Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft
File:                     eXqQW0595YVil_bgOmViXeIsQvM.mft (raw, json)
Hash identifier:          oE2jc6gCZZw7MXhyDexZkdoPGUxmxI6WkqTxB1SeJUc=
Subject key identifier:   9F:6E:B9:E1:9D:1E:89:F2:EA:25:3C:4D:FB:46:A3:F8:75:86:3D:2E
Authority key identifier: 79:7A:90:5B:4E:7D:E5:85:62:97:F6:E0:3A:65:62:5D:E2:2C:42:F3
Certificate issuer:       /CN=797a905b4e7de5856297f6e03a65625de22c42f3
Certificate serial:       0197C61495A9061F6E9BEAB09E12957BCFED
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eXqQW0595YVil_bgOmViXeIsQvM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft
Manifest number:          0D88
Signing time:             Tue 01 Jul 2025 13:02:07 +0000
Manifest this update:     Tue 01 Jul 2025 13:02:07 +0000
Manifest next update:     Wed 02 Jul 2025 13:02:07 +0000
Files and hashes:         1: eXqQW0595YVil_bgOmViXeIsQvM.crl (hash: 1ZTU9R3Dx8+aHeW6GopsNN9Zd16IT5VsTdVvpFCjmrc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eXqQW0595YVil_bgOmViXeIsQvM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 02 Jul 2025 08:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:c6:14:95:a9:06:1f:6e:9b:ea:b0:9e:12:95:7b:cf:ed
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=797a905b4e7de5856297f6e03a65625de22c42f3
        Validity
            Not Before: Jul  1 13:02:07 2025 GMT
            Not After : Jul  2 13:02:07 2025 GMT
        Subject: CN=9f6eb9e19d1e89f2ea253c4dfb46a3f875863d2e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:a0:09:ab:b5:a0:43:8a:e3:a7:69:c5:76:2a:
                    56:85:e9:2f:ae:6c:70:ea:3d:a8:00:d6:66:ac:c9:
                    42:7b:d8:14:d8:b3:e6:a2:78:81:89:e6:49:04:bb:
                    d3:33:62:cb:24:30:19:28:05:d9:14:e9:32:16:c9:
                    36:5c:37:79:85:e6:dd:c1:9b:b5:57:c2:20:8c:a0:
                    c0:9c:0b:ff:e1:d9:5a:c0:61:32:93:67:22:54:3d:
                    c2:be:50:ac:68:4f:7f:37:32:55:88:16:3c:33:ce:
                    ca:30:eb:cb:74:43:5a:dc:c9:5c:bf:00:8b:87:21:
                    4a:b2:8b:dd:a0:83:01:4e:cd:d4:d9:5e:c2:6b:e5:
                    ac:9b:ff:99:56:2f:4c:d4:60:e4:ff:25:4b:c3:75:
                    ed:64:2d:83:bd:c2:1a:8e:4c:34:3a:53:62:8e:be:
                    6b:f1:96:55:07:d3:39:93:af:27:56:0b:4d:11:5d:
                    b9:02:ab:a2:d4:c3:77:5b:db:a2:16:43:9a:90:35:
                    31:2e:3b:c1:dc:8d:ed:c2:fb:0a:50:b6:93:9a:4b:
                    cb:3e:3c:92:eb:b3:22:1b:3c:3b:97:af:bb:9a:3f:
                    c8:a6:8d:08:e8:21:9b:ac:f1:83:71:c1:b4:5b:ea:
                    ee:ed:36:71:a8:ae:f4:b8:eb:1e:a3:1a:9c:6d:76:
                    47:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:6E:B9:E1:9D:1E:89:F2:EA:25:3C:4D:FB:46:A3:F8:75:86:3D:2E
            X509v3 Authority Key Identifier:
                keyid:79:7A:90:5B:4E:7D:E5:85:62:97:F6:E0:3A:65:62:5D:E2:2C:42:F3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXqQW0595YVil_bgOmViXeIsQvM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/91/069be4-41c0-4312-94dd-f697c2ea6767/1/eXqQW0595YVil_bgOmViXeIsQvM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2a:e8:00:4e:68:bf:50:d4:a9:d5:fb:6d:05:41:10:e8:0f:6b:
         76:d8:03:f2:a8:8e:eb:3f:3f:48:8d:23:0a:fd:8c:9b:11:82:
         18:07:1c:9b:96:4c:0d:7a:1b:fb:1b:ea:10:69:f5:2f:c2:2a:
         21:96:a0:b5:aa:68:c6:9e:91:ce:bd:e8:ee:c6:5f:44:e1:79:
         d1:24:b7:a3:c8:de:44:6c:e2:ec:ea:9e:8a:33:9c:ca:c5:a1:
         bf:29:5c:e5:0f:56:19:a9:b3:38:8f:29:28:92:9d:6f:12:ad:
         3e:34:fc:54:7a:f1:d7:15:91:cf:32:07:31:93:4a:a4:b5:e1:
         31:4b:13:30:e3:1f:b0:0f:ac:e1:ae:ff:46:21:63:92:dd:19:
         05:87:19:4e:8f:24:01:ab:2a:11:96:c6:72:35:73:b1:e8:05:
         31:29:67:48:df:9b:a8:46:54:fb:20:3a:0e:6f:82:d3:83:69:
         d0:4d:d3:08:7b:10:e7:4c:f9:e4:c2:0d:a1:cf:e9:26:e0:d2:
         0c:98:9c:13:37:64:d0:14:c3:a7:63:de:3e:51:4f:4e:f7:74:
         42:a4:62:0d:be:59:9d:ae:61:96:a1:6e:b7:76:9d:96:52:33:
         ed:95:55:04:2f:51:22:c2:4b:b2:64:57:7e:33:f9:0e:48:85:
         a1:a9:49:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----