Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft
File:                     oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft (raw, json)
Hash identifier:          e5CZicrBqKjCcpurGv+fpyI4/OvFV4wb33b6ptTf4go=
Subject key identifier:   67:95:30:67:5E:12:99:0E:9E:E8:40:0E:5A:1A:39:7D:E2:E3:AD:A3
Authority key identifier: A1:0F:34:1D:3A:B5:63:B9:FC:40:98:0A:E7:C1:74:02:C2:15:EF:2A
Certificate issuer:       /CN=a10f341d3ab563b9fc40980ae7c17402c215ef2a
Certificate serial:       0197469DBBFE678B516E676D6F2BE10B428A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oQ80HTq1Y7n8QJgK58F0AsIV7yo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft
Manifest number:          1577
Signing time:             Fri 06 Jun 2025 19:00:31 +0000
Manifest this update:     Fri 06 Jun 2025 19:00:31 +0000
Manifest next update:     Sat 07 Jun 2025 19:00:31 +0000
Files and hashes:         1: oQ80HTq1Y7n8QJgK58F0AsIV7yo.crl (hash: 2fOhDJhTezOqksTSgDTTmhKoDK8r2hOjekP/toWftbs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oQ80HTq1Y7n8QJgK58F0AsIV7yo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 19:00:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:46:9d:bb:fe:67:8b:51:6e:67:6d:6f:2b:e1:0b:42:8a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a10f341d3ab563b9fc40980ae7c17402c215ef2a
        Validity
            Not Before: Jun  6 19:00:31 2025 GMT
            Not After : Jun  7 19:00:31 2025 GMT
        Subject: CN=679530675e12990e9ee8400e5a1a397de2e3ada3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:43:89:f0:e3:05:87:53:87:40:c6:91:72:ad:
                    5a:ba:e8:f6:83:d5:1f:ad:98:91:46:c9:02:27:94:
                    94:3e:28:9e:80:c7:b8:43:0e:bd:7a:b9:68:23:23:
                    fd:2a:b3:53:05:e8:7e:8d:6f:4a:0d:5f:6b:67:c9:
                    e4:13:b0:04:c8:52:33:0f:af:b3:6a:9d:aa:27:df:
                    93:5f:af:90:c0:61:b1:26:15:63:ed:b6:76:93:13:
                    84:03:06:a6:c1:b7:a3:59:d5:ff:13:4e:45:92:59:
                    c5:1d:70:7d:35:fc:55:6d:14:0c:a9:58:4a:0f:cb:
                    4f:8d:80:49:98:d7:0e:21:03:69:fc:01:0b:b8:00:
                    0c:f8:b2:d9:20:aa:73:00:d1:72:b9:04:1d:ac:4f:
                    57:5d:52:b2:85:fc:6b:de:f3:e6:bd:ea:ea:b9:bd:
                    d3:33:50:71:f1:21:2f:ec:03:a6:15:4e:64:4f:1f:
                    91:80:56:85:56:a7:ab:61:75:2c:0f:d7:d6:3d:c0:
                    80:78:47:d8:5f:fd:ce:10:6f:ac:ec:96:09:76:8b:
                    0d:f0:a9:40:93:7c:69:0a:e3:b7:3a:e4:e7:b4:ec:
                    1b:60:85:aa:f8:2d:c4:d8:21:75:83:a4:5f:d3:56:
                    79:38:2f:6d:bc:bf:60:2c:d8:86:34:e3:6b:77:30:
                    1b:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:95:30:67:5E:12:99:0E:9E:E8:40:0E:5A:1A:39:7D:E2:E3:AD:A3
            X509v3 Authority Key Identifier:
                keyid:A1:0F:34:1D:3A:B5:63:B9:FC:40:98:0A:E7:C1:74:02:C2:15:EF:2A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oQ80HTq1Y7n8QJgK58F0AsIV7yo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8b2f14-c329-4cbb-ad41-17407165afe6/1/oQ80HTq1Y7n8QJgK58F0AsIV7yo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:0a:da:a4:2e:77:eb:7e:b0:a4:c8:95:f2:df:f5:84:b6:59:
         73:ed:1f:3b:3d:b3:ba:a6:b5:f6:5a:eb:a8:44:76:f3:ce:6c:
         85:83:d3:31:de:3b:85:b7:78:90:07:7a:b6:7e:22:9b:9e:dd:
         0f:e7:fd:58:1c:fc:51:bc:1e:c6:cb:1a:59:ed:f7:84:d4:44:
         44:64:4f:58:e2:76:1b:30:3d:40:51:47:ca:25:a6:e5:b5:78:
         96:71:97:16:62:ec:35:0e:35:3b:b6:8d:b5:80:e1:9c:c5:ea:
         15:04:4c:a7:c1:63:3c:cf:ac:20:d4:5e:72:28:de:9b:16:fa:
         a8:59:24:4a:73:fb:46:fa:85:e3:b7:83:e4:cb:47:48:70:5c:
         58:c0:39:a8:54:93:20:13:39:6b:4b:66:02:da:49:e3:9d:af:
         02:c8:fd:1d:67:32:eb:02:8e:80:0d:53:4f:cb:05:df:25:3b:
         48:83:85:f8:1d:f2:3b:a2:7a:ce:a9:00:68:4d:f7:c3:10:e6:
         4d:8c:89:56:36:b4:af:97:9a:05:6f:78:45:9d:14:53:f1:f4:
         ff:79:b4:23:e1:87:1f:6b:af:37:d9:c9:15:46:cc:de:17:43:
         61:44:5d:3d:4f:6d:c2:f3:b2:d6:5b:fe:09:6a:a6:da:f8:1d:
         ed:3c:cd:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----