Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft
File:                     3EviU3WUInayZECX3D1ah1r7ivE.mft (raw, json)
Hash identifier:          qqzfhB3QihwsKDlu3rCpotFCt5oNJBRLyhGQIpUtY2w=
Subject key identifier:   5E:1F:4A:62:12:20:31:9F:01:92:D9:0D:F9:44:29:0D:CC:81:8B:6F
Authority key identifier: DC:4B:E2:53:75:94:22:76:B2:64:40:97:DC:3D:5A:87:5A:FB:8A:F1
Certificate issuer:       /CN=dc4be25375942276b2644097dc3d5a875afb8af1
Certificate serial:       01974C695CE4E2DDF0C2E8F2203D9635AB49
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft
Manifest number:          0832
Signing time:             Sat 07 Jun 2025 22:01:02 +0000
Manifest this update:     Sat 07 Jun 2025 22:01:02 +0000
Manifest next update:     Sun 08 Jun 2025 22:01:02 +0000
Files and hashes:         1: 3EviU3WUInayZECX3D1ah1r7ivE.crl (hash: yzCldKKOeGb1SdjncjIQFEwDFa9nqVrekpFuDWV6lI0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 18:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4c:69:5c:e4:e2:dd:f0:c2:e8:f2:20:3d:96:35:ab:49
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc4be25375942276b2644097dc3d5a875afb8af1
        Validity
            Not Before: Jun  7 22:01:02 2025 GMT
            Not After : Jun  8 22:01:02 2025 GMT
        Subject: CN=5e1f4a621220319f0192d90df944290dcc818b6f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:df:26:4d:2d:89:64:22:ce:d4:35:23:3b:4f:
                    16:43:9b:4d:92:19:fe:7e:08:d0:07:f9:ac:42:75:
                    e9:c5:ce:40:b8:13:6b:72:1e:37:b4:78:c2:4d:9f:
                    0d:f7:40:9f:49:4c:b2:9b:af:ca:fe:89:6b:63:90:
                    ec:1a:08:13:18:69:c3:72:8c:90:55:e8:20:17:4e:
                    c5:10:1a:cf:d8:f5:3f:1f:8f:b6:dc:89:34:f6:5c:
                    ab:d1:f6:e7:a6:25:2b:99:49:b3:b2:29:93:f4:3e:
                    32:a5:12:3f:7e:7a:18:23:cc:43:0c:20:ee:e7:0a:
                    c6:4c:05:cf:9c:5d:d6:6e:6c:e7:14:a1:25:40:ab:
                    ed:97:a3:28:a9:3f:6f:2c:af:fa:08:1d:ae:b3:5a:
                    48:b5:b8:65:cf:b4:45:5c:30:01:62:0f:e0:cc:32:
                    f7:c2:f4:24:a5:e9:4f:d5:ac:b3:c0:35:11:f0:5b:
                    ff:68:b2:8e:00:e6:87:f9:61:c6:63:31:37:ee:9e:
                    b6:fd:e7:2a:ae:80:e9:83:a1:ff:4d:1c:b7:9d:10:
                    c0:4f:bb:41:cb:fd:6a:8f:5f:9d:03:97:fc:46:4b:
                    b1:3a:3e:b2:e5:bc:e4:3e:3f:00:82:58:e4:08:ee:
                    0e:46:20:2c:c7:7a:27:02:bb:86:e5:86:cf:7b:93:
                    97:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:1F:4A:62:12:20:31:9F:01:92:D9:0D:F9:44:29:0D:CC:81:8B:6F
            X509v3 Authority Key Identifier:
                keyid:DC:4B:E2:53:75:94:22:76:B2:64:40:97:DC:3D:5A:87:5A:FB:8A:F1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EviU3WUInayZECX3D1ah1r7ivE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/53d100-9976-494b-ae21-0b851038a5de/1/3EviU3WUInayZECX3D1ah1r7ivE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:6e:e3:ab:40:fe:bc:1f:8c:f2:d1:2f:96:64:5b:8f:3d:a8:
         83:fb:20:06:51:ca:09:44:ac:89:f8:f5:20:10:1c:fc:7a:3b:
         59:fb:cc:5b:02:56:da:86:1b:52:68:21:b4:70:dd:82:63:1d:
         4a:e8:29:bc:a2:06:24:f4:50:47:79:60:6a:71:7b:e5:d0:d0:
         b2:1d:8e:a5:9d:8b:9f:ae:44:31:a6:32:1e:c6:4b:c8:78:12:
         90:93:fb:b2:81:38:b2:79:8f:49:9b:f5:d6:1d:98:84:37:5f:
         f8:5c:98:ea:78:3a:ae:70:39:98:0d:b5:7b:26:50:22:3c:da:
         e9:42:b0:32:11:b0:a0:24:53:45:4a:c7:52:8b:58:be:14:df:
         a4:5f:c0:e1:96:e4:05:cd:95:45:2a:ce:41:39:ea:89:ba:e9:
         c7:8d:ea:c4:b3:02:58:97:d7:a5:8e:d3:0d:e6:dd:6a:d5:47:
         51:9a:7a:09:a1:7a:df:55:c4:53:3d:c1:86:ea:92:80:3e:10:
         1d:88:53:d6:41:a9:4b:4c:8c:41:4d:45:8e:22:b1:cc:03:a5:
         10:e2:83:0b:c0:75:30:a0:78:fd:a7:c8:d6:e6:ee:3f:f2:1b:
         dc:f2:5c:ea:80:ec:b0:73:3e:7d:cb:9b:0d:cf:47:ee:0c:c7:
         b3:8e:29:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----