Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
File:                     b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft (raw, json)
Hash identifier:          5jA44H/lepTGcAzQV36UK7k0+qiYyGkPb15h2qk0Hgw=
Subject key identifier:   B3:34:A7:29:21:D2:0A:C4:B8:09:6E:0A:C6:BF:36:4E:34:A3:7E:64
Authority key identifier: 6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1
Certificate issuer:       /CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
Certificate serial:       01974B561A0900151B2F910E3AE3CC007C66
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
Manifest number:          0F75
Signing time:             Sat 07 Jun 2025 17:00:23 +0000
Manifest this update:     Sat 07 Jun 2025 17:00:23 +0000
Manifest next update:     Sun 08 Jun 2025 17:00:23 +0000
Files and hashes:         1: b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl (hash: 9T0XrdK3qV+R/JiyK6AdL686kUW2xP1pIaWa1BTfO+Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 11:24:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4b:56:1a:09:00:15:1b:2f:91:0e:3a:e3:cc:00:7c:66
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
        Validity
            Not Before: Jun  7 17:00:23 2025 GMT
            Not After : Jun  8 17:00:23 2025 GMT
        Subject: CN=b334a72921d20ac4b8096e0ac6bf364e34a37e64
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:69:ad:08:71:fd:82:eb:9b:25:81:ab:13:94:
                    fe:98:f6:1b:50:d9:49:a8:44:ca:3a:50:da:48:e5:
                    fc:8e:27:5f:f9:c6:d1:bd:c0:4d:21:36:6b:00:6f:
                    8d:5f:98:49:e8:56:e8:52:96:2e:01:74:97:07:28:
                    52:25:e1:a5:a9:df:b0:d2:cf:c8:eb:7c:38:18:7c:
                    35:c3:12:a9:b9:30:c4:28:28:3c:7a:87:ca:82:a4:
                    f6:bf:b4:b4:b2:77:40:a4:c2:4b:f7:9d:e9:38:df:
                    1f:a5:01:85:21:16:91:8e:a1:1f:64:91:70:56:00:
                    00:43:ea:25:7f:8f:d5:26:ee:4a:6b:81:68:41:79:
                    86:c9:f8:be:81:c4:c8:2d:31:89:66:7b:a6:6a:bd:
                    62:dd:2b:fa:1e:4f:c5:01:f7:0d:71:5c:9c:e5:57:
                    37:ea:ad:e4:eb:d5:22:37:e4:38:32:6d:e5:3b:1b:
                    82:b8:0c:a1:c3:3c:1a:3c:b3:2e:77:38:72:45:ff:
                    84:4c:b1:1b:db:1b:30:ca:78:6e:97:2b:b9:84:83:
                    e4:d3:25:ca:1e:e4:33:62:a1:28:da:cd:fc:54:9a:
                    03:7c:13:79:16:7b:5c:a6:22:1e:08:4b:2e:2a:38:
                    7a:f4:78:b7:a9:4f:39:bf:7c:e2:35:a1:b9:9e:df:
                    db:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:34:A7:29:21:D2:0A:C4:B8:09:6E:0A:C6:BF:36:4E:34:A3:7E:64
            X509v3 Authority Key Identifier:
                keyid:6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         aa:7e:5a:be:dd:bc:1f:57:07:fe:90:bf:fa:a9:07:5d:e6:2b:
         ad:b2:2e:c0:16:6c:9d:ce:2d:a6:48:eb:bb:3d:8e:a9:eb:b9:
         69:4f:36:23:33:bb:74:e6:69:06:e5:3e:6d:bb:71:ca:95:72:
         22:7a:19:b4:d5:ca:97:72:63:31:57:93:4b:88:da:39:4b:f0:
         27:93:00:75:0f:0d:aa:85:2e:8a:34:ab:97:4c:c1:7b:f0:32:
         13:5f:24:ce:5a:61:25:0c:ec:37:9e:7b:d8:0c:a5:93:b4:f7:
         d7:18:88:49:ed:a8:0e:34:ca:74:10:bd:73:cc:2f:08:5c:d9:
         c8:19:29:15:b4:20:d3:e1:c0:78:d4:5f:92:19:fc:63:aa:e8:
         01:0d:f1:1b:07:de:2b:b9:dc:79:2a:08:7a:f0:c5:1e:eb:0e:
         b9:96:04:1e:4a:83:43:de:61:76:e1:92:df:b6:82:56:72:28:
         6d:a1:c1:59:a7:60:3a:2e:28:e6:64:5d:90:73:81:68:7d:1f:
         51:f6:5c:e0:18:f2:d0:72:1f:dc:86:3d:23:58:89:dd:b9:4c:
         69:b4:f2:5a:ec:87:ef:f9:f6:f7:b4:57:9c:c3:a1:60:e7:c8:
         86:69:8b:fa:9e:78:93:5a:d1:24:54:cb:d3:27:ed:7c:53:ad:
         8f:a4:83:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----