Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft
File:                     FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft (raw, json)
Hash identifier:          YYNUUROlkx2TMPY+1qOctt3YwesGsbxazclJxzZinS0=
Subject key identifier:   D5:D3:82:F6:EC:3F:54:E1:0F:AF:87:3B:E7:C7:BE:13:C1:BA:1D:6D
Authority key identifier: 14:C7:35:25:9F:DB:7B:83:F2:77:AD:F1:2D:08:CC:98:B5:A6:10:0A
Certificate issuer:       /CN=14c735259fdb7b83f277adf12d08cc98b5a6100a
Certificate serial:       01974C699EED5C03CD6D242050937BA0ABFE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FMc1JZ_be4Pyd63xLQjMmLWmEAo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft
Manifest number:          089F
Signing time:             Sat 07 Jun 2025 22:01:19 +0000
Manifest this update:     Sat 07 Jun 2025 22:01:19 +0000
Manifest next update:     Sun 08 Jun 2025 22:01:19 +0000
Files and hashes:         1: FMc1JZ_be4Pyd63xLQjMmLWmEAo.crl (hash: ZSYofq+hEWDlSG8wjgNn5d0bhyog8aGYmPB+5ex1doo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FMc1JZ_be4Pyd63xLQjMmLWmEAo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 18:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4c:69:9e:ed:5c:03:cd:6d:24:20:50:93:7b:a0:ab:fe
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14c735259fdb7b83f277adf12d08cc98b5a6100a
        Validity
            Not Before: Jun  7 22:01:19 2025 GMT
            Not After : Jun  8 22:01:19 2025 GMT
        Subject: CN=d5d382f6ec3f54e10faf873be7c7be13c1ba1d6d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:54:7b:80:a3:a1:16:75:b1:77:44:18:44:ac:
                    12:bd:b8:d9:c3:28:e6:d6:94:4f:cb:0c:0f:61:53:
                    55:c4:ca:28:d3:6c:6a:bc:7d:a6:98:76:df:9d:c8:
                    af:c8:47:06:30:d0:fe:0d:66:22:24:14:85:7b:77:
                    54:7f:8f:d6:60:22:ee:12:83:0d:1c:71:87:8e:f0:
                    a1:b9:dc:45:e0:e8:a6:6d:2e:76:68:62:4b:01:4c:
                    73:de:ab:58:b8:d9:42:ed:8a:1b:46:ad:28:bd:0c:
                    a3:0a:22:4e:00:a1:fd:7e:fc:69:dc:37:bb:e3:d7:
                    70:4a:02:2e:9f:20:c1:d9:85:85:d9:e0:fe:26:12:
                    bc:73:1f:88:09:47:67:30:28:ef:66:6c:56:f7:6f:
                    1a:b8:6c:20:2e:d2:c9:11:d7:4c:1e:4e:04:bf:0b:
                    b8:58:59:7b:78:7c:2e:69:c2:ca:4a:70:61:6d:ce:
                    84:24:40:c2:5c:84:93:b7:81:6c:d6:5c:34:bc:85:
                    e9:42:6f:63:be:ac:15:a8:85:33:1e:82:36:66:15:
                    39:a2:55:86:5c:80:4a:7c:1f:92:a6:01:9d:3c:1c:
                    91:f4:23:f8:aa:97:91:3f:4e:a9:3a:ea:6e:9e:b4:
                    d8:94:05:da:ee:82:65:31:d5:7e:5f:94:c6:1f:2d:
                    56:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:D3:82:F6:EC:3F:54:E1:0F:AF:87:3B:E7:C7:BE:13:C1:BA:1D:6D
            X509v3 Authority Key Identifier:
                keyid:14:C7:35:25:9F:DB:7B:83:F2:77:AD:F1:2D:08:CC:98:B5:A6:10:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FMc1JZ_be4Pyd63xLQjMmLWmEAo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/de2b16-fa2b-4a11-95ab-dbeaf784817a/1/FMc1JZ_be4Pyd63xLQjMmLWmEAo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:d5:f8:6c:de:7b:05:b4:4c:6f:c8:95:5f:84:5c:ff:e5:69:
         c0:c9:3d:76:62:e4:4c:04:92:c0:d4:df:69:43:09:d9:66:77:
         0a:40:41:c8:3c:37:e0:57:53:d4:3b:a0:02:5e:9f:c4:05:6f:
         0c:05:be:d5:af:4e:f0:74:23:11:91:96:b6:8c:0f:d7:2a:79:
         f0:42:43:c9:9e:3b:6f:8b:b1:98:2f:05:61:bb:7b:62:71:bf:
         05:81:87:df:35:81:75:73:15:12:d2:3b:ea:c1:28:59:bd:ae:
         66:42:05:be:a4:9e:4c:9c:d8:82:a6:37:96:3f:d0:ec:f8:ff:
         93:46:54:46:25:82:bc:d5:d2:5d:f4:cf:81:64:cd:b7:83:c4:
         19:ed:d1:61:e3:bd:13:8f:6b:d1:66:9d:bb:68:57:26:89:48:
         ab:df:fd:27:6e:a6:ad:a0:c9:75:c2:0d:4c:3d:df:93:10:8b:
         65:f5:29:48:84:9f:b0:a9:75:da:3c:cb:54:f5:dd:4b:6b:80:
         d3:e2:d1:9a:b6:6c:d4:c3:00:dd:05:b5:20:ce:1b:54:31:5a:
         f3:44:8f:e0:dd:6b:d9:6a:20:49:99:ad:f2:bf:8a:fe:81:4a:
         15:2a:36:63:64:97:41:5d:2a:f3:f7:99:47:16:28:f1:37:11:
         c6:79:7c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----