Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
File:                     tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft (raw, json)
Hash identifier:          o5BhCHFPRTITwm3sXh3f+NdZLmSpTA5OlYdnjfo0Gb4=
Subject key identifier:   E6:9B:0F:28:01:23:C9:44:56:1F:96:BA:FD:8E:14:0C:0F:02:16:39
Authority key identifier: B4:A3:A9:BE:77:E2:D9:FD:E7:FF:E1:F5:16:29:F9:4E:98:EA:3C:D8
Certificate issuer:       /CN=b4a3a9be77e2d9fde7ffe1f51629f94e98ea3cd8
Certificate serial:       0197470BD2F74CB521D0FA109B6C5E9BA4BB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
Manifest number:          0790
Signing time:             Fri 06 Jun 2025 21:00:46 +0000
Manifest this update:     Fri 06 Jun 2025 21:00:46 +0000
Manifest next update:     Sat 07 Jun 2025 21:00:46 +0000
Files and hashes:         1: tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl (hash: /00S94lI1Z/Bb/phQXvanXpTQPr4/1LWMjurY9zCmrw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 15:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:47:0b:d2:f7:4c:b5:21:d0:fa:10:9b:6c:5e:9b:a4:bb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b4a3a9be77e2d9fde7ffe1f51629f94e98ea3cd8
        Validity
            Not Before: Jun  6 21:00:46 2025 GMT
            Not After : Jun  7 21:00:46 2025 GMT
        Subject: CN=e69b0f280123c944561f96bafd8e140c0f021639
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:39:6c:d8:68:a4:ce:0e:ee:d5:b4:56:95:8a:
                    64:98:4f:27:85:a9:84:24:ab:80:8b:a2:99:d0:04:
                    eb:23:f7:6d:d4:a5:10:07:3b:6d:92:8c:b5:4a:33:
                    0f:d7:c0:57:83:1a:5b:6b:cd:7f:36:c6:75:6c:d7:
                    41:b4:f9:c9:ff:79:14:5d:ba:65:88:df:fd:6e:4e:
                    0c:28:af:1a:59:73:4f:21:65:4e:f5:7a:ce:3a:e5:
                    5d:8e:f4:4f:32:b1:4d:38:9f:b4:34:3d:d2:2d:54:
                    8b:51:52:af:43:c1:3b:ee:57:43:27:d1:98:94:27:
                    e8:1e:60:75:0e:89:61:05:59:7d:4d:9d:5d:e2:cc:
                    54:9f:16:5d:2b:99:64:c0:f0:1b:fd:ac:17:60:4c:
                    c3:a2:0a:2c:13:20:18:80:01:d5:f1:5c:e9:73:94:
                    90:ae:d3:64:dc:26:d4:b9:07:ae:67:3e:8e:4b:d3:
                    52:dd:ed:ef:1d:99:53:18:59:b9:73:e5:2d:38:06:
                    8a:82:f7:45:ee:a2:1a:93:35:9a:1e:ef:24:57:19:
                    b0:c9:aa:44:e6:90:b6:e1:d0:45:07:93:30:2a:6d:
                    6f:5e:b5:58:82:a5:64:51:73:94:ac:bb:97:a8:6b:
                    1f:57:0d:32:47:f2:ac:0d:bf:c2:4f:ae:2b:78:df:
                    2b:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:9B:0F:28:01:23:C9:44:56:1F:96:BA:FD:8E:14:0C:0F:02:16:39
            X509v3 Authority Key Identifier:
                keyid:B4:A3:A9:BE:77:E2:D9:FD:E7:FF:E1:F5:16:29:F9:4E:98:EA:3C:D8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:11:7e:d0:17:1d:86:98:e4:ea:f4:5a:b8:e4:6f:ca:d8:bd:
         05:8d:83:a5:9f:df:b6:65:61:f8:f7:89:5a:27:74:de:e0:d5:
         15:2d:7f:be:31:c7:99:66:45:21:e2:a5:f3:37:ce:d2:1c:79:
         d1:99:dc:e1:43:07:69:0c:15:5c:45:e1:02:ee:7a:b1:2d:e3:
         7a:50:a1:37:d2:c1:e5:db:7b:79:b7:a8:26:c1:91:33:7e:fb:
         11:94:bf:ed:39:03:5f:c9:61:fc:73:24:2a:d3:2a:84:f0:f1:
         2f:98:3f:7c:93:ab:c7:a4:02:ab:d7:37:21:06:6c:ed:7e:01:
         17:dd:2f:a2:7e:50:52:27:42:cd:43:a4:39:77:11:71:d5:61:
         6e:71:c0:a9:a4:9f:ce:14:08:fc:ac:e6:7f:61:1e:44:31:69:
         fa:7d:91:d1:a6:65:ae:81:1c:40:85:dd:82:3c:5a:2d:ef:2e:
         fe:86:c2:dd:17:35:41:5f:09:64:44:b7:be:40:81:13:64:ba:
         8d:da:72:a7:1a:f6:95:0d:19:55:fd:c7:07:e6:b1:17:bb:99:
         93:53:85:f4:35:42:28:8d:fc:eb:31:4e:86:51:81:64:e6:60:
         da:7e:3d:ea:9c:17:51:fd:c7:b0:4a:64:11:1b:1f:bb:8e:3f:
         86:0d:4e:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----