Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
File:                     K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json)
Hash identifier:          X19/xq9yWD9SiuLpWorwX5cPEGK3piBNKWgpO45Zof0=
Subject key identifier:   2C:B1:3E:A6:FD:07:2A:D9:CD:4A:29:B6:2B:73:A0:12:20:BF:C1:B0
Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
Certificate issuer:       /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Certificate serial:       0197B7459B431CF470F3D06CD28676458A52
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
Manifest number:          0782
Signing time:             Sat 28 Jun 2025 16:01:21 +0000
Manifest this update:     Sat 28 Jun 2025 16:01:21 +0000
Manifest next update:     Sun 29 Jun 2025 16:01:21 +0000
Files and hashes:         1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: VdEamgHiALEfneXRwe0QVLWytXiw4tDjyLLYvW8Ecng=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:45:9b:43:1c:f4:70:f3:d0:6c:d2:86:76:45:8a:52
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
        Validity
            Not Before: Jun 28 16:01:21 2025 GMT
            Not After : Jun 29 16:01:21 2025 GMT
        Subject: CN=2cb13ea6fd072ad9cd4a29b62b73a01220bfc1b0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:ba:53:41:81:40:57:da:0a:3f:17:ef:9e:12:
                    b7:b4:c6:2b:83:ad:3b:df:ca:9b:38:84:0f:80:e4:
                    48:03:fc:88:00:33:af:bc:df:4b:c3:1c:8a:c0:7e:
                    b2:16:91:26:bc:e1:cf:a3:19:74:be:17:8c:00:af:
                    e6:8e:41:c8:c4:20:23:34:c7:dd:77:bd:38:e2:c1:
                    77:63:74:f9:c0:c5:ad:9a:43:53:18:98:26:a8:95:
                    14:c3:17:73:ed:fd:6a:a2:a1:31:f5:be:73:d7:6f:
                    90:c4:6c:b9:66:70:4b:50:ba:3f:d1:e5:4a:4d:57:
                    30:61:c0:43:79:ec:69:29:10:7a:1f:23:09:6d:1a:
                    3e:71:58:36:24:ae:ab:bb:09:ff:ab:63:0d:4f:db:
                    f2:06:42:de:02:9b:03:5c:a0:29:be:ee:4c:88:f1:
                    94:69:b9:16:0f:65:b6:98:1a:be:3c:1f:0f:8d:f0:
                    ff:14:3e:9a:6d:71:6f:c3:c5:fc:9b:f6:c9:ea:df:
                    5e:75:c6:cf:d2:ed:6b:48:ca:13:8d:6d:62:16:75:
                    7b:62:d8:77:42:a6:ba:76:39:c1:c0:5a:62:3b:7a:
                    25:06:f5:e8:e1:de:bf:0e:70:8d:cd:0a:7f:f0:5c:
                    dc:3d:b4:13:01:ed:48:84:70:1f:15:6b:7e:85:ac:
                    ba:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:B1:3E:A6:FD:07:2A:D9:CD:4A:29:B6:2B:73:A0:12:20:BF:C1:B0
            X509v3 Authority Key Identifier:
                keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:66:66:0a:db:46:d6:2d:42:f9:65:df:62:3c:36:85:f2:6a:
         d8:ed:18:c4:ed:aa:7f:4c:a5:16:79:b1:3b:29:63:e8:52:cd:
         75:23:12:57:c5:cf:b6:d5:09:f2:e2:d2:87:22:7f:af:64:ef:
         8c:5c:f9:01:83:a6:19:ce:98:eb:af:4c:fb:6e:92:3b:12:92:
         2a:68:f6:c5:f7:22:42:e8:e3:d8:23:09:d6:b4:bb:3b:b3:7d:
         2d:ee:25:2e:aa:d8:fd:5c:9b:f7:fd:6f:47:88:71:1d:24:55:
         a8:ec:ff:0e:6e:20:8c:99:7b:2e:8c:f4:52:c1:81:d0:3d:c5:
         76:a8:82:65:e1:2c:a7:11:6e:3e:e7:e6:af:3b:f6:de:c5:0b:
         6f:34:c3:d1:06:e0:85:7d:c4:9d:76:c8:03:1e:5e:8f:5e:ef:
         d5:02:78:2b:66:fc:49:74:94:72:fc:cb:9e:ae:0a:52:d7:a8:
         48:51:2a:43:23:92:98:7a:65:0d:26:31:d5:ad:89:3f:3b:d5:
         6d:aa:6d:16:5f:cd:03:2d:14:d7:69:5d:e8:99:00:fe:8f:9a:
         af:46:c5:b2:1e:0e:72:2e:16:f9:6d:d0:95:78:35:42:63:bb:
         9d:83:8e:67:62:f4:59:97:8a:86:2f:3d:b7:25:2f:8d:22:e2:
         79:40:73:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----