Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
File:                     ELZc9vpeH8roz4TJcB44vftjqrM.mft (raw, json)
Hash identifier:          sm09r6FreUvq+lszcGgFfBbSDnby2QVqzLVzktcCJhc=
Subject key identifier:   FC:31:C5:EB:5C:7A:68:E8:5D:1C:75:F3:A5:E6:EF:77:9F:67:46:9E
Authority key identifier: 10:B6:5C:F6:FA:5E:1F:CA:E8:CF:84:C9:70:1E:38:BD:FB:63:AA:B3
Certificate issuer:       /CN=10b65cf6fa5e1fcae8cf84c9701e38bdfb63aab3
Certificate serial:       019764DF7C91B0B0B52882925E3F22FE748C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
Manifest number:          0E37
Signing time:             Thu 12 Jun 2025 16:00:57 +0000
Manifest this update:     Thu 12 Jun 2025 16:00:57 +0000
Manifest next update:     Fri 13 Jun 2025 16:00:57 +0000
Files and hashes:         1: ELZc9vpeH8roz4TJcB44vftjqrM.crl (hash: kHe578we2Q8MoO7S/DX83tTqZYw7JYzSPs/WMSuWV0Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:df:7c:91:b0:b0:b5:28:82:92:5e:3f:22:fe:74:8c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=10b65cf6fa5e1fcae8cf84c9701e38bdfb63aab3
        Validity
            Not Before: Jun 12 16:00:57 2025 GMT
            Not After : Jun 13 16:00:57 2025 GMT
        Subject: CN=fc31c5eb5c7a68e85d1c75f3a5e6ef779f67469e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:a9:c0:35:71:15:ce:bb:fc:60:ba:42:f5:79:
                    d1:4c:e7:c8:19:2e:ca:3f:48:75:d7:a7:6c:67:df:
                    69:3e:89:29:08:6b:62:d9:fa:8b:9f:f9:59:ee:81:
                    cf:33:69:65:8c:a3:0f:bb:84:40:b3:0e:99:30:f8:
                    42:34:89:a9:bd:8e:ef:3a:78:19:2a:86:51:dd:66:
                    72:12:03:f9:2e:9f:83:58:94:a3:a1:4e:1b:d2:c2:
                    01:9b:3d:4b:48:23:2a:19:7d:ad:79:4f:27:c5:94:
                    c7:f7:8d:3b:28:8f:66:02:93:cf:96:5a:1e:af:b1:
                    e9:97:3d:d5:21:77:8c:b1:44:25:10:79:9a:9d:08:
                    1a:63:2d:cc:dc:1b:5a:8d:29:ff:a0:a2:b0:3a:26:
                    3b:c1:c6:71:29:3a:ec:65:db:29:03:85:0c:33:87:
                    0f:48:c2:fd:35:3a:25:d7:8f:8b:63:fc:85:dc:e8:
                    61:a2:a6:23:75:5d:d4:74:74:64:5c:73:a3:35:94:
                    ea:96:42:8c:c8:48:0c:9a:e4:f4:68:ca:ab:78:17:
                    a6:7f:e2:ed:a9:44:3d:38:0c:6a:81:ec:36:f1:0a:
                    ac:b4:77:d5:b4:eb:81:54:16:06:51:62:fc:ee:70:
                    55:43:f4:03:3d:33:9c:6f:36:02:24:4d:46:28:78:
                    18:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:31:C5:EB:5C:7A:68:E8:5D:1C:75:F3:A5:E6:EF:77:9F:67:46:9E
            X509v3 Authority Key Identifier:
                keyid:10:B6:5C:F6:FA:5E:1F:CA:E8:CF:84:C9:70:1E:38:BD:FB:63:AA:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2b:d9:43:a6:74:ba:a5:89:22:23:b7:da:49:56:8f:ca:2f:aa:
         1f:be:ea:1d:6b:91:47:f4:74:e7:c3:55:13:25:c0:59:4d:68:
         b9:fd:6b:27:2f:49:42:bd:99:3a:2f:c0:ee:27:dd:3d:5e:b9:
         70:11:c3:76:da:19:71:9e:25:34:0f:3a:38:3f:92:75:23:73:
         eb:f6:2d:f4:71:cf:ff:14:00:14:2a:07:a6:2f:86:2f:30:a7:
         40:6c:16:b2:0e:16:fb:8d:dc:e0:fe:92:53:4d:12:b9:72:d9:
         98:69:9f:2f:ff:10:0e:ac:e6:4d:20:48:ac:27:87:01:11:11:
         5e:c8:e7:c6:7d:d9:a1:92:d8:d2:68:2c:26:e3:c6:f5:ed:bb:
         f5:22:f6:51:b4:e8:88:17:1d:29:9a:a7:13:05:92:5c:b8:b4:
         a2:f6:7d:b2:2b:ea:b4:9f:c7:e0:15:40:d7:f6:7c:ae:24:e1:
         49:5d:5c:ee:39:20:c7:a3:b0:28:d9:2e:2f:5a:ea:d7:98:0d:
         47:6b:3c:07:0d:43:98:a8:71:7f:23:b5:22:6b:56:0d:6f:5d:
         2d:7c:10:45:46:d0:50:3f:66:72:a2:e3:b9:a3:05:f0:79:18:
         50:be:3c:00:00:32:22:af:8a:99:0a:71:b1:f2:73:b1:a0:bb:
         7f:3e:be:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----