Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft
File:                     8cgdjkJn0tRetlJQoqSCULX7Uls.mft (raw, json)
Hash identifier:          vT+4+R8YpV1pWABXe7hB/uCPTkdM8T186lPfJWzcOwo=
Subject key identifier:   E0:BC:35:E8:C1:13:91:8E:A2:A1:11:22:FB:71:F6:A3:B9:47:84:4B
Authority key identifier: F1:C8:1D:8E:42:67:D2:D4:5E:B6:52:50:A2:A4:82:50:B5:FB:52:5B
Certificate issuer:       /CN=f1c81d8e4267d2d45eb65250a2a48250b5fb525b
Certificate serial:       0197B6A14CF4A44DEC8C2E024AC5990C4090
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8cgdjkJn0tRetlJQoqSCULX7Uls.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft
Manifest number:          09D9
Signing time:             Sat 28 Jun 2025 13:01:53 +0000
Manifest this update:     Sat 28 Jun 2025 13:01:53 +0000
Manifest next update:     Sun 29 Jun 2025 13:01:53 +0000
Files and hashes:         1: 8cgdjkJn0tRetlJQoqSCULX7Uls.crl (hash: dQdJKV1dNg8rHbdYUb0Su28bjZxbKb4X4AAx/WjFcT4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8cgdjkJn0tRetlJQoqSCULX7Uls.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 13:01:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a1:4c:f4:a4:4d:ec:8c:2e:02:4a:c5:99:0c:40:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f1c81d8e4267d2d45eb65250a2a48250b5fb525b
        Validity
            Not Before: Jun 28 13:01:53 2025 GMT
            Not After : Jun 29 13:01:53 2025 GMT
        Subject: CN=e0bc35e8c113918ea2a11122fb71f6a3b947844b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:27:ab:c2:56:40:f6:5e:15:c8:81:e2:24:77:
                    57:f4:15:9d:0f:75:f3:ed:c8:1b:fd:c1:7e:32:30:
                    6c:66:61:34:f6:80:76:d6:f4:90:90:8a:40:c3:6c:
                    03:b3:19:6d:62:02:70:c5:ac:6e:2b:7f:3c:29:25:
                    17:e8:51:e7:6a:8f:5a:3c:c9:6b:ed:dd:b5:5e:b5:
                    c1:79:73:8e:4d:87:4e:9f:2e:90:ae:93:9d:e5:e2:
                    fb:54:c3:61:2a:97:c1:35:b8:32:66:7e:82:43:07:
                    0b:e2:29:d8:c3:56:63:9e:23:86:0a:9e:2a:83:22:
                    fd:ef:f9:67:b7:91:29:7f:6c:1e:b5:68:86:84:36:
                    be:c1:f4:2b:85:8e:09:51:33:41:ea:b7:bd:17:5a:
                    af:3c:a5:e9:42:00:c9:b6:64:fd:2a:b3:79:5b:75:
                    02:8e:f7:d9:84:f1:b8:71:bb:ad:31:c2:af:fc:38:
                    a4:7d:6e:94:95:ca:7d:0e:cb:01:4f:fa:ee:45:18:
                    41:22:b9:3c:48:1d:47:fb:8d:ac:7a:f2:ba:b2:35:
                    e6:ae:98:48:9a:4a:3d:25:bf:3c:17:88:d0:ec:01:
                    1d:ef:97:5a:35:9b:a3:c7:3f:ec:b7:3f:96:b6:e2:
                    52:47:de:46:59:cd:96:05:fe:4a:ac:f5:fa:da:31:
                    fc:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:BC:35:E8:C1:13:91:8E:A2:A1:11:22:FB:71:F6:A3:B9:47:84:4B
            X509v3 Authority Key Identifier:
                keyid:F1:C8:1D:8E:42:67:D2:D4:5E:B6:52:50:A2:A4:82:50:B5:FB:52:5B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8cgdjkJn0tRetlJQoqSCULX7Uls.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:d6:74:e2:8f:51:42:5c:08:12:31:b4:a5:c0:67:d3:e0:ab:
         f4:3c:22:77:a0:01:4c:0e:5b:d3:32:3b:3e:32:7e:01:51:4f:
         72:b5:ae:b5:48:9e:c0:ff:d3:2a:d7:98:3b:39:e4:5a:cd:1e:
         33:9f:39:15:6d:e1:2d:11:d2:2e:f9:12:b3:a8:37:c1:5d:95:
         a1:0d:2e:c7:a0:b0:2d:e2:44:7b:e1:c2:56:7c:4a:ca:aa:b2:
         c0:bd:4c:a9:38:f7:b3:ea:d4:36:a9:5d:69:46:68:b1:60:96:
         dc:e7:a0:ff:6a:4c:d2:e2:a2:ce:f5:c5:d5:47:7d:a4:2d:b3:
         80:b5:16:3a:4c:6c:55:a4:3b:89:09:64:81:9b:8d:03:75:d3:
         ed:fe:cb:ee:10:a1:db:5c:1c:a7:f6:dd:60:90:92:64:46:cd:
         7f:84:dd:b1:ff:cd:b8:c2:20:bc:b9:be:3b:a4:12:bd:b8:17:
         1e:1d:d4:c1:05:0c:f5:fa:1f:a3:6e:10:06:4c:c0:ac:29:c3:
         23:94:33:47:a5:81:d4:3f:7e:2c:2e:3e:57:8b:b6:ca:b2:b8:
         a2:78:ac:e0:26:64:b5:29:6d:03:4c:4a:d3:4f:c7:c7:50:1e:
         ed:b0:13:ed:48:a8:91:6b:77:ea:29:57:e7:c2:ad:06:88:e2:
         a6:93:3b:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----