Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft
File:                     jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft (raw, json)
Hash identifier:          luELJhFJPR+y8GGoer3WOX0R/58SLGrF9tOD3RDwLL0=
Subject key identifier:   6C:FB:06:51:60:54:A1:14:47:C9:03:DA:9D:34:7F:45:97:EB:9B:EE
Authority key identifier: 8D:82:79:DA:ED:AB:BF:91:83:AF:B6:8E:43:FB:1E:5B:B6:D4:33:A3
Certificate issuer:       /CN=8d8279daedabbf9183afb68e43fb1e5bb6d433a3
Certificate serial:       01974BC4107264464B343CE2F122D87A9968
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jYJ52u2rv5GDr7aOQ_seW7bUM6M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft
Manifest number:          04A5
Signing time:             Sat 07 Jun 2025 19:00:29 +0000
Manifest this update:     Sat 07 Jun 2025 19:00:29 +0000
Manifest next update:     Sun 08 Jun 2025 19:00:29 +0000
Files and hashes:         1: jYJ52u2rv5GDr7aOQ_seW7bUM6M.crl (hash: Gug/yZd0MktLvoOYB7hOxHEc+mVZfsJRKWUBQq+DCso=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jYJ52u2rv5GDr7aOQ_seW7bUM6M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 18:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4b:c4:10:72:64:46:4b:34:3c:e2:f1:22:d8:7a:99:68
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8d8279daedabbf9183afb68e43fb1e5bb6d433a3
        Validity
            Not Before: Jun  7 19:00:29 2025 GMT
            Not After : Jun  8 19:00:29 2025 GMT
        Subject: CN=6cfb06516054a11447c903da9d347f4597eb9bee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:8b:10:3c:40:e5:8a:88:40:b0:b3:7c:74:a0:
                    94:f6:98:1d:38:a2:73:26:09:e2:91:40:20:d9:f5:
                    10:c7:a2:35:66:c1:94:e6:f5:e2:b3:15:c0:e4:9f:
                    e9:da:c6:d4:c3:25:78:3c:4f:b2:39:5e:04:05:87:
                    76:07:fc:36:2c:ca:16:0b:0d:b8:f8:bd:1d:14:1a:
                    f8:fd:82:1e:51:7a:b6:9d:5d:9a:49:af:bc:d9:92:
                    0a:a9:9d:dd:b7:e2:3b:f9:8e:e8:72:1c:e2:09:2b:
                    85:eb:31:e4:41:3c:aa:32:ff:54:02:ad:73:97:69:
                    cd:a7:c2:9a:08:c4:e5:97:72:3a:ea:bd:e6:a0:e3:
                    7e:df:70:13:cd:77:8d:84:32:ca:01:8d:27:75:fd:
                    00:ad:f5:3a:5e:49:b0:7d:08:13:43:ae:73:1c:3d:
                    02:e8:85:df:a3:76:54:e2:39:f5:cd:ce:88:80:0e:
                    2f:1b:68:32:f5:e6:df:22:5f:42:33:07:37:36:59:
                    b7:cf:f6:5e:a8:57:d2:e9:e9:88:06:6f:96:8e:ed:
                    fd:3f:ff:15:dc:ae:16:13:56:ea:02:31:9a:cd:55:
                    9a:f5:37:14:1e:84:80:60:20:f3:9e:91:5e:cd:50:
                    da:d4:1d:04:8e:7f:ca:5c:ea:b2:0e:27:96:d8:ed:
                    8d:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:FB:06:51:60:54:A1:14:47:C9:03:DA:9D:34:7F:45:97:EB:9B:EE
            X509v3 Authority Key Identifier:
                keyid:8D:82:79:DA:ED:AB:BF:91:83:AF:B6:8E:43:FB:1E:5B:B6:D4:33:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jYJ52u2rv5GDr7aOQ_seW7bUM6M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/cfb953-bfef-44fe-825a-af73dc0f6f2a/1/jYJ52u2rv5GDr7aOQ_seW7bUM6M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:35:87:02:f9:33:c9:ba:9b:c7:7c:af:b2:a3:c7:1c:05:4e:
         a3:27:6b:a4:cb:9d:7e:7c:be:1b:de:2f:e7:ff:4c:1e:07:99:
         d7:38:8a:6e:d7:8f:62:7e:1f:1a:f5:23:71:a8:d6:1d:ff:38:
         68:19:51:5f:f4:41:b7:82:ef:e0:ec:f0:6a:f9:4f:3d:26:43:
         cb:95:d1:bd:6b:80:f8:23:ed:41:08:e7:70:b1:70:3b:6b:0c:
         fe:8c:80:cb:8a:4e:ac:0c:b2:62:94:33:bd:ce:07:29:e0:7b:
         c0:ba:38:77:2d:b8:21:5e:91:8c:f0:21:55:5f:90:82:fb:75:
         1f:9a:9f:73:03:70:14:ad:85:54:2a:35:67:62:8d:70:5d:b0:
         66:a3:dc:8b:f3:2b:c9:f3:ad:93:b0:43:7b:39:d9:d3:af:3d:
         fd:c4:a2:3c:41:d3:12:9a:56:41:24:44:4b:a1:3a:ac:19:74:
         9a:88:bd:e2:bb:b2:ee:a6:89:a1:19:4c:ce:2c:b4:9b:5c:58:
         f4:ba:2f:5b:27:81:20:42:93:8c:10:85:87:39:07:e5:1e:b9:
         fb:3c:63:e7:06:f1:76:a9:b2:ae:1d:84:37:b1:f2:c5:cd:34:
         b7:f6:eb:9f:58:a3:e1:77:e4:2e:ee:ff:9b:f7:42:bc:0d:96:
         a2:0c:bd:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----