Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
File:                     USd7w4wS4ELt31bX519QVjxL0ic.mft (raw, json)
Hash identifier:          fRQTXyfjWWqyHvcRX9WWu9O5FlnULriTJig1tIQiFV4=
Subject key identifier:   AC:82:C1:7A:54:8A:B0:E5:F1:A7:E6:18:D3:EA:19:7E:12:E4:F3:5E
Authority key identifier: 51:27:7B:C3:8C:12:E0:42:ED:DF:56:D7:E7:5F:50:56:3C:4B:D2:27
Certificate issuer:       /CN=51277bc38c12e042eddf56d7e75f50563c4bd227
Certificate serial:       0197677347B00A77553A768C5B03C09F8B7E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
Manifest number:          1588
Signing time:             Fri 13 Jun 2025 04:01:37 +0000
Manifest this update:     Fri 13 Jun 2025 04:01:37 +0000
Manifest next update:     Sat 14 Jun 2025 04:01:37 +0000
Files and hashes:         1: USd7w4wS4ELt31bX519QVjxL0ic.crl (hash: cWxiXONIR7SVI+BZG9LMCxcrkvbkWJne30FslZGPVlg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 04:01:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:73:47:b0:0a:77:55:3a:76:8c:5b:03:c0:9f:8b:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=51277bc38c12e042eddf56d7e75f50563c4bd227
        Validity
            Not Before: Jun 13 04:01:37 2025 GMT
            Not After : Jun 14 04:01:37 2025 GMT
        Subject: CN=ac82c17a548ab0e5f1a7e618d3ea197e12e4f35e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:51:e8:e7:45:ce:86:5c:52:d4:3e:da:b5:ff:
                    64:07:e5:80:84:e0:85:fe:3e:d9:cd:2b:13:e1:51:
                    a1:2c:7a:e0:01:e3:96:fb:8a:fb:08:67:d5:19:c4:
                    92:7c:a7:13:a5:5c:21:aa:d4:7b:4c:e3:a8:10:70:
                    8a:5e:db:6b:f0:5b:9e:cd:61:65:d1:5e:63:93:f6:
                    df:d4:2d:69:a0:39:c1:f3:70:04:c4:ee:d7:b4:74:
                    b2:38:9b:cb:52:5f:25:ed:82:d2:e1:ab:d7:aa:55:
                    98:74:bf:97:40:fb:92:29:ce:b9:ef:4a:5e:1a:08:
                    f7:cc:04:2b:59:b5:4e:d9:8e:ac:73:a8:9c:48:b6:
                    cb:16:87:9e:b8:9a:bb:2e:9e:8a:5b:21:c8:a6:92:
                    56:a3:23:e1:3f:d5:03:0b:ff:d7:43:d9:07:6c:35:
                    da:7b:21:dc:ca:9c:c9:4e:d2:ff:b3:e6:98:0a:98:
                    d3:25:6a:3f:36:90:28:4c:6b:f7:c3:bd:d3:10:d0:
                    90:c8:54:2e:c8:35:ce:4f:eb:e4:8e:5f:72:1a:7c:
                    82:ab:12:5e:7c:af:27:15:4e:23:9b:d7:05:09:e1:
                    5f:ef:ca:e6:db:d6:f2:ae:96:a2:01:12:8c:fa:ce:
                    9b:69:63:9d:87:b9:fd:9c:27:34:be:54:70:fd:4e:
                    b6:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:82:C1:7A:54:8A:B0:E5:F1:A7:E6:18:D3:EA:19:7E:12:E4:F3:5E
            X509v3 Authority Key Identifier:
                keyid:51:27:7B:C3:8C:12:E0:42:ED:DF:56:D7:E7:5F:50:56:3C:4B:D2:27

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USd7w4wS4ELt31bX519QVjxL0ic.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3ba160-e945-4d56-b129-52c19758fa15/1/USd7w4wS4ELt31bX519QVjxL0ic.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:c2:f0:8c:ef:13:19:82:03:ef:29:e3:bd:17:d1:85:5c:88:
         47:43:36:5b:cf:2d:79:0d:dc:fd:e3:65:f4:ce:e6:9e:e1:78:
         9b:64:af:fb:af:12:2e:e1:8d:dc:e2:d0:b3:b7:0a:ed:b1:47:
         d7:95:a1:f8:7f:5e:10:58:43:9c:8e:f9:ba:04:c1:d8:a3:24:
         ba:a4:74:b0:c2:79:c9:da:cb:30:93:b1:b2:d8:33:ab:c2:2a:
         23:0a:7a:c9:fd:92:c0:5e:a2:5d:2d:f7:43:df:d8:1c:af:b3:
         2f:2b:20:f8:fa:7b:89:81:32:ee:2c:9a:ea:4e:4f:82:74:a0:
         c0:cc:28:90:01:fd:f5:ec:74:ee:36:06:5e:22:ca:a3:df:0e:
         cb:35:38:33:ed:e0:e0:b0:1c:30:d2:46:30:91:c5:46:8f:4c:
         f0:4b:42:10:e1:55:36:2d:fb:6c:01:56:2b:9f:dd:41:c7:b6:
         5d:cf:38:e0:da:2d:8d:52:47:43:93:a1:07:5a:3e:ba:18:ec:
         b5:c8:9d:f0:1b:8b:98:f0:64:d7:05:88:7e:fe:82:35:e8:02:
         bf:d3:a6:62:3e:65:73:81:14:ca:2b:72:a8:5a:0c:40:65:30:
         03:c1:f5:a9:93:21:3a:42:85:6b:88:b9:4c:e2:1c:6b:38:19:
         91:4d:d1:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----