Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
File:                     gEFPcG9s0sh68PYGstE3a4a1-mY.mft (raw, json)
Hash identifier:          8Wmrds++hwd6QJNazJ8IAnP6FbgRepTymy0LABkvJUo=
Subject key identifier:   7E:97:AD:FF:9B:11:04:35:53:60:DA:6B:C9:94:55:BB:40:33:68:0A
Authority key identifier: 80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66
Certificate issuer:       /CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66
Certificate serial:       0197B88FCB03E267986C0E7485FCA844A239
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
Manifest number:          15B3
Signing time:             Sat 28 Jun 2025 22:02:00 +0000
Manifest this update:     Sat 28 Jun 2025 22:02:00 +0000
Manifest next update:     Sun 29 Jun 2025 22:02:00 +0000
Files and hashes:         1: gEFPcG9s0sh68PYGstE3a4a1-mY.crl (hash: dRN9t2gqlXODe3aXzno1EHUgUFcrUsOomwWFuxq7i5Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 19:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b8:8f:cb:03:e2:67:98:6c:0e:74:85:fc:a8:44:a2:39
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=80414f706f6cd2c87af0f606b2d1376b86b5fa66
        Validity
            Not Before: Jun 28 22:02:00 2025 GMT
            Not After : Jun 29 22:02:00 2025 GMT
        Subject: CN=7e97adff9b1104355360da6bc99455bb4033680a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:85:82:f8:9a:9d:57:ef:46:ee:49:45:10:83:
                    d2:9e:b6:a9:58:9a:58:f6:2e:93:03:87:6d:a8:48:
                    51:be:a7:79:6a:61:01:b4:6f:25:89:29:1a:04:52:
                    13:7d:f0:ac:ff:69:7b:7a:13:7f:3a:58:6d:44:11:
                    7b:1b:6f:5b:8e:6b:f7:d2:a1:79:33:54:21:3f:43:
                    f3:5f:2d:81:cc:39:c7:0a:98:30:b2:ad:c6:9f:22:
                    03:43:ca:72:aa:e8:61:20:25:5e:c3:fc:66:98:0b:
                    d3:9b:6f:aa:c3:8f:41:5e:6d:58:70:aa:8d:23:40:
                    e7:bc:0b:de:0e:05:82:e3:5e:c0:fc:fb:91:75:ca:
                    55:52:f8:31:ff:b8:2c:98:a7:91:05:71:0d:cd:8e:
                    9c:d3:3f:0e:a6:b4:61:8b:61:d6:5b:f6:ab:af:bb:
                    33:b1:68:c9:4d:93:f3:f1:5a:8b:57:82:8d:31:b1:
                    b6:cc:28:97:5c:e7:3c:ca:a2:21:c2:38:93:97:08:
                    cb:4a:12:96:05:a6:f6:52:ee:e3:f7:7b:90:16:05:
                    f5:7b:20:a5:73:5a:55:0d:5b:82:1f:1d:c4:ab:5a:
                    94:02:46:4c:81:e6:af:13:64:21:74:95:66:74:19:
                    1e:8d:af:52:11:b2:c0:dc:d1:4b:06:59:11:41:c4:
                    d9:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:97:AD:FF:9B:11:04:35:53:60:DA:6B:C9:94:55:BB:40:33:68:0A
            X509v3 Authority Key Identifier:
                keyid:80:41:4F:70:6F:6C:D2:C8:7A:F0:F6:06:B2:D1:37:6B:86:B5:FA:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEFPcG9s0sh68PYGstE3a4a1-mY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/81e5bd-f7ab-4287-bbb5-6d856f84a813/1/gEFPcG9s0sh68PYGstE3a4a1-mY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         42:e0:5f:ea:a5:b5:79:85:f1:ec:19:26:65:21:c1:9a:ae:a7:
         05:bb:b2:dc:1d:44:51:db:48:84:1d:9b:44:d0:8d:00:cc:61:
         f5:66:b2:d6:da:0f:ec:46:f2:27:e3:5f:86:07:32:04:39:e3:
         35:2b:72:c0:7b:dd:eb:ba:e1:45:65:e8:2c:ec:5a:e8:85:7a:
         1a:fd:55:27:d6:05:fe:81:6e:bd:0d:bf:dc:bb:4d:12:64:a2:
         2e:dd:4f:64:91:6a:d9:fe:2d:03:25:13:b4:a9:81:9a:5e:93:
         aa:3e:e9:1f:8c:e3:46:a2:69:28:32:99:94:99:70:ca:52:a4:
         f0:5f:63:36:ba:c7:89:fc:6c:63:c5:0f:9d:0b:1d:eb:d8:73:
         3b:0e:36:17:3d:c0:05:d9:93:d2:93:1c:9a:06:f1:e3:44:0f:
         32:f6:7b:44:d1:77:8d:91:07:af:ca:b3:6d:a4:85:65:f6:0b:
         3c:3f:23:08:3e:f4:b5:69:9d:1e:f3:c1:77:b1:5c:48:de:9a:
         3c:5f:78:bc:c5:1f:c1:8e:ee:d2:9c:05:6e:c2:2c:88:e5:3b:
         27:59:5c:29:00:3b:b9:08:85:cc:12:8d:a5:29:ad:1d:86:56:
         10:ca:a8:e8:9e:4c:d7:ec:75:d0:a9:ec:88:e7:6b:c6:bf:be:
         27:77:41:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----