Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/8f5e59-7f71-4cf2-a619-3f0295eee951/1/fgdwhBDMdkNEuM-k8-NopeJStlA.mft
File:                     fgdwhBDMdkNEuM-k8-NopeJStlA.mft (raw, json)
Hash identifier:          eQWXC/1CfoB9xrGQfu1IKNV/CD1zMmc93TkRgfyvU5w=
Subject key identifier:   9B:6A:36:73:0E:E7:3C:A8:E3:CE:FA:2A:BC:D3:41:26:5D:6A:78:47
Authority key identifier: 7E:07:70:84:10:CC:76:43:44:B8:CF:A4:F3:E3:68:A5:E2:52:B6:50
Certificate issuer:       /CN=7e07708410cc764344b8cfa4f3e368a5e252b650
Certificate serial:       019751212E3DB0CD326D5D80DB6D179D2697
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fgdwhBDMdkNEuM-k8-NopeJStlA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ee/8f5e59-7f71-4cf2-a619-3f0295eee951/1/fgdwhBDMdkNEuM-k8-NopeJStlA.mft
Manifest number:          09A7
Signing time:             Sun 08 Jun 2025 20:00:18 +0000
Manifest this update:     Sun 08 Jun 2025 20:00:18 +0000
Manifest next update:     Mon 09 Jun 2025 20:00:18 +0000
Files and hashes:         1: fgdwhBDMdkNEuM-k8-NopeJStlA.crl (hash: 9S0bFiOEbZ4FnHzlIJP5G68ic9D0HEJNTktf0PybH/0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ee/8f5e59-7f71-4cf2-a619-3f0295eee951/1/fgdwhBDMdkNEuM-k8-NopeJStlA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ee/8f5e59-7f71-4cf2-a619-3f0295eee951/1/fgdwhBDMdkNEuM-k8-NopeJStlA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/fgdwhBDMdkNEuM-k8-NopeJStlA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 20:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:51:21:2e:3d:b0:cd:32:6d:5d:80:db:6d:17:9d:26:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7e07708410cc764344b8cfa4f3e368a5e252b650
        Validity
            Not Before: Jun  8 20:00:18 2025 GMT
            Not After : Jun  9 20:00:18 2025 GMT
        Subject: CN=9b6a36730ee73ca8e3cefa2abcd341265d6a7847
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:8a:91:d6:cf:ac:ff:05:2a:96:34:9b:be:fd:
                    18:c3:4d:ce:49:17:be:39:e9:d7:be:7a:62:d9:15:
                    ab:6b:1b:03:30:b7:7e:19:67:f3:71:26:02:b0:40:
                    26:75:ba:e3:6b:bf:13:dd:d5:4d:96:3a:17:89:a5:
                    86:73:8f:37:e1:17:8c:0c:47:6c:1f:4e:93:8e:2f:
                    5a:89:c6:e7:56:08:66:f9:f1:c2:7d:36:2d:b8:e4:
                    5d:e9:a7:45:8f:c8:d5:32:28:f7:15:f6:8c:1b:7b:
                    86:8f:4f:1d:29:91:49:aa:63:c1:17:01:ee:08:98:
                    59:f6:e0:07:16:ae:c4:ca:8b:19:ee:50:bb:67:d8:
                    6d:71:41:6f:bc:ef:62:01:2d:d9:10:c5:60:a1:f3:
                    a8:12:0b:89:71:03:14:e0:a9:63:be:5d:4b:9e:d8:
                    5e:06:c0:78:09:7e:bc:53:c2:fd:78:cb:0c:19:8a:
                    73:01:6f:f1:2a:d6:85:4d:73:c8:9f:8a:b8:2c:78:
                    29:17:86:79:ad:d3:ab:2d:0a:40:0f:98:45:c9:7f:
                    90:fd:91:0e:19:f9:f4:01:11:d1:10:60:90:fb:82:
                    a5:c7:f8:06:26:14:b1:ed:7e:06:c8:57:9e:ae:59:
                    17:23:ab:88:3b:89:ca:08:86:dc:60:28:f7:ca:18:
                    76:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:6A:36:73:0E:E7:3C:A8:E3:CE:FA:2A:BC:D3:41:26:5D:6A:78:47
            X509v3 Authority Key Identifier:
                keyid:7E:07:70:84:10:CC:76:43:44:B8:CF:A4:F3:E3:68:A5:E2:52:B6:50

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fgdwhBDMdkNEuM-k8-NopeJStlA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/8f5e59-7f71-4cf2-a619-3f0295eee951/1/fgdwhBDMdkNEuM-k8-NopeJStlA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/8f5e59-7f71-4cf2-a619-3f0295eee951/1/fgdwhBDMdkNEuM-k8-NopeJStlA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:73:f3:a6:49:12:34:30:b8:06:47:01:fc:37:23:3f:68:29:
         4e:20:68:dd:88:72:ed:18:5b:61:1b:49:5f:8e:80:31:e0:2f:
         5f:f3:0e:66:c8:4d:a7:c1:90:d8:9c:4f:53:3e:b7:41:49:e8:
         55:9b:66:b5:56:89:5c:b9:87:11:ba:b1:ee:65:18:21:61:95:
         f9:15:8c:ac:e3:d0:18:30:47:59:3d:80:0f:83:23:d7:7f:f8:
         62:1f:75:d7:01:72:f9:81:15:01:b1:ef:bf:5b:f3:d8:18:87:
         2a:3f:b9:91:9e:0a:ac:49:2a:3a:b8:3c:8f:af:88:13:84:54:
         65:c3:ee:6b:41:66:80:e3:cd:44:20:dc:e8:54:df:45:a5:36:
         62:b0:3d:df:63:86:cc:55:74:31:a9:a0:e7:f8:bb:53:ba:2e:
         23:91:32:57:40:eb:30:98:4c:56:b1:f6:d7:e8:b2:d4:d6:77:
         d8:89:64:8f:00:5e:bc:a9:a3:81:f9:e0:39:e3:cc:5e:4a:83:
         71:40:1a:55:3c:5f:ed:d9:61:61:57:a1:3e:6b:7f:3c:b6:8e:
         29:d2:82:72:9e:03:a5:43:0f:b8:0a:f3:35:13:59:70:92:47:
         9f:d0:ea:7a:7e:ea:cd:0f:89:24:5f:b1:6b:0a:41:0c:55:da:
         ee:75:c9:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----