Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/697df7-b19b-46f1-8e43-9198ca2ac766/1/HVdIhaDItCBcPfLR_Nc0h33hBdk.mft
File:                     HVdIhaDItCBcPfLR_Nc0h33hBdk.mft (raw, json)
Hash identifier:          qGV7oSRm26JXzvB0QUarnSZFaT39szuoQJQ7xcZd3hE=
Subject key identifier:   3C:68:41:D4:FE:C9:93:3D:2A:04:B7:B2:46:4A:00:C5:F9:E8:53:BE
Authority key identifier: 1D:57:48:85:A0:C8:B4:20:5C:3D:F2:D1:FC:D7:34:87:7D:E1:05:D9
Certificate issuer:       /CN=1d574885a0c8b4205c3df2d1fcd734877de105d9
Certificate serial:       0197493142B3A111FE0E7DABA4EAB726188E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HVdIhaDItCBcPfLR_Nc0h33hBdk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c4/697df7-b19b-46f1-8e43-9198ca2ac766/1/HVdIhaDItCBcPfLR_Nc0h33hBdk.mft
Manifest number:          014D
Signing time:             Sat 07 Jun 2025 07:00:54 +0000
Manifest this update:     Sat 07 Jun 2025 07:00:54 +0000
Manifest next update:     Sun 08 Jun 2025 07:00:54 +0000
Files and hashes:         1: HVdIhaDItCBcPfLR_Nc0h33hBdk.crl (hash: SVW9axjLjeVDgDeLSN6FCLbJRdvBmuSiBu+KMu+hnQk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c4/697df7-b19b-46f1-8e43-9198ca2ac766/1/HVdIhaDItCBcPfLR_Nc0h33hBdk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c4/697df7-b19b-46f1-8e43-9198ca2ac766/1/HVdIhaDItCBcPfLR_Nc0h33hBdk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HVdIhaDItCBcPfLR_Nc0h33hBdk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 07:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:49:31:42:b3:a1:11:fe:0e:7d:ab:a4:ea:b7:26:18:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1d574885a0c8b4205c3df2d1fcd734877de105d9
        Validity
            Not Before: Jun  7 07:00:54 2025 GMT
            Not After : Jun  8 07:00:54 2025 GMT
        Subject: CN=3c6841d4fec9933d2a04b7b2464a00c5f9e853be
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:62:2b:c0:b8:03:7c:9f:d9:a2:30:0c:f8:fb:
                    24:cc:d7:72:99:5b:af:59:7a:3f:c7:83:d5:f8:f6:
                    55:4e:91:d0:0b:50:4c:4a:0c:79:ee:fb:09:98:b2:
                    8e:61:96:1b:e9:e4:6c:85:ed:53:12:0f:c4:98:78:
                    ed:b6:d1:33:cf:f3:ca:e6:db:01:f8:22:db:69:70:
                    70:1a:f4:86:40:93:75:4c:4a:10:5f:c6:5e:c3:25:
                    87:4c:3e:04:d7:8b:86:35:ea:e3:3c:1a:dd:20:0a:
                    40:2c:1e:b6:0e:c4:6f:87:be:d6:45:1f:23:2b:59:
                    da:20:6d:04:86:9e:45:ec:c2:58:e2:c6:d0:b5:61:
                    73:69:ec:f2:77:33:75:3c:42:10:43:79:fc:b1:90:
                    b1:e5:d6:55:51:b0:70:5c:14:c2:8b:92:2c:99:7c:
                    f7:c9:a2:94:94:ee:61:a1:e3:6e:56:0c:6c:e9:6b:
                    94:08:ba:d7:48:fd:2e:f0:3a:9a:0a:29:14:36:5e:
                    ab:9f:84:a6:32:28:43:6e:dc:11:d2:2f:84:e2:39:
                    92:11:36:40:8b:67:1b:31:ee:15:dc:f1:6f:9c:b7:
                    91:88:6f:9b:44:cc:3f:3b:48:66:4a:9e:d2:11:42:
                    e5:43:1d:c1:6e:5d:a6:05:58:b0:c8:ca:8a:25:0c:
                    a1:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:68:41:D4:FE:C9:93:3D:2A:04:B7:B2:46:4A:00:C5:F9:E8:53:BE
            X509v3 Authority Key Identifier:
                keyid:1D:57:48:85:A0:C8:B4:20:5C:3D:F2:D1:FC:D7:34:87:7D:E1:05:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVdIhaDItCBcPfLR_Nc0h33hBdk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/697df7-b19b-46f1-8e43-9198ca2ac766/1/HVdIhaDItCBcPfLR_Nc0h33hBdk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/697df7-b19b-46f1-8e43-9198ca2ac766/1/HVdIhaDItCBcPfLR_Nc0h33hBdk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ca:8d:50:ce:5c:7f:90:22:d3:0f:50:ce:59:81:87:2e:aa:b6:
         ee:46:c7:c0:ae:e5:72:66:38:00:61:e9:05:72:89:51:f1:8e:
         cd:a2:0e:5f:b7:7b:1c:9d:02:da:4d:e6:b9:2d:86:07:9b:90:
         53:6b:02:b7:f3:cd:b3:b0:83:c1:89:8f:a4:86:24:25:0b:97:
         5e:77:ae:b7:c5:15:43:60:e2:df:80:8e:aa:83:78:d7:76:1a:
         8f:0a:59:da:77:fa:c3:a9:1d:e5:c4:cf:1d:f9:19:3c:ff:83:
         8b:8b:fd:64:ce:de:eb:f0:52:ab:a3:38:7b:69:71:0c:41:ba:
         a0:38:92:98:6c:94:3e:a0:78:16:0a:07:25:ae:a1:e6:12:b4:
         14:44:37:e2:0f:21:55:72:ec:71:88:da:75:c7:40:5c:ef:3d:
         c1:24:27:90:06:8c:bb:0d:ac:7a:d6:6a:ce:7d:e0:17:ba:f7:
         9f:58:64:39:a4:59:4f:e1:d0:28:88:02:35:0a:dc:49:94:a8:
         ba:2a:ae:59:38:5d:0e:e5:94:13:d3:c8:54:9f:de:cf:15:da:
         43:30:d4:ee:39:da:8a:21:cb:56:36:29:c9:7a:19:b2:8e:09:
         c8:b7:91:6a:e6:3c:36:85:07:e0:56:c3:64:b9:fc:f0:34:ad:
         51:0e:80:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----