Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
File:                     8VzG8-5-0llTHW0Izp4JNztxYGI.mft (raw, json)
Hash identifier:          hR5/eELSeB7T/ZaZiYxT4KMHoJWRMzneQhAJyv0guVg=
Subject key identifier:   13:F1:65:06:07:23:81:11:DD:63:61:62:21:E8:01:5B:F4:2B:53:20
Authority key identifier: F1:5C:C6:F3:EE:7E:D2:59:53:1D:6D:08:CE:9E:09:37:3B:71:60:62
Certificate issuer:       /CN=f15cc6f3ee7ed259531d6d08ce9e09373b716062
Certificate serial:       01976BF411C37CD0FD5160504F2FEC28ABF0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
Manifest number:          032B
Signing time:             Sat 14 Jun 2025 01:00:46 +0000
Manifest this update:     Sat 14 Jun 2025 01:00:46 +0000
Manifest next update:     Sun 15 Jun 2025 01:00:46 +0000
Files and hashes:         1: 8VzG8-5-0llTHW0Izp4JNztxYGI.crl (hash: L7CwnfBwUFHYUrLhSVczEmZ0Lwhe/vwShHJA2eZBcFo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:f4:11:c3:7c:d0:fd:51:60:50:4f:2f:ec:28:ab:f0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f15cc6f3ee7ed259531d6d08ce9e09373b716062
        Validity
            Not Before: Jun 14 01:00:46 2025 GMT
            Not After : Jun 15 01:00:46 2025 GMT
        Subject: CN=13f1650607238111dd63616221e8015bf42b5320
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:7c:bc:90:c0:f6:b0:4b:34:ed:a0:ac:a7:df:
                    a3:88:d9:e1:33:ff:3c:eb:f8:fa:c5:4f:e6:41:25:
                    85:0b:50:f7:0a:24:35:e3:8f:ed:ac:b4:54:c2:1b:
                    b7:4e:38:46:e9:7c:36:ce:63:6e:68:71:57:bd:91:
                    a4:5a:59:43:ae:d2:8a:9f:80:db:96:d8:21:cb:35:
                    fb:75:2d:13:a6:71:ba:91:12:36:9e:c9:f8:55:34:
                    f8:b0:ae:3f:e6:31:a5:b4:58:9a:52:b0:9f:6e:a6:
                    6d:40:97:85:ae:ea:d3:cd:18:ef:10:4c:7b:9e:5a:
                    75:1f:93:04:f2:26:f7:87:38:1b:e6:63:e9:ca:d0:
                    77:b9:44:66:7f:5a:19:01:00:67:31:0d:9f:0e:ba:
                    8c:24:76:41:f0:f6:39:99:30:49:e2:0a:6f:ca:d1:
                    99:59:6d:61:62:b2:a9:98:6f:54:fb:00:6a:cd:91:
                    13:f3:54:fb:d1:4e:c6:11:44:92:9a:3e:e7:5e:46:
                    11:55:a1:ad:9d:3b:c6:29:c2:15:b7:65:9d:de:0d:
                    7b:50:4f:ee:42:b3:0c:57:c6:aa:31:96:f6:fc:50:
                    94:aa:76:12:f0:16:91:1b:4d:b2:55:61:36:f3:67:
                    5c:1c:62:c2:85:92:67:79:9e:8f:7b:b4:f0:a2:b1:
                    6f:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:F1:65:06:07:23:81:11:DD:63:61:62:21:E8:01:5B:F4:2B:53:20
            X509v3 Authority Key Identifier:
                keyid:F1:5C:C6:F3:EE:7E:D2:59:53:1D:6D:08:CE:9E:09:37:3B:71:60:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8VzG8-5-0llTHW0Izp4JNztxYGI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/87e9b7-ead4-4b5b-bc88-691ee41a6014/1/8VzG8-5-0llTHW0Izp4JNztxYGI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:26:50:20:a6:a4:b6:38:70:28:59:19:06:7f:e1:b6:99:33:
         29:38:8b:61:2d:b3:7e:d0:53:f6:12:2a:e9:fe:cb:15:f5:50:
         b4:23:6d:0c:5f:6c:e6:c4:93:b1:9d:79:ac:9b:80:03:f9:02:
         5b:af:c6:dc:30:e8:33:0a:79:0e:27:7f:14:c6:ae:b5:66:05:
         66:1c:bf:62:a8:12:20:53:56:ab:ef:2a:71:c9:6c:83:a7:3b:
         4d:91:31:c7:35:29:f6:97:27:ad:e9:b9:0c:cd:35:cf:70:74:
         3c:e8:34:fa:af:e0:0d:82:a7:cf:1a:59:da:86:16:51:a0:b8:
         29:c5:3d:e9:7b:e1:a5:4c:a1:79:f5:2e:bf:09:0a:87:57:56:
         71:cf:0d:22:34:95:45:3e:1b:c5:70:29:6c:b9:ce:64:46:b7:
         90:99:af:66:07:76:d1:0d:fe:ce:99:66:07:95:73:71:af:3d:
         cb:d2:c9:cf:38:7f:a2:64:a6:79:ef:70:ec:88:58:34:42:5e:
         bc:5a:a3:be:5c:b4:63:07:01:72:55:44:3f:b3:f8:98:d8:a1:
         0c:05:33:e9:9d:42:b4:22:b2:03:99:ea:ee:0a:19:c4:3d:0f:
         12:bc:8e:55:ae:4a:52:4e:73:42:76:34:e6:f2:6e:d5:ea:0a:
         63:bd:82:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 12:29:25 2025 by rpki-client