Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft
File:                     NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft (raw, json)
Hash identifier:          8+de3ZjSxHa3a+QFHnfPmBGWasEZdefrycDawo7646A=
Subject key identifier:   B7:61:E7:B8:E6:A8:44:1E:E2:14:D9:F4:C1:26:71:3A:BC:2F:0E:E3
Authority key identifier: 35:A5:55:E1:46:BE:4A:E5:F7:CC:FE:5A:3C:12:D3:F2:A2:54:3B:05
Certificate issuer:       /CN=35a555e146be4ae5f7ccfe5a3c12d3f2a2543b05
Certificate serial:       01974DB2AF2D0E03B581D4DF1F625A471625
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft
Manifest number:          092B
Signing time:             Sun 08 Jun 2025 04:00:45 +0000
Manifest this update:     Sun 08 Jun 2025 04:00:45 +0000
Manifest next update:     Mon 09 Jun 2025 04:00:45 +0000
Files and hashes:         1: NaVV4Ua-SuX3zP5aPBLT8qJUOwU.crl (hash: pC9RBpdV44ThHvS2vPtO0TckteV373hReY/80sFmrEs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4d:b2:af:2d:0e:03:b5:81:d4:df:1f:62:5a:47:16:25
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=35a555e146be4ae5f7ccfe5a3c12d3f2a2543b05
        Validity
            Not Before: Jun  8 04:00:45 2025 GMT
            Not After : Jun  9 04:00:45 2025 GMT
        Subject: CN=b761e7b8e6a8441ee214d9f4c126713abc2f0ee3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:4c:79:b3:a9:ef:cf:5e:58:28:4c:27:ab:1c:
                    af:4d:9e:c3:cb:d5:1b:b4:44:ed:b0:11:59:83:f0:
                    a0:8b:f6:be:a0:a7:b6:5f:14:c7:6e:2a:cd:77:bb:
                    56:54:ad:17:2d:4b:29:04:d3:9a:81:9b:46:d7:37:
                    21:66:91:c9:1c:db:19:62:26:63:e8:11:ff:67:64:
                    91:49:27:6d:8f:55:38:d2:9f:30:3d:1e:70:fa:cf:
                    c1:b2:77:6a:61:50:d1:95:56:a3:91:c9:3c:66:ce:
                    88:d3:63:89:97:c7:5a:fa:6c:19:2c:69:0b:c4:88:
                    62:eb:f3:35:3a:60:16:17:91:16:e8:5e:24:5e:a5:
                    28:30:1f:e7:3f:d9:82:a3:56:89:9b:cf:c8:cf:b9:
                    a0:9f:34:65:df:55:a9:7e:1a:dc:bf:e9:fb:96:fd:
                    92:b6:bd:e8:50:04:77:e3:dd:46:42:50:d5:9b:69:
                    26:9d:09:a2:17:6c:04:19:c9:86:ac:07:15:57:ab:
                    54:01:0f:db:09:40:4e:c5:c1:31:fb:69:5a:c8:bb:
                    3d:0c:05:5f:fa:41:d6:0f:05:b8:9b:57:d1:1a:32:
                    a9:12:5c:46:09:fe:0d:f6:85:6f:0e:ad:65:bb:f5:
                    9f:e2:ce:6c:59:c7:6c:3a:69:c3:e6:0d:8a:56:34:
                    eb:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:61:E7:B8:E6:A8:44:1E:E2:14:D9:F4:C1:26:71:3A:BC:2F:0E:E3
            X509v3 Authority Key Identifier:
                keyid:35:A5:55:E1:46:BE:4A:E5:F7:CC:FE:5A:3C:12:D3:F2:A2:54:3B:05

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:27:db:ea:f0:7c:4c:eb:05:16:e8:f1:ee:17:c6:82:38:7c:
         e9:08:d2:26:47:e9:5c:9f:02:9a:f7:e3:04:18:31:0a:38:18:
         9c:85:40:f0:24:a2:83:5f:29:ab:e6:3a:fa:ca:e4:a8:c3:bd:
         99:53:6a:15:d5:82:e8:90:51:9e:f8:66:d1:26:71:8a:b9:ef:
         2f:9b:95:5d:b5:6b:c2:9e:7a:c6:72:03:43:ef:5b:50:e5:b6:
         aa:37:e9:4c:89:d1:a5:7f:38:fd:5c:ed:0b:2d:c6:65:50:58:
         3b:e9:54:30:a4:b7:f7:71:d4:56:32:ce:0f:cb:72:81:39:01:
         03:96:43:14:85:e6:e8:cb:4f:ed:8e:15:ed:be:67:7c:65:07:
         1a:9c:7d:eb:ad:ae:e3:d1:28:d4:8f:f9:0d:b8:6f:b7:11:41:
         3c:70:bc:7f:50:fd:17:dc:07:e8:56:ff:a1:a0:1d:b5:5e:77:
         7c:39:23:19:7c:70:17:34:6f:50:32:71:d5:0b:8e:75:7b:5d:
         26:4d:2f:38:c7:5e:68:6f:69:fa:68:73:50:c5:88:75:5a:3e:
         73:07:d5:b2:33:9d:63:87:ae:7a:ff:4a:8a:96:09:95:34:61:
         68:b3:fb:ca:f5:af:a8:95:59:b8:98:45:3e:28:07:c5:11:19:
         fc:94:7e:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----