Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
File:                     gEFPcG9s0sh68PYGstE3a4a1-mY.mft (raw, json)
Hash identifier:          lLnQH5+UZipGzwJVs8L1WvRt6cG5Vg31j3uChigHViw=
Subject key identifier:   A7:95:FE:EF:35:37:A1:82:37:84:39:A4:56:46:9B:02:93:23:49:47
Authority key identifier: 80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66
Certificate issuer:       /CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66
Certificate serial:       0197488CA33E7247C6B198A3911B2B9A6B3F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
Manifest number:          1579
Signing time:             Sat 07 Jun 2025 04:01:05 +0000
Manifest this update:     Sat 07 Jun 2025 04:01:05 +0000
Manifest next update:     Sun 08 Jun 2025 04:01:05 +0000
Files and hashes:         1: gEFPcG9s0sh68PYGstE3a4a1-mY.crl (hash: aiKyimZ3FC4BUhBlb6OroeKamwykn4wvAmXXY7pgWJ8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 04:01:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8c:a3:3e:72:47:c6:b1:98:a3:91:1b:2b:9a:6b:3f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66
        Validity
            Not Before: Jun  7 04:01:05 2025 GMT
            Not After : Jun  8 04:01:05 2025 GMT
        Subject: CN=a795feef3537a182378439a456469b0293234947
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:fb:6d:13:a2:b6:f7:37:18:3f:25:47:ff:ed:
                    b0:0a:ea:8e:8f:59:fd:65:48:f6:d3:40:2d:ee:bf:
                    4e:d9:a1:e1:12:97:c4:80:a6:3a:ee:21:1b:5b:91:
                    ef:e3:b8:10:47:9c:2e:f3:b5:ca:9b:51:6c:3e:a6:
                    8c:d4:c7:1a:ef:50:08:fa:22:57:fc:63:40:78:9a:
                    7d:28:a9:75:cd:94:4c:da:af:22:d4:43:27:2d:86:
                    bc:37:1e:d1:d8:76:04:02:cf:74:88:7c:c8:19:4c:
                    3c:6a:88:ba:b3:67:ea:4c:a3:56:dc:e2:ec:84:25:
                    30:38:80:0c:ae:5a:76:34:45:85:6a:47:91:1b:08:
                    32:a2:8c:8d:a1:04:6e:15:cb:f1:5a:e0:47:66:71:
                    e0:95:1c:b2:c2:84:61:c2:fa:b3:ef:26:4e:2e:67:
                    10:e7:77:6a:38:67:5a:56:81:12:87:0e:2c:c6:0c:
                    ae:2a:58:a9:d0:41:c9:87:fc:c5:20:6d:ad:8c:33:
                    24:d7:fe:a4:12:bc:a4:ad:28:9c:15:46:96:b3:70:
                    36:e2:bb:b0:1e:a5:c6:8c:76:8f:bf:eb:96:3f:05:
                    98:54:5c:05:d4:73:c5:df:a3:bd:52:d1:30:49:6c:
                    96:6e:4b:22:1f:29:dc:81:76:8e:65:53:df:0a:ea:
                    7c:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A7:95:FE:EF:35:37:A1:82:37:84:39:A4:56:46:9B:02:93:23:49:47
            X509v3 Authority Key Identifier:
                keyid:80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         88:df:3f:cb:d0:24:d8:21:4a:7d:fd:7e:a3:51:04:f5:e0:4e:
         a7:de:75:e5:8a:6c:3e:ce:27:05:fa:22:b5:98:2d:72:8d:c4:
         a4:6f:f1:95:6a:69:2e:99:9e:a1:03:35:d7:95:94:a6:bb:51:
         5b:3e:41:d6:09:d4:c8:9c:1b:9c:01:69:9a:3d:31:1f:e9:09:
         3b:cb:10:4c:1b:20:a2:02:9d:70:9c:70:1a:89:2a:87:67:93:
         08:fa:21:7c:2a:6a:fe:d0:a3:a2:b2:b9:02:d8:b4:e3:79:2e:
         c9:fb:60:cb:d4:6c:67:0a:fe:1c:3d:5a:70:02:8d:cd:f1:fd:
         81:04:95:7f:4f:b1:20:67:a4:15:25:70:33:c3:09:a2:4a:5f:
         bf:77:fb:77:df:ec:7f:ab:03:a8:2f:57:d4:61:1d:78:f8:ef:
         a7:95:b9:16:fd:63:3c:f7:54:e2:e5:87:01:05:0e:88:6f:84:
         76:18:fd:7e:f0:97:18:7e:fa:3f:dd:90:b1:dc:f0:bf:95:63:
         ba:c6:d9:9f:a0:09:2f:8f:35:eb:61:9f:86:25:6d:81:bb:e7:
         0c:2b:b2:1b:26:2c:29:bb:9d:0e:5b:6c:71:ec:b7:52:f6:b3:
         f9:8a:fc:43:35:f4:24:19:c2:67:37:c8:3f:ad:70:6f:26:a5:
         54:f8:69:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----