Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
File:                     2axioKJWftFz3CqtN25FXIW8trs.mft (raw, json)
Hash identifier:          CioJJKEBwAM97cB02pIF8NP3fNBWmJbt3yLmAyMIgDg=
Subject key identifier:   E6:BB:B9:27:BA:8E:0F:D8:FA:80:A4:83:22:A0:93:32:B5:92:44:94
Authority key identifier: D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB
Certificate issuer:       /CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb
Certificate serial:       0197B6A1CDA0DE863B5F798E4226E8BB994E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
Manifest number:          15B1
Signing time:             Sat 28 Jun 2025 13:02:26 +0000
Manifest this update:     Sat 28 Jun 2025 13:02:26 +0000
Manifest next update:     Sun 29 Jun 2025 13:02:26 +0000
Files and hashes:         1: 2axioKJWftFz3CqtN25FXIW8trs.crl (hash: uJ3KEwB/+t+QckheMPZGHe3FUbtDYBvIJZH9sQanUk8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 13:02:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a1:cd:a0:de:86:3b:5f:79:8e:42:26:e8:bb:99:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d9ac62a0a2567ed173dc2aad376e455c85bcb6bb
        Validity
            Not Before: Jun 28 13:02:26 2025 GMT
            Not After : Jun 29 13:02:26 2025 GMT
        Subject: CN=e6bbb927ba8e0fd8fa80a48322a09332b5924494
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:5b:7f:45:3e:b1:91:dc:9e:6d:36:dd:61:a0:
                    2e:3b:04:1f:be:89:8a:8d:8e:6a:79:12:ad:4c:29:
                    9c:2e:18:5b:60:b0:a7:63:cb:5f:64:cf:c3:ef:46:
                    19:5f:2d:cb:dc:da:c8:7b:63:45:b9:a2:8c:f5:c8:
                    a5:59:d5:c4:12:2b:a2:46:e4:e5:20:61:fd:45:b8:
                    3b:bc:98:bf:5e:aa:b9:b7:8c:08:e8:99:e5:2d:4c:
                    b2:4a:17:75:8f:bb:ef:ac:dd:f5:6c:b0:e3:2b:99:
                    fe:67:f3:81:51:fe:f9:57:d7:63:63:fc:7d:fd:bf:
                    ad:00:53:62:57:cc:17:16:04:15:3f:22:b1:01:3a:
                    6c:61:d6:8b:80:27:c0:c3:21:cb:0e:87:4d:89:5d:
                    43:2e:7f:5f:40:97:ee:24:d6:9b:f0:01:70:dc:d4:
                    af:eb:d0:a6:ff:5c:a4:e5:6a:1a:24:d7:87:44:58:
                    46:b8:9b:3e:f7:3b:ba:f1:ff:bb:58:b8:77:b2:c1:
                    7f:f7:44:73:cd:14:a6:3b:73:ed:cb:22:b6:64:b7:
                    07:5f:69:5c:f9:24:dd:ef:08:f5:42:be:7f:06:31:
                    08:be:da:f5:dc:d2:46:4c:57:f5:bb:49:69:8f:87:
                    3c:d2:88:57:69:64:2a:7a:2e:b7:07:9a:4d:6c:8a:
                    f6:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:BB:B9:27:BA:8E:0F:D8:FA:80:A4:83:22:A0:93:32:B5:92:44:94
            X509v3 Authority Key Identifier:
                keyid:D9:AC:62:A0:A2:56:7E:D1:73:DC:2A:AD:37:6E:45:5C:85:BC:B6:BB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2axioKJWftFz3CqtN25FXIW8trs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5ce86e-27d2-48c2-88b5-f181b6e80a62/1/2axioKJWftFz3CqtN25FXIW8trs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         21:29:9b:16:83:7a:8d:1e:58:55:28:52:7a:4e:fc:59:2d:28:
         4a:9e:a4:ea:d3:63:fd:8e:90:a9:13:fc:e9:00:a3:55:05:7e:
         b5:41:09:6c:23:2b:93:e0:bf:4b:5e:ce:98:52:e0:67:7d:85:
         47:85:5b:4b:8c:46:81:39:be:9a:a4:4d:02:84:f4:8b:fd:a1:
         98:ab:01:65:a0:48:34:9b:2e:9d:73:cb:c5:43:c2:6a:33:c0:
         8b:b9:2f:a6:28:26:62:a4:03:b5:0b:dc:50:00:ab:67:e3:00:
         3b:f0:08:04:16:05:c2:cf:36:26:7d:64:cf:62:fe:be:de:03:
         4c:f4:32:f3:58:6a:5b:4e:70:04:23:d0:fd:09:3e:8c:73:ac:
         3b:68:2a:5f:2d:8b:1f:e3:02:7f:44:4b:8f:01:07:c6:67:87:
         e1:ea:00:47:a4:d9:d2:0f:27:1e:0b:3f:cd:58:2d:00:66:da:
         23:62:ef:e4:2f:94:22:cf:be:b3:a9:d4:3d:e4:50:09:8a:33:
         e4:ce:5e:bf:99:53:dd:bd:aa:af:fc:95:b1:e7:0d:2d:b1:38:
         f9:f3:aa:de:21:83:85:ca:83:5f:85:ef:10:8c:27:67:fe:f8:
         f2:7d:ee:c2:71:25:e9:1e:8a:a1:48:64:0f:24:9f:a6:00:b5:
         b9:3d:4f:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----