Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.mft
File:                     aluKc4anCgzU9gC-dYHe-JRHOkE.mft (raw, json)
Hash identifier:          pSlummFWlrNO9Yh05Uoa7i6WuiMZslIhc1k45Bz44tA=
Subject key identifier:   2B:00:5C:F4:A6:7B:B1:64:A5:CC:1B:FA:86:E9:A1:D6:87:8D:A2:35
Authority key identifier: 6A:5B:8A:73:86:A7:0A:0C:D4:F6:00:BE:75:81:DE:F8:94:47:3A:41
Certificate issuer:       /CN=6a5b8a7386a70a0cd4f600be7581def894473a41
Certificate serial:       0197B7456745863EAD3590F0CF5D3028CE78
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aluKc4anCgzU9gC-dYHe-JRHOkE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.mft
Manifest number:          06D4
Signing time:             Sat 28 Jun 2025 16:01:08 +0000
Manifest this update:     Sat 28 Jun 2025 16:01:08 +0000
Manifest next update:     Sun 29 Jun 2025 16:01:08 +0000
Files and hashes:         1: aluKc4anCgzU9gC-dYHe-JRHOkE.crl (hash: KLt3sQBq09kB5AxatJdEJ57AF/KN0w0u+NpdUNnJacw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aluKc4anCgzU9gC-dYHe-JRHOkE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:45:67:45:86:3e:ad:35:90:f0:cf:5d:30:28:ce:78
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6a5b8a7386a70a0cd4f600be7581def894473a41
        Validity
            Not Before: Jun 28 16:01:08 2025 GMT
            Not After : Jun 29 16:01:08 2025 GMT
        Subject: CN=2b005cf4a67bb164a5cc1bfa86e9a1d6878da235
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:ee:a2:da:3c:04:1e:b7:cb:52:a3:9a:bd:75:
                    31:7f:6e:fd:4f:c2:39:b7:c4:8f:ba:57:48:d1:fe:
                    e7:09:f1:19:83:58:a1:82:15:45:29:81:16:48:e7:
                    19:6b:60:1d:55:de:65:4e:aa:53:29:eb:00:ed:6d:
                    19:43:fc:23:b6:42:1d:1e:36:ca:95:bd:07:a0:88:
                    f2:c8:16:3b:f8:67:99:e8:62:d4:23:02:fe:29:38:
                    ae:68:2a:0d:34:74:1d:36:86:dc:7d:a8:a5:6f:23:
                    4e:3e:04:c4:c1:f4:10:16:d9:2d:c8:f0:23:3e:c6:
                    e3:31:22:8a:59:d9:25:2b:5e:21:9c:73:fa:db:fd:
                    03:60:bb:5f:df:47:df:f3:c7:66:7b:8d:1c:19:fc:
                    39:10:26:6a:be:73:c7:74:87:72:a3:a9:ac:46:c5:
                    7f:88:01:1f:c1:cf:c2:c2:70:a1:0d:43:3d:23:3c:
                    68:b1:46:85:0b:08:8f:a0:68:6b:a1:83:90:70:c7:
                    09:58:d1:f2:25:20:92:e3:3e:df:22:95:8b:11:80:
                    9b:d8:94:a0:da:31:c2:18:cb:85:8f:58:47:25:15:
                    1b:4b:0d:22:cf:a2:fe:94:01:d9:c3:f7:7e:22:f9:
                    37:1c:a8:00:84:04:30:5c:77:89:68:c9:9b:6e:54:
                    cb:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:00:5C:F4:A6:7B:B1:64:A5:CC:1B:FA:86:E9:A1:D6:87:8D:A2:35
            X509v3 Authority Key Identifier:
                keyid:6A:5B:8A:73:86:A7:0A:0C:D4:F6:00:BE:75:81:DE:F8:94:47:3A:41

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aluKc4anCgzU9gC-dYHe-JRHOkE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/854c21-5e1a-451d-aea1-fca0741a586e/1/aluKc4anCgzU9gC-dYHe-JRHOkE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:25:e3:00:fe:e4:9e:69:98:69:e7:d7:4a:66:26:6b:04:8d:
         90:c1:a6:f3:b0:e8:bb:e2:47:64:8d:6b:ad:af:ba:d3:ea:a2:
         76:e9:13:f9:e0:c5:88:88:ff:95:3a:45:2a:63:ba:8c:be:56:
         09:5d:72:cd:d4:df:79:1a:c6:9d:d4:e7:5a:86:42:75:a2:84:
         85:7c:f7:4a:ef:1a:b5:57:8d:f2:07:d0:cd:52:1d:9d:d5:09:
         c4:e3:2a:fe:bb:2a:f0:c5:fe:29:fa:63:04:26:d9:e4:fc:f9:
         11:bc:80:19:f6:79:e1:d7:64:e9:85:e7:0f:f6:5a:d8:79:43:
         ad:8b:71:83:aa:4c:91:fc:cc:5b:37:6f:94:93:96:4c:3f:28:
         a1:4b:f9:ce:09:0f:39:11:a7:a4:e1:c2:02:c1:fb:78:8f:18:
         74:93:05:af:6e:7c:11:f1:ab:d5:69:4b:44:56:59:de:18:76:
         a7:3d:6b:68:a0:24:91:c7:b3:97:4d:9d:c2:d9:96:6e:13:76:
         09:d0:16:89:61:57:cc:4d:a8:dd:a2:e0:b3:9b:4f:f8:ac:c0:
         ca:c2:01:16:94:15:1b:e6:4d:c1:4b:6d:17:11:ef:76:ce:b2:
         5d:4d:be:28:bc:a2:a8:64:0f:ac:84:1a:35:fc:17:31:c5:6a:
         2b:3e:24:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----