Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft
File:                     gTpCg40uRe1drUEUYG2XKaZQHSM.mft (raw, json)
Hash identifier:          /KqZwMqW6H7vA7lHD/FT1evj4uJxu6oABoyisSLmLxc=
Subject key identifier:   E8:E6:F4:1B:87:BE:8A:F0:6E:9D:01:85:55:30:14:4F:F9:11:07:8E
Authority key identifier: 81:3A:42:83:8D:2E:45:ED:5D:AD:41:14:60:6D:97:29:A6:50:1D:23
Certificate issuer:       /CN=813a42838d2e45ed5dad4114606d9729a6501d23
Certificate serial:       0197B8FD0129CE1F85FFB6D8977EE29AB806
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gTpCg40uRe1drUEUYG2XKaZQHSM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft
Manifest number:          0E15
Signing time:             Sun 29 Jun 2025 00:01:17 +0000
Manifest this update:     Sun 29 Jun 2025 00:01:17 +0000
Manifest next update:     Mon 30 Jun 2025 00:01:17 +0000
Files and hashes:         1: gTpCg40uRe1drUEUYG2XKaZQHSM.crl (hash: o+DfZgxDekCDQBW+V/clIcOB8gnRSrt3BqcIcUCHVPQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gTpCg40uRe1drUEUYG2XKaZQHSM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Jun 2025 00:01:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b8:fd:01:29:ce:1f:85:ff:b6:d8:97:7e:e2:9a:b8:06
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=813a42838d2e45ed5dad4114606d9729a6501d23
        Validity
            Not Before: Jun 29 00:01:17 2025 GMT
            Not After : Jun 30 00:01:17 2025 GMT
        Subject: CN=e8e6f41b87be8af06e9d01855530144ff911078e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:d4:49:38:18:20:dc:0f:52:19:56:62:aa:c2:
                    32:85:f3:f1:a0:51:46:f5:b4:3b:7a:f6:73:d1:74:
                    ed:d8:08:34:c3:36:28:46:4a:12:13:7d:8d:c6:a9:
                    ac:71:bd:4c:c3:54:9c:0a:1a:e7:36:02:ce:d1:3d:
                    6b:d3:c2:f5:65:39:a6:51:2e:55:55:f6:67:2a:86:
                    a5:78:1e:fc:30:c0:18:1f:59:50:e7:34:a4:2a:06:
                    d1:60:bf:65:8a:4d:05:73:aa:b0:bd:61:97:d2:fb:
                    4a:90:f2:80:c9:05:97:2d:d5:34:18:ca:92:03:3b:
                    d5:4e:d3:fd:9d:03:59:bc:91:b7:86:a0:49:67:91:
                    90:67:96:cf:98:92:7d:a9:99:ec:c1:3d:21:5d:04:
                    f3:dc:c7:a9:e1:44:e2:f7:48:57:a2:c2:ed:2a:3b:
                    b9:2e:a0:02:c9:c4:bd:27:5f:1e:b8:dd:2d:c1:69:
                    76:6f:4b:39:82:25:db:d2:52:8b:12:3b:b7:1a:9e:
                    a0:25:a9:63:9f:fe:79:ad:75:0e:c3:29:61:72:b3:
                    a4:81:89:95:d7:fe:7a:b8:34:a1:61:d9:f5:a8:a8:
                    b8:12:a1:37:e6:9c:d8:e1:8e:47:55:f9:15:9a:fd:
                    40:55:d8:7f:f6:88:ae:c7:dd:92:2c:1d:e6:fa:19:
                    e5:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:E6:F4:1B:87:BE:8A:F0:6E:9D:01:85:55:30:14:4F:F9:11:07:8E
            X509v3 Authority Key Identifier:
                keyid:81:3A:42:83:8D:2E:45:ED:5D:AD:41:14:60:6D:97:29:A6:50:1D:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTpCg40uRe1drUEUYG2XKaZQHSM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8c38a3-c204-4dcf-9c47-5348fe77ba73/1/gTpCg40uRe1drUEUYG2XKaZQHSM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         71:0e:9d:d1:0b:f1:62:58:df:a6:54:fb:99:da:5c:fa:d4:88:
         07:c0:58:3a:13:a7:d9:08:93:6b:22:9a:f6:1f:e0:e4:b9:21:
         6a:12:c4:10:af:e7:8e:8c:a6:26:d7:9f:69:e1:5f:33:c6:e6:
         27:3d:ae:aa:7f:b1:01:09:0d:e6:b0:7a:36:6a:b8:d2:b5:12:
         ce:46:12:3d:06:f1:27:39:a0:f7:67:0a:c3:8d:36:bf:87:99:
         72:6f:07:58:8a:1b:be:55:48:3e:a5:ab:3b:63:2b:ac:1a:fc:
         03:0d:eb:25:27:74:25:4e:fb:ae:d6:40:7b:e6:4c:18:e6:5d:
         59:6c:ba:87:b5:02:58:15:27:e6:5d:02:98:eb:91:1e:bc:03:
         97:26:98:df:8b:67:56:1e:22:f3:ff:12:2c:39:26:3b:96:bf:
         61:4d:3e:86:ba:0e:c7:d6:ba:6b:3b:30:c5:40:05:ee:3c:82:
         26:db:8b:db:41:31:95:2a:9a:6f:bb:03:88:b7:a2:20:bf:14:
         40:4b:2b:dd:33:6d:e2:26:a2:81:df:f0:9c:ff:75:75:f5:29:
         d2:48:0b:82:b1:29:6b:db:bc:f8:54:0e:47:c1:83:8b:83:0b:
         86:fe:b1:59:6f:97:ad:4d:fb:4c:09:7b:90:ad:82:71:3b:b8:
         57:e7:5e:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----