Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
File:                     GHRUZrThRoMLlit0kG2xxtCB_HA.mft (raw, json)
Hash identifier:          j7ridM1Bg1Q5S4INe7vSC8XeQyOsxzyKourblb98e8Y=
Subject key identifier:   0F:E8:8E:B8:67:5C:60:D4:36:78:0A:04:4F:F9:F1:D4:25:7C:C2:5C
Authority key identifier: 18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70
Certificate issuer:       /CN=18745466b4e146830b962b74906db1c6d081fc70
Certificate serial:       01974AE87DF19E75A1B218C79D5335D6DA0E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
Manifest number:          1543
Signing time:             Sat 07 Jun 2025 15:00:39 +0000
Manifest this update:     Sat 07 Jun 2025 15:00:39 +0000
Manifest next update:     Sun 08 Jun 2025 15:00:39 +0000
Files and hashes:         1: GHRUZrThRoMLlit0kG2xxtCB_HA.crl (hash: w07IJKRWkee1zydY/CIPuKFjNPcx1WutETA4k9rjIms=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 11:24:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:e8:7d:f1:9e:75:a1:b2:18:c7:9d:53:35:d6:da:0e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=18745466b4e146830b962b74906db1c6d081fc70
        Validity
            Not Before: Jun  7 15:00:39 2025 GMT
            Not After : Jun  8 15:00:39 2025 GMT
        Subject: CN=0fe88eb8675c60d436780a044ff9f1d4257cc25c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:5a:1f:f2:13:9a:b6:06:b2:cd:3b:1d:fc:7a:
                    bc:43:2e:22:5f:a4:6f:b1:d5:27:1d:a6:f5:fb:7f:
                    9b:e8:f5:05:0b:0f:6d:13:ec:c9:58:87:66:6f:4c:
                    74:47:0d:2e:11:d8:ea:df:0d:f4:0d:ec:2d:70:dc:
                    0a:33:64:9d:58:dd:43:c5:76:e5:f3:b8:e9:6a:1f:
                    13:11:7b:4c:24:4a:a0:88:47:ef:c0:31:82:3c:11:
                    c7:12:bb:6c:a2:ba:53:71:28:eb:e1:df:3d:54:30:
                    6c:2e:ff:a0:af:ec:83:65:72:da:26:c1:4c:74:9f:
                    53:2b:8c:a3:b8:28:a6:8a:76:27:31:46:22:d2:87:
                    09:06:76:26:b4:86:b4:2f:a9:e3:7d:70:12:3c:8a:
                    05:a4:ef:28:40:66:df:11:aa:e3:92:fc:f8:2d:8d:
                    c0:fc:22:ec:29:e3:8e:cd:c2:d3:70:e0:14:bf:a9:
                    b9:f6:97:f0:f4:ac:7e:42:5d:66:37:07:b0:f5:0d:
                    4c:08:14:70:14:8b:45:d9:3c:c7:3f:3d:42:54:f7:
                    fa:44:5c:f4:f8:95:dc:8b:81:96:ae:57:ee:be:53:
                    3e:58:e9:dd:4f:64:be:c8:41:05:61:a3:ce:da:e3:
                    93:cd:8b:08:35:c3:85:8c:f7:f3:db:62:d2:ec:2d:
                    f3:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:E8:8E:B8:67:5C:60:D4:36:78:0A:04:4F:F9:F1:D4:25:7C:C2:5C
            X509v3 Authority Key Identifier:
                keyid:18:74:54:66:B4:E1:46:83:0B:96:2B:74:90:6D:B1:C6:D0:81:FC:70

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHRUZrThRoMLlit0kG2xxtCB_HA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/7b981c-01e3-4895-bf1f-f1fc0541c649/1/GHRUZrThRoMLlit0kG2xxtCB_HA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         69:35:b3:da:1f:6a:a1:5c:89:0b:f0:8f:f0:22:c8:1c:1c:e5:
         ee:a1:bf:61:80:43:00:3e:83:15:b4:e9:37:84:68:f7:ab:70:
         cd:91:ad:bd:75:b1:bc:3b:22:4e:5a:3e:d9:52:d4:6b:9c:e9:
         89:4c:1d:63:5f:05:2d:57:b1:72:be:10:33:4d:86:ac:5a:26:
         28:26:9f:4e:54:c3:66:dd:4c:0c:ce:04:cf:9d:09:11:ca:5c:
         d0:69:ee:8c:b3:18:f7:11:1d:aa:b8:15:0f:11:7c:08:fc:07:
         cb:4e:d8:76:f9:aa:29:4d:03:af:cc:b8:d3:e7:59:89:f2:b5:
         5e:00:b0:66:68:1d:39:91:a7:ec:30:65:0c:1b:4d:5f:fc:29:
         82:e3:3b:b3:93:5f:58:9d:55:65:64:1c:46:e2:54:fb:de:e7:
         af:ac:33:91:56:3b:d3:69:96:64:8d:f5:24:d9:af:34:6c:a9:
         c6:a7:6d:18:fd:d5:04:37:78:16:3a:3a:64:97:c1:ff:dc:b9:
         b6:09:bc:98:72:5c:36:94:74:f2:e9:f2:07:da:3c:18:36:a4:
         55:19:f0:83:bf:31:be:8b:39:9f:2e:bf:a1:7b:77:7a:c0:76:
         26:4d:2d:cc:48:90:de:dd:bf:09:56:ce:23:a9:1c:aa:1e:02:
         3e:bb:71:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----