Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft
File:                     dCadQgSZl1rpNPNM45WTgRTJuns.mft (raw, json)
Hash identifier:          J1Tgl27dGisGvyHRueFc6IrfHFUEwoGWAzdSLJVCEWU=
Subject key identifier:   EF:16:83:CE:0A:3F:8B:9D:5E:54:CD:36:AD:9D:53:1A:72:6F:5F:2F
Authority key identifier: 74:26:9D:42:04:99:97:5A:E9:34:F3:4C:E3:95:93:81:14:C9:BA:7B
Certificate issuer:       /CN=74269d420499975ae934f34ce395938114c9ba7b
Certificate serial:       0197C04861482A95148FBC88ACBDB796B249
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dCadQgSZl1rpNPNM45WTgRTJuns.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft
Manifest number:          110E
Signing time:             Mon 30 Jun 2025 10:00:58 +0000
Manifest this update:     Mon 30 Jun 2025 10:00:58 +0000
Manifest next update:     Tue 01 Jul 2025 10:00:58 +0000
Files and hashes:         1: dCadQgSZl1rpNPNM45WTgRTJuns.crl (hash: Kmc8o2Klfxm6UCbsUZ6L5nmcSKzoMfeYYephM3kzkoE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dCadQgSZl1rpNPNM45WTgRTJuns.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 01 Jul 2025 10:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:c0:48:61:48:2a:95:14:8f:bc:88:ac:bd:b7:96:b2:49
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74269d420499975ae934f34ce395938114c9ba7b
        Validity
            Not Before: Jun 30 10:00:58 2025 GMT
            Not After : Jul  1 10:00:58 2025 GMT
        Subject: CN=ef1683ce0a3f8b9d5e54cd36ad9d531a726f5f2f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:ba:1b:54:3f:ca:ce:5a:96:3e:7b:52:c7:30:
                    6d:2c:96:22:2b:1a:a6:30:d7:fc:73:1c:6e:cc:3a:
                    f4:1e:3a:4b:6d:49:23:b2:d2:9e:cd:6a:9b:d1:89:
                    26:7d:c2:76:3d:59:12:bd:9e:c3:e1:19:8d:d4:4f:
                    42:35:55:11:0e:67:1c:8c:5e:d2:92:bd:7d:e8:d5:
                    e6:66:30:8b:9b:f0:68:a4:7f:2b:7b:6f:f2:83:0f:
                    90:29:44:62:24:ba:aa:90:ef:e2:ec:24:79:56:3f:
                    a1:dd:73:06:91:16:a4:fe:9b:af:44:e4:00:a5:95:
                    1e:25:f4:42:4b:0c:c2:c1:26:36:84:22:c8:da:a9:
                    b8:66:95:83:d0:2d:05:1b:a6:30:97:ba:3b:89:08:
                    bc:83:e4:9b:99:b4:3b:5f:7f:00:5b:19:3c:3a:e7:
                    e9:3e:17:23:78:15:a5:d1:a0:52:1c:b1:19:66:bb:
                    5b:c1:a4:cf:be:ae:fe:cb:81:58:1c:5b:0a:59:a1:
                    31:11:00:df:6b:d1:8b:c3:23:91:b2:18:6a:ca:0d:
                    4f:ee:b3:a9:4b:62:e1:e6:d6:9b:56:4a:cd:a8:4e:
                    f2:82:19:d1:eb:85:39:d5:ef:c1:90:07:b1:30:3c:
                    6b:da:a1:95:c0:e3:d8:c5:74:b5:3c:b1:c4:9a:95:
                    7c:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:16:83:CE:0A:3F:8B:9D:5E:54:CD:36:AD:9D:53:1A:72:6F:5F:2F
            X509v3 Authority Key Identifier:
                keyid:74:26:9D:42:04:99:97:5A:E9:34:F3:4C:E3:95:93:81:14:C9:BA:7B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dCadQgSZl1rpNPNM45WTgRTJuns.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/49d813-2d9e-44b6-97ba-ea9c2c5222fb/1/dCadQgSZl1rpNPNM45WTgRTJuns.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         88:60:46:f4:50:10:72:50:e4:07:cb:0a:07:a5:ef:0c:d2:47:
         9f:95:2a:14:45:51:9f:d3:e0:51:fc:1e:e1:73:5c:bb:91:66:
         bf:36:18:dd:5d:41:56:43:27:9d:32:ea:e8:2f:f0:77:7b:e1:
         12:c1:4a:a1:72:70:31:55:e3:84:e2:ca:bd:c7:7f:06:3d:be:
         9c:9f:ba:b7:04:c6:3f:99:d2:73:b9:78:e7:e2:b8:af:06:07:
         3e:07:93:a6:47:fd:d4:7a:75:4b:1b:84:96:c3:b5:74:cb:5e:
         3c:42:70:bb:31:dd:aa:3c:00:ea:3b:cb:a3:76:65:27:04:58:
         67:d0:34:c2:8b:ee:5d:f8:7d:3f:03:a6:64:11:a2:22:95:a3:
         e2:f8:4b:e3:58:28:a8:23:c2:67:09:82:4e:c7:ef:84:3a:83:
         01:38:9c:9e:97:c5:58:c7:7d:22:2a:e2:54:34:ad:8b:d5:36:
         fa:88:15:73:5f:ce:2c:9f:5c:21:48:83:52:01:73:85:89:91:
         df:c6:48:ed:eb:56:5e:87:0c:88:89:07:ce:0d:d5:28:7b:54:
         b3:0b:01:88:c5:83:19:d4:fa:fd:19:da:91:a6:d3:d5:45:c0:
         0e:43:2b:9e:d1:ed:7e:58:1d:31:fd:10:7b:3b:05:77:e6:fc:
         e3:f4:4c:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----