Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
File:                     8VzG8-5-0llTHW0Izp4JNztxYGI.mft (raw, json)
Hash identifier:          pKGGipivQ4LmXSasMv273AnVBXYzULLEGKtBkHl9ufA=
Subject key identifier:   59:05:3D:65:0B:66:01:4F:2E:8F:07:5E:BD:76:EE:B3:DA:C9:92:10
Authority key identifier: F1:5C:C6:F3:EE:7E:D2:59:53:1D:6D:08:CE:9E:09:37:3B:71:60:62
Certificate issuer:       /CN=f15cc6f3ee7ed259531d6d08ce9e09373b716062
Certificate serial:       019756B5A06EE8650379EEBFB252591DCD8B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
Manifest number:          0320
Signing time:             Mon 09 Jun 2025 22:00:32 +0000
Manifest this update:     Mon 09 Jun 2025 22:00:32 +0000
Manifest next update:     Tue 10 Jun 2025 22:00:32 +0000
Files and hashes:         1: 8VzG8-5-0llTHW0Izp4JNztxYGI.crl (hash: pNiownF0VATCeK+yDqT2GQDLgEgMYauI0BGkr9EJftk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 19:25:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:56:b5:a0:6e:e8:65:03:79:ee:bf:b2:52:59:1d:cd:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f15cc6f3ee7ed259531d6d08ce9e09373b716062
        Validity
            Not Before: Jun  9 22:00:32 2025 GMT
            Not After : Jun 10 22:00:32 2025 GMT
        Subject: CN=59053d650b66014f2e8f075ebd76eeb3dac99210
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:85:20:45:d0:b3:44:94:8e:eb:25:0e:e3:30:
                    ed:72:e8:16:da:c5:f1:0f:c5:b1:a9:ce:d6:78:05:
                    28:4e:7e:a0:94:ce:56:5c:b6:df:95:d0:92:57:63:
                    a2:f4:f4:7f:04:a8:b7:cc:ad:d5:50:b7:7f:04:c2:
                    77:d9:8c:9d:51:78:bf:1e:f7:b5:45:c3:c6:30:f5:
                    98:12:3d:ca:b9:e7:43:0f:48:55:ed:9d:2d:65:4a:
                    d9:6e:f6:20:b8:7a:ee:8f:1c:a9:ca:05:af:40:82:
                    40:88:f4:7f:b5:a9:d1:5d:94:42:73:8d:46:89:94:
                    87:55:50:b7:a9:f2:51:10:5a:7b:be:f4:7d:e1:49:
                    bc:df:fd:85:02:13:3e:d7:13:44:e2:20:28:6f:3e:
                    41:a8:02:63:87:50:42:bb:c5:ff:ac:7e:c3:37:96:
                    5b:ba:b7:9a:29:b3:a6:8d:d9:19:1a:71:ae:1f:db:
                    c0:06:f3:38:2f:d0:f8:a5:72:b0:30:16:f8:fd:d7:
                    74:ac:bb:14:d3:9a:63:9b:3e:0a:8d:86:a5:92:57:
                    bc:79:cd:02:38:e9:d5:5f:e3:d3:86:f9:ad:48:4c:
                    79:e0:15:97:3e:61:25:74:2c:e8:6a:b2:c4:a5:86:
                    46:ba:fe:4a:03:19:7c:9b:f1:a6:3d:cd:a9:01:02:
                    17:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:05:3D:65:0B:66:01:4F:2E:8F:07:5E:BD:76:EE:B3:DA:C9:92:10
            X509v3 Authority Key Identifier:
                keyid:F1:5C:C6:F3:EE:7E:D2:59:53:1D:6D:08:CE:9E:09:37:3B:71:60:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:5c:c5:54:43:d4:9e:61:73:75:39:13:21:bf:3c:08:e2:2b:
         d5:dc:74:55:5a:7b:1f:3e:8a:31:f4:fe:8d:0b:c9:30:49:8a:
         7e:8e:6e:43:a9:e8:93:6a:ef:0e:cd:ad:d4:e9:e0:81:01:03:
         aa:e5:87:23:f4:82:00:b2:6e:31:ae:23:f4:00:64:a0:81:45:
         ba:38:ca:1c:60:7f:31:50:8c:0d:dc:9c:cc:8b:d0:7e:bd:35:
         29:71:1e:5f:c0:cd:be:39:b9:da:d3:1a:1c:6e:8c:2f:f6:98:
         a6:c2:2f:9c:d1:a0:1e:cf:42:8a:47:a5:7f:a3:24:44:9d:e6:
         fd:3d:40:09:35:fe:60:ad:10:6e:63:cf:fb:17:24:f7:53:d3:
         c0:5e:12:91:3a:30:52:86:20:84:de:f6:be:e9:8f:14:72:95:
         7d:e6:38:76:d4:2d:f3:7a:7a:e5:32:76:17:a0:d1:da:02:51:
         8a:5d:3d:0e:1f:8f:13:d8:b7:85:a7:54:5b:64:79:2a:8f:6c:
         c0:d9:65:13:24:ca:49:78:75:c1:5e:a4:04:12:aa:68:0a:5c:
         54:3a:df:ee:3f:02:03:d4:69:0e:1a:92:00:c8:07:b4:b5:d6:
         36:2c:20:23:87:a1:aa:b5:b9:ab:bb:20:ef:62:ec:3e:a3:d8:
         65:55:85:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 03:30:41 2025 by rpki-client