Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/ca52f0-d3b3-42c5-8a7b-6dc369dff53f/1/XJF3tPVOZX44dlbmc6-MDuCmCRc.mft
File:                     XJF3tPVOZX44dlbmc6-MDuCmCRc.mft (raw, json)
Hash identifier:          B4//CjeGzZE3QRkmh408/8us5a4+APG9R28PMtFDrfU=
Subject key identifier:   06:B2:CC:21:74:0B:81:F2:A1:AC:7B:1A:A8:E4:21:9D:B2:8B:6D:17
Authority key identifier: 5C:91:77:B4:F5:4E:65:7E:38:76:56:E6:73:AF:8C:0E:E0:A6:09:17
Certificate issuer:       /CN=5c9177b4f54e657e387656e673af8c0ee0a60917
Certificate serial:       0197B70E7954CBEB22316802F9A2B5C69D53
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XJF3tPVOZX44dlbmc6-MDuCmCRc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/eb/ca52f0-d3b3-42c5-8a7b-6dc369dff53f/1/XJF3tPVOZX44dlbmc6-MDuCmCRc.mft
Manifest number:          015C
Signing time:             Sat 28 Jun 2025 15:01:08 +0000
Manifest this update:     Sat 28 Jun 2025 15:01:08 +0000
Manifest next update:     Sun 29 Jun 2025 15:01:08 +0000
Files and hashes:         1: XJF3tPVOZX44dlbmc6-MDuCmCRc.crl (hash: aVQQpoqRnqSSUeg1YwiXXH0j/9ZdvKYgdtMTIYyd81o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/eb/ca52f0-d3b3-42c5-8a7b-6dc369dff53f/1/XJF3tPVOZX44dlbmc6-MDuCmCRc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/eb/ca52f0-d3b3-42c5-8a7b-6dc369dff53f/1/XJF3tPVOZX44dlbmc6-MDuCmCRc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XJF3tPVOZX44dlbmc6-MDuCmCRc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 10:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:0e:79:54:cb:eb:22:31:68:02:f9:a2:b5:c6:9d:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5c9177b4f54e657e387656e673af8c0ee0a60917
        Validity
            Not Before: Jun 28 15:01:08 2025 GMT
            Not After : Jun 29 15:01:08 2025 GMT
        Subject: CN=06b2cc21740b81f2a1ac7b1aa8e4219db28b6d17
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:b3:f7:44:97:7e:40:20:3a:ed:d1:ce:46:9b:
                    ac:ab:5a:80:f5:2a:74:31:5e:ce:04:09:80:f8:08:
                    1b:dd:62:a9:47:60:4c:d6:12:4f:c8:16:b2:1f:1b:
                    c9:f8:2a:2a:4a:ab:67:de:44:29:b6:62:c6:6d:99:
                    43:33:f8:6f:df:e3:29:1d:24:61:97:09:84:6a:ae:
                    35:7a:39:80:33:38:4f:3a:9e:e7:de:cb:36:b8:89:
                    2f:dc:e5:66:d4:c5:64:c6:ec:8c:ac:c9:14:e9:c8:
                    b4:2d:e4:27:13:4c:92:27:e4:98:8e:a0:f7:49:7c:
                    01:1d:90:aa:cf:d8:98:9f:1b:5f:ef:bd:9d:fc:68:
                    4e:c8:5b:38:db:ae:ee:c7:b7:3d:2a:af:2c:92:3a:
                    c3:ed:1a:dd:23:b2:1c:3d:20:7d:2c:74:03:20:d1:
                    f0:28:7b:da:48:75:8e:05:d9:19:2c:2d:2c:6f:95:
                    12:63:5e:78:b2:67:57:b7:a1:51:ca:8e:bc:4b:50:
                    eb:fb:eb:ab:5d:ad:79:7e:f5:db:e3:d9:16:59:4e:
                    a1:0c:65:ba:9d:47:aa:a1:01:6e:8e:51:80:d1:e4:
                    cf:34:52:58:82:1a:e2:ca:7d:5d:93:d3:cd:19:fc:
                    30:d8:2f:14:1d:eb:04:7e:a4:9c:42:0b:71:72:b7:
                    db:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:B2:CC:21:74:0B:81:F2:A1:AC:7B:1A:A8:E4:21:9D:B2:8B:6D:17
            X509v3 Authority Key Identifier:
                keyid:5C:91:77:B4:F5:4E:65:7E:38:76:56:E6:73:AF:8C:0E:E0:A6:09:17

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XJF3tPVOZX44dlbmc6-MDuCmCRc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ca52f0-d3b3-42c5-8a7b-6dc369dff53f/1/XJF3tPVOZX44dlbmc6-MDuCmCRc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/ca52f0-d3b3-42c5-8a7b-6dc369dff53f/1/XJF3tPVOZX44dlbmc6-MDuCmCRc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:0f:58:48:a4:68:f7:92:24:8e:e7:9c:71:9c:c2:20:f3:f2:
         02:6a:35:ca:41:cf:67:56:dd:4f:75:b3:c1:d2:82:4c:96:ae:
         30:51:53:31:3f:4e:7a:ec:a4:7b:b1:e9:40:f9:54:e9:10:f8:
         58:fc:98:8f:2b:46:40:6a:2c:86:28:45:2b:ce:08:08:f1:c4:
         4e:94:68:8b:7b:af:4c:e5:cf:24:83:0f:25:c1:0f:68:9f:85:
         94:b4:10:94:4b:f7:ea:f2:ed:26:4b:b4:60:f6:15:62:be:13:
         c8:36:13:d9:55:62:1e:98:85:5d:0a:f7:99:e9:d0:5c:12:cb:
         99:e7:fc:14:42:82:18:4a:61:ca:55:0c:c8:11:f7:ba:68:d3:
         e1:a2:f9:1e:95:19:fc:10:94:2c:c5:c2:64:6b:05:8a:ec:a6:
         d0:87:b2:ad:69:1b:01:29:90:98:a8:30:d4:7a:3e:7d:59:df:
         d9:7a:1f:19:d9:c2:c9:4f:7d:ca:f2:26:16:86:02:26:92:14:
         21:b8:71:ef:e7:62:0f:a2:f9:75:d8:55:04:aa:ad:44:61:7b:
         89:34:65:17:03:5d:60:62:f4:ed:e7:75:c5:a6:34:4b:e2:b0:
         73:67:9d:56:b1:5c:bd:ad:5e:c3:83:8f:a4:dc:c6:40:b9:71:
         4b:58:33:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----