Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
File:                     UNlf0yarPwj3bczGVrs-Hia03Fc.mft (raw, json)
Hash identifier:          EtlDSe/iLKbblaC2oQ0VcAdWU3i+j6qrqIQYhkp3/h0=
Subject key identifier:   6A:85:BB:9C:58:69:41:35:3B:C9:F3:05:C7:2C:07:F4:4E:BB:F6:6D
Authority key identifier: 50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57
Certificate issuer:       /CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57
Certificate serial:       0197B70ECD91180DFC622C916B20ABC3DB54
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
Manifest number:          015C
Signing time:             Sat 28 Jun 2025 15:01:30 +0000
Manifest this update:     Sat 28 Jun 2025 15:01:30 +0000
Manifest next update:     Sun 29 Jun 2025 15:01:30 +0000
Files and hashes:         1: UNlf0yarPwj3bczGVrs-Hia03Fc.crl (hash: q8Y6pf+2m4PyOSnyYFu7d2bwythrns2CXSk5t11xldY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:0e:cd:91:18:0d:fc:62:2c:91:6b:20:ab:c3:db:54
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57
        Validity
            Not Before: Jun 28 15:01:30 2025 GMT
            Not After : Jun 29 15:01:30 2025 GMT
        Subject: CN=6a85bb9c586941353bc9f305c72c07f44ebbf66d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:0f:4a:a1:11:86:95:d9:2d:9b:f8:e9:a2:36:
                    3b:01:fd:1d:35:1a:d0:79:62:d0:24:60:17:ec:43:
                    00:ce:15:d4:1d:2e:b5:73:9a:d7:43:8e:11:2e:26:
                    30:fa:2c:fe:25:6a:13:b2:2d:b9:92:15:f0:72:ba:
                    53:13:78:b6:31:8f:25:ca:fc:3a:c4:8b:6c:8b:24:
                    b4:90:22:dd:d5:56:23:ae:38:e0:81:52:18:e6:e3:
                    0b:cd:a1:6f:66:f9:f8:9b:c5:fd:c2:74:58:6f:90:
                    4d:9d:7d:09:25:5e:53:ff:47:d6:ce:8c:8a:ae:80:
                    f1:c9:ff:79:6a:04:7e:de:11:36:d7:e8:68:62:35:
                    ba:eb:f3:b4:24:69:d5:2e:43:1b:4d:64:dc:7d:9a:
                    46:9a:0c:5a:68:60:f3:7c:78:1c:e4:82:f0:c2:ed:
                    cf:22:a8:66:29:f2:d8:39:67:9e:14:c3:96:1c:01:
                    cc:45:88:d8:3c:d4:c3:14:12:b9:9a:dd:65:4d:72:
                    e3:87:b5:46:cf:50:a9:eb:ce:37:16:77:ff:2c:37:
                    20:c7:93:aa:58:b9:69:ab:13:b9:7a:3b:2f:99:0a:
                    68:23:59:eb:c6:a7:31:41:7d:63:03:76:f3:25:9d:
                    66:3a:01:22:87:31:4f:10:c0:9e:af:05:7c:e1:86:
                    49:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:85:BB:9C:58:69:41:35:3B:C9:F3:05:C7:2C:07:F4:4E:BB:F6:6D
            X509v3 Authority Key Identifier:
                keyid:50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:1b:90:2c:df:53:09:a0:ad:30:b4:0b:5d:c3:8e:f5:52:42:
         a7:e5:f1:e7:e5:6e:48:d5:39:d1:e7:e8:d7:31:5d:15:9f:f8:
         96:3b:f4:3a:cb:a5:e0:f7:ef:74:e3:71:ce:04:57:34:c4:2a:
         ff:0a:24:f2:6d:b4:45:c9:af:c7:1e:94:56:dc:d2:ed:1e:2c:
         f5:4a:7e:90:11:b3:b8:c7:29:16:3d:32:45:be:17:8a:5f:77:
         29:8e:20:56:6f:c5:be:69:38:58:64:91:bd:2b:8e:38:46:39:
         61:9f:23:06:a3:7e:12:0d:0b:06:79:7f:0b:88:ad:fb:71:4b:
         5c:aa:95:b2:9f:8c:3d:b4:79:16:dd:17:19:83:f2:54:53:39:
         3d:ef:c6:6c:db:c8:b9:16:07:68:2e:03:77:6d:1b:66:37:52:
         d9:9c:d0:11:56:37:5c:e6:d6:92:ae:27:99:2a:d9:cc:d9:50:
         4a:65:bf:4f:9a:09:b8:58:0e:77:11:c3:3f:ed:f1:a0:cc:b2:
         3f:5d:81:ea:17:ae:fe:39:38:96:f2:c4:06:23:89:01:f9:3b:
         5f:3b:e3:ca:86:ba:96:a9:b7:9f:11:0d:69:15:43:ab:47:b6:
         56:68:d9:3b:fe:22:93:52:90:51:55:f7:dc:5b:a0:6e:e6:04:
         2d:4f:62:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----