Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/0be81a-a49a-4682-80ee-e7f0b789bc73/1/bpnMzW8P8m3o7Tk29KZL7pjZ3GY.mft
File:                     bpnMzW8P8m3o7Tk29KZL7pjZ3GY.mft (raw, json)
Hash identifier:          wp04OffhRlr7RQP0GsCk519W/MyDiOQBe3yNSo39jZA=
Subject key identifier:   E6:87:A6:9A:BB:C3:EA:90:D8:20:FF:63:41:2D:0A:DF:2C:84:D5:F9
Authority key identifier: 6E:99:CC:CD:6F:0F:F2:6D:E8:ED:39:36:F4:A6:4B:EE:98:D9:DC:66
Certificate issuer:       /CN=6e99cccd6f0ff26de8ed3936f4a64bee98d9dc66
Certificate serial:       01974B1F7622274F33F8F371865DBC2ADFDD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bpnMzW8P8m3o7Tk29KZL7pjZ3GY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/0be81a-a49a-4682-80ee-e7f0b789bc73/1/bpnMzW8P8m3o7Tk29KZL7pjZ3GY.mft
Manifest number:          152F
Signing time:             Sat 07 Jun 2025 16:00:42 +0000
Manifest this update:     Sat 07 Jun 2025 16:00:42 +0000
Manifest next update:     Sun 08 Jun 2025 16:00:42 +0000
Files and hashes:         1: bpnMzW8P8m3o7Tk29KZL7pjZ3GY.crl (hash: 2TDotIHSHUM2gIaYWJBPkLQXR1V+x1IBIAAUfLRvMl4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/0be81a-a49a-4682-80ee-e7f0b789bc73/1/bpnMzW8P8m3o7Tk29KZL7pjZ3GY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/0be81a-a49a-4682-80ee-e7f0b789bc73/1/bpnMzW8P8m3o7Tk29KZL7pjZ3GY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bpnMzW8P8m3o7Tk29KZL7pjZ3GY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 16:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4b:1f:76:22:27:4f:33:f8:f3:71:86:5d:bc:2a:df:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6e99cccd6f0ff26de8ed3936f4a64bee98d9dc66
        Validity
            Not Before: Jun  7 16:00:42 2025 GMT
            Not After : Jun  8 16:00:42 2025 GMT
        Subject: CN=e687a69abbc3ea90d820ff63412d0adf2c84d5f9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:c0:8f:8b:81:e7:52:59:5e:20:aa:52:12:3f:
                    a2:af:32:a4:60:29:18:e2:7a:f7:51:16:71:c8:71:
                    af:63:3b:85:2c:d5:24:12:6a:7c:47:77:26:d5:2b:
                    5e:55:a8:38:bb:ae:1f:2e:af:c5:31:e1:e5:51:c7:
                    4e:50:0e:dd:8b:20:7c:7c:5c:b4:84:38:e8:ed:be:
                    6f:6d:a0:51:f5:23:37:82:f1:02:8f:40:4f:2f:d4:
                    6d:1f:4c:33:82:c9:94:f1:a9:3a:38:f4:b5:6a:34:
                    1f:e3:f3:6a:05:a6:da:16:73:fd:c9:a7:2a:53:8d:
                    86:5d:61:e8:f6:a2:d7:f7:9d:6c:1d:c8:d7:73:4c:
                    c6:5c:39:b3:51:42:c9:a6:61:d0:80:80:c4:03:7d:
                    df:8f:74:ca:9b:0b:45:c1:f4:23:96:ac:96:48:52:
                    1d:2f:17:81:42:ff:05:bc:83:43:09:3a:3d:4d:dc:
                    8a:78:e1:8c:db:c9:17:d6:c5:38:39:7d:4c:80:97:
                    35:31:f0:bc:c3:a5:9e:c2:ee:5f:ce:5d:9b:e0:5b:
                    2c:84:43:40:0f:97:aa:a6:a3:45:1b:41:4e:af:fa:
                    0a:c0:31:7f:6e:77:b8:7c:ff:f4:76:cb:10:f3:8a:
                    1c:7b:49:ae:86:fc:32:d5:27:05:27:b2:3d:ce:31:
                    de:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:87:A6:9A:BB:C3:EA:90:D8:20:FF:63:41:2D:0A:DF:2C:84:D5:F9
            X509v3 Authority Key Identifier:
                keyid:6E:99:CC:CD:6F:0F:F2:6D:E8:ED:39:36:F4:A6:4B:EE:98:D9:DC:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bpnMzW8P8m3o7Tk29KZL7pjZ3GY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/0be81a-a49a-4682-80ee-e7f0b789bc73/1/bpnMzW8P8m3o7Tk29KZL7pjZ3GY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/0be81a-a49a-4682-80ee-e7f0b789bc73/1/bpnMzW8P8m3o7Tk29KZL7pjZ3GY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:2f:b8:87:44:ce:6b:40:af:00:be:af:d1:5e:3a:66:49:6f:
         0c:a2:90:a4:fa:08:71:bb:06:eb:69:85:07:23:69:88:f8:ad:
         3d:7a:6b:0b:27:0a:e8:9e:82:d6:37:c9:49:62:62:67:a8:70:
         a1:e5:82:be:2f:69:0a:6d:0a:3c:b4:a8:32:74:a8:9e:36:87:
         39:56:cd:15:09:fc:d7:65:08:13:8f:b2:41:85:71:35:f2:67:
         43:f7:3c:10:60:9f:b0:5c:db:31:1d:14:2a:c9:3e:7e:10:0b:
         4f:36:ed:ec:ad:35:70:4d:ad:44:88:5f:f7:ad:36:95:bf:8c:
         68:60:c9:45:48:5a:4b:b7:56:3b:2b:08:0f:26:b8:30:78:48:
         17:7a:8d:a4:5f:b2:47:1c:69:06:77:32:08:8c:67:af:17:8d:
         1d:f6:e7:52:99:ad:2d:16:62:5f:ad:1f:d4:fe:58:39:0d:35:
         d2:df:d9:27:62:6c:15:e4:45:11:cc:70:fa:2c:15:32:4f:d8:
         78:93:a9:38:9a:82:b6:87:1d:23:c5:36:30:03:e9:1d:69:50:
         ea:46:f5:bb:cf:3c:63:12:65:42:dd:13:ab:69:00:46:01:fe:
         c9:31:3e:31:22:2a:b2:c0:85:ae:57:37:ff:61:24:8b:d5:78:
         2d:af:21:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----