Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
File:                     J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft (raw, json)
Hash identifier:          eRvhcSa8fbIjgPzaYN98CXYQVZwQjvyZEDU2yC+kEX8=
Subject key identifier:   0B:5D:4D:3B:5A:29:1E:19:9B:55:B2:DC:DE:3B:57:A8:62:42:24:E6
Authority key identifier: 27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0
Certificate issuer:       /CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0
Certificate serial:       0197B74540A7B0E19054C662B0963D450216
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
Manifest number:          062E
Signing time:             Sat 28 Jun 2025 16:00:58 +0000
Manifest this update:     Sat 28 Jun 2025 16:00:58 +0000
Manifest next update:     Sun 29 Jun 2025 16:00:58 +0000
Files and hashes:         1: J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl (hash: QnLabhRyx0SFDg35JK0P/vn9ajZH6o/o4mezsks3rzY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:45:40:a7:b0:e1:90:54:c6:62:b0:96:3d:45:02:16
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0
        Validity
            Not Before: Jun 28 16:00:58 2025 GMT
            Not After : Jun 29 16:00:58 2025 GMT
        Subject: CN=0b5d4d3b5a291e199b55b2dcde3b57a8624224e6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:12:25:75:90:d4:c4:59:25:b9:c3:2c:91:93:
                    ba:a2:c8:66:90:32:7a:7e:96:e7:03:5f:8e:11:b9:
                    9f:16:52:ab:8f:6f:40:7d:93:f2:18:26:39:b3:69:
                    6f:b4:f4:21:1b:73:38:46:a4:b2:ce:f7:33:38:86:
                    d6:7c:3a:fd:5a:1d:48:90:26:22:c4:0a:91:39:ea:
                    d2:ac:17:94:5c:c7:4f:d6:89:b7:55:a6:eb:5c:86:
                    f0:d9:88:b5:74:34:9f:e4:a1:f8:25:e6:0b:c6:32:
                    64:6b:69:6e:79:6f:4b:cf:57:3a:80:40:34:69:4f:
                    69:79:ef:10:3c:95:4a:0b:25:35:9e:87:62:fd:81:
                    76:b1:66:da:c5:9d:da:19:0e:9d:39:28:25:dd:b9:
                    de:53:85:5e:a9:b4:47:0d:e4:ab:57:48:ed:e5:7c:
                    fa:d2:d8:5f:fd:bd:31:d2:b1:27:0c:45:17:c2:56:
                    e8:fb:b8:8b:b1:89:6f:32:7b:44:7c:50:30:05:7b:
                    44:8e:9a:0f:5e:54:b3:03:6f:f8:a1:f5:4b:13:7d:
                    7c:21:48:dc:4b:27:67:4c:6b:0f:47:a1:c4:0e:18:
                    f2:74:16:46:8a:97:9c:fd:a9:55:4a:1a:df:c7:4d:
                    a8:b2:fa:6a:7d:7c:d7:dd:a3:7b:51:53:03:70:40:
                    7b:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:5D:4D:3B:5A:29:1E:19:9B:55:B2:DC:DE:3B:57:A8:62:42:24:E6
            X509v3 Authority Key Identifier:
                keyid:27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:cf:af:89:16:09:5d:9a:39:30:1c:79:f3:57:5c:0c:16:c9:
         27:f1:49:bc:32:e4:79:96:62:d7:5e:49:08:79:4c:d4:7b:dc:
         52:ab:af:ef:39:0b:c0:39:5a:2f:2f:9f:b7:5f:f9:c4:1a:cd:
         d7:55:29:bd:ee:b5:c7:fb:12:83:87:e3:df:67:ff:8c:f7:13:
         c1:2a:2f:4c:a6:27:f0:8a:7c:85:20:c9:72:57:8c:ad:ce:37:
         af:1c:49:5f:b4:db:75:37:f6:d6:e9:78:ac:c9:38:1f:03:6c:
         aa:18:81:26:a7:3b:04:55:7c:a0:49:5f:5f:47:d9:df:5c:8c:
         32:43:82:b4:53:7f:d1:c8:2b:08:ed:d7:58:84:be:b0:07:47:
         0e:94:e4:d7:5b:70:4d:4a:ce:3a:91:a9:a5:d0:cc:cf:26:87:
         26:54:2b:57:b9:60:f1:01:48:6a:fe:8c:db:d4:5d:50:55:9e:
         b1:82:1b:c2:78:ca:02:70:f0:77:a7:0b:88:45:1f:5b:e2:46:
         78:aa:f6:a3:48:dc:cb:85:df:9b:e4:db:42:00:9b:41:72:a1:
         b1:0e:aa:f6:2e:23:a2:62:0f:33:a9:3c:04:ab:3f:73:d2:83:
         7b:0c:29:06:a0:2d:66:41:fb:f9:a9:e1:d7:37:24:75:15:56:
         a2:fe:88:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----