Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
File:                     8VzG8-5-0llTHW0Izp4JNztxYGI.mft (raw, json)
Hash identifier:          8ABqG9AYdrhbBvkAWaoXkcMWmZxT0g3xi0bhwJgvbG0=
Subject key identifier:   B9:AD:6C:02:4D:95:8E:30:F2:C0:26:65:85:9D:15:DD:ED:80:CE:59
Authority key identifier: F1:5C:C6:F3:EE:7E:D2:59:53:1D:6D:08:CE:9E:09:37:3B:71:60:62
Certificate issuer:       /CN=f15cc6f3ee7ed259531d6d08ce9e09373b716062
Certificate serial:       019768174C85B62F6D7EEFE6D1C7C0685105
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
Manifest number:          0329
Signing time:             Fri 13 Jun 2025 07:00:46 +0000
Manifest this update:     Fri 13 Jun 2025 07:00:46 +0000
Manifest next update:     Sat 14 Jun 2025 07:00:46 +0000
Files and hashes:         1: 8VzG8-5-0llTHW0Izp4JNztxYGI.crl (hash: HFx6Wl8Mncmks2g/UQzN/RbP+AcmddsxneUhwm9UlxE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:17:4c:85:b6:2f:6d:7e:ef:e6:d1:c7:c0:68:51:05
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f15cc6f3ee7ed259531d6d08ce9e09373b716062
        Validity
            Not Before: Jun 13 07:00:46 2025 GMT
            Not After : Jun 14 07:00:46 2025 GMT
        Subject: CN=b9ad6c024d958e30f2c02665859d15dded80ce59
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:57:61:be:ae:8a:74:36:50:1c:2a:05:ca:f3:
                    b3:3c:4a:37:4c:9e:ea:9d:83:f8:fd:41:cf:f8:15:
                    fb:8a:3d:43:b9:02:f7:0e:96:47:ce:59:ec:84:75:
                    28:41:90:c3:77:5e:c4:6f:e6:6a:36:1a:dc:3b:df:
                    ad:c9:ab:e8:7f:48:db:97:64:22:2e:a8:7b:ea:f1:
                    64:dc:28:69:07:29:98:aa:87:14:e3:29:57:10:1c:
                    af:5b:24:97:b8:e8:f6:3b:07:98:62:b4:51:9f:16:
                    01:52:3d:b4:4c:2f:98:34:4c:d5:c9:9c:08:d2:6b:
                    ee:94:8c:a3:36:9b:3f:c5:3d:94:d7:dd:89:54:37:
                    4e:44:fc:69:f8:78:e9:7e:c6:82:9b:20:14:d0:28:
                    0b:6a:b4:6a:a8:3b:c6:05:e6:27:12:6e:4e:88:57:
                    25:f3:07:5d:2a:91:fa:ac:01:b9:a3:83:b7:4d:7a:
                    95:f2:94:94:68:b1:c8:41:2e:d9:29:20:6d:8d:83:
                    5a:5f:8f:f6:5f:e3:57:56:8e:50:ae:a6:9e:7e:cc:
                    73:d9:7b:94:eb:51:fb:a1:12:c6:43:94:9a:e5:11:
                    8c:ed:42:79:aa:6a:e7:55:5b:44:5a:2f:27:1b:50:
                    25:b2:76:2b:92:f0:82:f4:e2:2d:bb:c2:d1:59:bf:
                    f9:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:AD:6C:02:4D:95:8E:30:F2:C0:26:65:85:9D:15:DD:ED:80:CE:59
            X509v3 Authority Key Identifier:
                keyid:F1:5C:C6:F3:EE:7E:D2:59:53:1D:6D:08:CE:9E:09:37:3B:71:60:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:76:8b:30:f1:52:2a:13:af:d7:c0:51:22:fa:eb:ef:8c:12:
         5c:af:5f:49:f6:04:71:88:e2:5f:2f:16:dc:e4:40:f4:c9:36:
         3f:fe:4d:22:19:3b:bf:a9:c7:e8:25:23:99:d4:ef:66:93:97:
         f3:bf:87:07:24:52:70:c4:b8:c0:c2:8d:ef:08:13:71:a4:26:
         da:56:16:21:0e:90:6e:45:92:84:d9:20:56:fe:c3:34:fd:07:
         6a:20:1d:62:36:ba:24:95:cf:32:05:35:a4:3f:5f:ef:2c:fa:
         cb:46:12:d6:59:4b:77:6c:6c:cd:d5:74:5b:0d:4f:2c:6f:07:
         bb:12:bf:03:91:66:6f:2e:b0:a6:c3:07:0f:81:92:fa:21:0a:
         e8:ce:b0:6e:63:b5:4a:39:dc:e9:f6:27:3c:d2:34:83:18:b2:
         c2:b5:27:47:49:a4:88:e2:57:6c:47:87:b2:37:13:37:55:39:
         6c:75:06:e0:8b:e0:98:ca:6a:16:9c:fc:ad:79:b7:f2:3b:cf:
         b6:d9:71:bf:d7:ae:c4:20:45:46:37:8c:8a:a9:7c:f2:74:d0:
         78:6a:c0:a5:6b:d5:a4:6c:f3:94:84:03:24:38:64:98:1f:a8:
         66:e2:5f:14:cf:27:23:be:8c:61:81:50:17:28:47:88:1a:99:
         50:c9:ae:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 10:55:14 2025 by rpki-client