44:bd:67:63:c7:4e:92:03:11:6c:71:0d:65:c3:
                    e0:cb:7c:6b:82:dc:61:ab:52:e7:0e:9d:5a:6c:a6:
                    c1:b0:f3:ae:c9:12:17:7c:10:4a:ea:2f:88:02:46:
                    e6:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:9F:71:9F:AE:89:D7:72:A5:B8:01:CA:9A:1E:8A:A7:8C:4B:54:4D
            X509v3 Authority Key Identifier:
                keyid:15:6F:A9:31:C8:5E:B7:98:C6:82:DC:32:E4:29:09:D7:1C:92:3B:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FW-pMchet5jGgtwy5CkJ1xySOyM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ec6a83-bba6-45cb-90ec-4ea806ff28cd/1/FW-pMchet5jGgtwy5CkJ1xySOyM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         17:ac:a1:c9:fe:77:c7:4c:5d:ec:45:e3:c0:e5:20:1a:d3:ee:
         34:ac:b9:07:fe:1c:42:41:c3:10:8f:f7:28:94:79:05:7b:57:
         0b:e5:a9:e4:91:6d:d9:84:c6:41:30:74:00:f5:9d:e3:6c:07:
         11:64:54:a2:6f:4f:92:6e:f2:c6:39:2d:b6:24:4f:85:de:f8:
         f4:2d:d1:82:a1:88:2d:58:4f:53:cc:ae:92:df:8e:0a:2d:3c:
         38:74:a5:8e:61:f7:83:62:4a:ff:a4:0b:a0:13:a3:52:70:12:
         d4:f3:49:ff:41:2d:bb:ab:29:0b:9b:f2:f1:d8:82:11:b0:77:
         76:8e:97:45:5b:0d:c3:c2:f0:de:6a:05:cc:f8:45:06:3e:5c:
         ab:a6:6e:f8:74:bf:75:f1:f9:41:2d:df:fc:b6:ee:f3:68:83:
         be:92:c6:bf:4b:93:6c:a0:38:e8:6d:5c:8d:61:bc:19:b6:00:
         b6:68:f0:79:93:9a:29:fe:52:71:ed:39:b8:bc:b9:aa:64:3d:
         cb:f2:ff:e8:d8:5b:fc:ea:c5:c6:f3:e8:1c:c9:6b:a1:d5:68:
         48:ec:f7:d0:24:cd:d4:b4:da:e2:8a:a4:9e:46:57:7c:4b:e5:
         c6:28:56:15:7b:9b:8a:34:2d:af:90:2d:10:77:04:5d:9a:40:
         2a:5a:f0:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 17:49:39 2025 by rpki-client