Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.mft
File:                     ScKchYIxItOsfH9IBdWyQocNLeI.mft (raw, json)
Hash identifier:          648EaDFXB3PKohVDC5g4H+PcZmDJUF3JZgyVOp/Ubls=
Subject key identifier:   E6:C9:6C:CB:BC:B4:BD:0A:B6:78:D2:E9:F6:CE:79:29:A1:61:3C:27
Authority key identifier: 49:C2:9C:85:82:31:22:D3:AC:7C:7F:48:05:D5:B2:42:87:0D:2D:E2
Certificate issuer:       /CN=49c29c85823122d3ac7c7f4805d5b242870d2de2
Certificate serial:       01974A7A74433DE5AC50ABDE5C2475B4760D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ScKchYIxItOsfH9IBdWyQocNLeI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.mft
Manifest number:          1312
Signing time:             Sat 07 Jun 2025 13:00:28 +0000
Manifest this update:     Sat 07 Jun 2025 13:00:28 +0000
Manifest next update:     Sun 08 Jun 2025 13:00:28 +0000
Files and hashes:         1: ScKchYIxItOsfH9IBdWyQocNLeI.crl (hash: UBhnVWeAZBCrHRXrc7tGHIeEIwgnkvoUY8GcxfPWyKc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ScKchYIxItOsfH9IBdWyQocNLeI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7a:74:43:3d:e5:ac:50:ab:de:5c:24:75:b4:76:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=49c29c85823122d3ac7c7f4805d5b242870d2de2
        Validity
            Not Before: Jun  7 13:00:28 2025 GMT
            Not After : Jun  8 13:00:28 2025 GMT
        Subject: CN=e6c96ccbbcb4bd0ab678d2e9f6ce7929a1613c27
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:50:ce:35:54:28:d6:ff:25:38:92:be:e1:3b:
                    51:94:07:bb:32:16:b9:09:a6:6b:f4:5c:cb:57:b2:
                    ce:58:3a:10:7a:82:78:99:af:62:cc:e2:53:94:85:
                    66:2b:78:6d:f3:b1:f7:e5:35:6d:24:83:de:ef:ad:
                    99:b5:b8:11:a2:bf:2d:93:02:48:b6:f0:2f:41:0c:
                    44:3b:da:d9:b2:ce:e4:ec:ee:1f:d7:8e:63:68:ff:
                    1a:f8:89:0a:79:86:14:43:eb:36:24:b3:60:bc:16:
                    b8:37:ae:53:81:c9:a2:ca:fe:bd:5e:d4:cb:80:f5:
                    55:bd:38:06:d6:7d:34:7b:1c:cc:d3:3e:37:46:35:
                    ed:7a:8f:a2:27:7f:95:b0:02:04:21:b2:41:8f:e2:
                    bc:76:0a:fc:db:47:47:90:36:7e:2c:ee:af:d9:89:
                    64:57:74:41:14:b4:4d:86:fe:03:1c:ff:9e:87:1d:
                    7f:8b:46:1f:dc:e9:45:c1:03:65:21:b3:08:4f:4a:
                    0c:ec:f8:e0:2e:ee:62:e3:14:fb:5e:30:5a:12:51:
                    a1:a4:ed:ae:be:7c:f0:2f:b8:a2:f2:44:c5:6b:cb:
                    88:2b:1b:83:f1:a8:c4:db:da:01:df:d0:01:36:f1:
                    ab:3f:2f:09:0c:bd:dd:cc:4a:71:73:10:b4:ff:9b:
                    06:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:C9:6C:CB:BC:B4:BD:0A:B6:78:D2:E9:F6:CE:79:29:A1:61:3C:27
            X509v3 Authority Key Identifier:
                keyid:49:C2:9C:85:82:31:22:D3:AC:7C:7F:48:05:D5:B2:42:87:0D:2D:E2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ScKchYIxItOsfH9IBdWyQocNLeI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a57a63-a6b4-4165-9e5e-9c2d044dd4af/1/ScKchYIxItOsfH9IBdWyQocNLeI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:41:d2:6e:43:16:e8:ad:9e:8c:24:78:95:43:7f:23:bf:db:
         ad:b1:05:7d:a5:11:8b:fc:13:ff:5e:ab:3f:e5:96:ad:08:a1:
         c8:1c:2e:88:eb:d8:ea:3a:5d:5c:f0:f1:18:6b:e4:86:e8:48:
         27:46:25:17:d5:22:77:7f:3a:a1:2b:4e:de:5c:60:2e:02:e6:
         0a:2a:a5:01:da:da:2b:d6:54:28:e0:c4:48:92:e8:ad:0d:19:
         a8:8f:48:49:b3:4a:ee:b8:6b:f2:47:27:72:9c:7b:8c:16:e6:
         9d:1c:e8:25:db:6e:78:f2:8c:ce:76:32:25:78:4d:ed:a9:bc:
         7d:81:72:3e:13:20:ab:cb:6d:e7:fb:2c:a8:b0:0c:48:57:b4:
         de:75:94:71:b0:4c:ee:01:16:48:dc:c5:5b:b3:73:07:9b:f7:
         52:57:ab:51:2a:2e:45:3b:c8:56:b7:87:33:74:d7:01:89:f8:
         c0:28:19:e3:30:92:93:b0:53:74:ea:3b:97:fe:35:d1:26:a5:
         cc:8a:63:0a:c3:66:24:86:0b:e4:de:5a:ec:22:25:8f:92:ec:
         4a:b1:20:6f:f7:1d:77:1c:86:dc:d9:e6:81:27:e2:7c:88:6c:
         25:da:93:9e:26:0a:58:4b:74:8e:5e:ed:d0:09:1a:ed:7d:21:
         b5:36:8c:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----