Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.mft
File:                     68Xg5EXZRzFUru10Rpss-6NmTjU.mft (raw, json)
Hash identifier:          3736LZZNDQdnXV/3GpJrAs6oLgA8+SmJ9g1tBLq9jVM=
Subject key identifier:   B5:7A:C7:6A:85:05:DD:63:CD:FA:62:3D:99:79:8D:77:9A:02:84:DF
Authority key identifier: EB:C5:E0:E4:45:D9:47:31:54:AE:ED:74:46:9B:2C:FB:A3:66:4E:35
Certificate issuer:       /CN=ebc5e0e445d9473154aeed74469b2cfba3664e35
Certificate serial:       0196D0D108018EBF3792CC7E6DD6258812DD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/68Xg5EXZRzFUru10Rpss-6NmTjU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.mft
Manifest number:          0882
Signing time:             Wed 14 May 2025 22:01:22 +0000
Manifest this update:     Wed 14 May 2025 22:01:22 +0000
Manifest next update:     Thu 15 May 2025 22:01:22 +0000
Files and hashes:         1: 68Xg5EXZRzFUru10Rpss-6NmTjU.crl (hash: o6ZiSQ4qHm37ZpzLI2UujpENoDwSJomhu4+LCyE1f4M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/68Xg5EXZRzFUru10Rpss-6NmTjU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 15 May 2025 22:01:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:d0:d1:08:01:8e:bf:37:92:cc:7e:6d:d6:25:88:12:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ebc5e0e445d9473154aeed74469b2cfba3664e35
        Validity
            Not Before: May 14 22:01:22 2025 GMT
            Not After : May 15 22:01:22 2025 GMT
        Subject: CN=b57ac76a8505dd63cdfa623d99798d779a0284df
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:91:81:8f:71:7b:c2:e7:8e:86:ec:f1:cb:84:
                    81:97:43:3b:54:d1:38:48:25:ab:91:b5:7f:7c:1a:
                    ae:88:06:4f:01:75:d3:76:65:d9:de:e6:07:a3:be:
                    7a:60:c1:19:89:8f:8d:ff:f8:96:d0:d2:ad:70:d7:
                    4a:44:e5:88:2d:e6:ce:a5:ca:05:0f:7b:ef:a1:dd:
                    f6:b1:d0:05:92:bd:bb:46:ba:5b:d9:44:54:05:f1:
                    15:a5:7e:69:8b:5f:2c:d9:db:a7:a6:78:93:95:9b:
                    b7:d3:62:33:a0:21:44:cf:cf:a0:97:ba:ed:74:2f:
                    a2:17:35:0f:2f:6a:02:1c:2d:82:03:35:3b:f8:38:
                    1a:27:ef:15:83:30:3e:74:1d:3a:54:14:c5:5c:37:
                    cd:e2:d0:5c:bf:19:4b:5f:5e:76:f4:cc:c3:c8:1e:
                    7b:40:38:46:a3:09:67:9d:64:74:de:86:1b:75:00:
                    5c:4d:90:4b:07:5b:06:be:b1:ab:48:13:fe:10:89:
                    a1:61:67:4f:30:d7:4d:15:d8:4e:45:28:64:19:08:
                    25:37:ba:dd:ae:8c:f2:86:4a:f1:63:2c:54:5b:d6:
                    b2:6d:3b:e8:2c:4f:62:62:96:a1:d4:b4:81:57:76:
                    1a:ae:ce:a5:00:58:92:8a:23:71:3c:9f:d5:41:5e:
                    cf:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B5:7A:C7:6A:85:05:DD:63:CD:FA:62:3D:99:79:8D:77:9A:02:84:DF
            X509v3 Authority Key Identifier:
                keyid:EB:C5:E0:E4:45:D9:47:31:54:AE:ED:74:46:9B:2C:FB:A3:66:4E:35

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68Xg5EXZRzFUru10Rpss-6NmTjU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/61/32abee-cf7a-44f9-8765-8dec2e163a86/1/68Xg5EXZRzFUru10Rpss-6NmTjU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b1:ea:a2:be:d2:ba:25:49:fc:76:90:85:81:a4:cd:70:e3:40:
         e4:d5:e3:a2:44:89:41:58:06:c4:90:c6:6f:74:32:95:78:a9:
         71:82:f6:3a:11:a7:0d:f6:da:08:4d:be:f4:f1:f7:1d:d7:de:
         30:86:9f:cc:5e:8d:eb:2f:9c:cf:28:40:f0:9d:7b:48:70:69:
         da:d9:12:14:b4:ea:7e:65:03:71:ed:a6:02:b5:ec:39:dc:9e:
         76:5b:bb:09:c8:8d:e2:95:32:95:fd:6f:b2:4b:69:78:3c:56:
         3f:c8:8f:53:c0:5f:06:22:0e:a7:68:2e:86:6c:f9:03:3f:ca:
         f7:a0:c8:fd:59:7c:e2:3a:b6:13:14:c2:30:ea:28:ac:a8:a4:
         9a:db:eb:9a:1b:87:06:8f:1a:2c:56:93:d3:af:97:24:3a:3e:
         a2:8a:3a:92:0c:13:ba:78:e5:aa:83:7b:8b:57:2e:4a:a3:42:
         60:53:e4:42:7e:db:58:a5:07:82:4f:88:9f:a5:e2:23:a5:f3:
         48:ed:36:69:e1:e3:67:b5:6d:0e:ee:65:a6:23:11:d4:2b:e5:
         9e:8b:bd:35:bb:8d:c3:fa:64:4a:46:76:50:49:d1:49:23:73:
         75:bd:e9:82:92:5e:13:1a:2e:b2:d8:d1:79:99:8a:91:f7:ba:
         53:27:cf:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----