Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/6b5b7b-f93c-4f37-8a64-6b2f526047a9/1/nzeBglGggdHMfzAVMg62NSZwm5E.mft
File:                     nzeBglGggdHMfzAVMg62NSZwm5E.mft (raw, json)
Hash identifier:          FiMmvgYlyafDZBHZpITnS2MCTTqNk8NwvPrc1sZs2wA=
Subject key identifier:   37:9F:45:83:25:F6:B9:22:FA:8C:CF:28:14:4E:30:81:1B:1D:00:70
Authority key identifier: 9F:37:81:82:51:A0:81:D1:CC:7F:30:15:32:0E:B6:35:26:70:9B:91
Certificate issuer:       /CN=9f37818251a081d1cc7f3015320eb63526709b91
Certificate serial:       0197488C4899792DE9603147A7FFEE2DB0BA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nzeBglGggdHMfzAVMg62NSZwm5E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/6b5b7b-f93c-4f37-8a64-6b2f526047a9/1/nzeBglGggdHMfzAVMg62NSZwm5E.mft
Manifest number:          05E5
Signing time:             Sat 07 Jun 2025 04:00:42 +0000
Manifest this update:     Sat 07 Jun 2025 04:00:42 +0000
Manifest next update:     Sun 08 Jun 2025 04:00:42 +0000
Files and hashes:         1: nzeBglGggdHMfzAVMg62NSZwm5E.crl (hash: e+AxE5gYjQXA9PSRt9JRwhpbb/JkgsP5lV4bvR3TBXk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/6b5b7b-f93c-4f37-8a64-6b2f526047a9/1/nzeBglGggdHMfzAVMg62NSZwm5E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/6b5b7b-f93c-4f37-8a64-6b2f526047a9/1/nzeBglGggdHMfzAVMg62NSZwm5E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nzeBglGggdHMfzAVMg62NSZwm5E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 04:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8c:48:99:79:2d:e9:60:31:47:a7:ff:ee:2d:b0:ba
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9f37818251a081d1cc7f3015320eb63526709b91
        Validity
            Not Before: Jun  7 04:00:42 2025 GMT
            Not After : Jun  8 04:00:42 2025 GMT
        Subject: CN=379f458325f6b922fa8ccf28144e30811b1d0070
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:87:f2:7e:8c:44:0f:92:f5:c8:86:b2:f5:66:
                    5d:17:8d:43:33:9e:46:33:50:db:7e:c5:31:45:67:
                    08:27:38:3f:27:9d:4a:c4:4a:7b:85:bf:74:eb:b9:
                    21:a1:92:72:fb:b9:bb:99:b8:e8:14:8a:1c:bc:04:
                    c2:84:70:fe:6c:bb:21:5c:df:8c:cf:c0:52:42:e4:
                    64:b9:cc:1f:1e:26:f9:36:c6:ed:29:39:ac:61:a3:
                    a5:25:c3:01:9d:e9:de:7f:67:64:47:8b:0a:f7:94:
                    05:c6:ea:0b:f5:d3:96:24:d5:f6:5d:3b:52:fe:4f:
                    7d:b8:1e:46:34:b9:15:21:59:10:45:0e:0d:65:7a:
                    87:91:ac:aa:6f:b8:f4:55:1e:5b:62:95:21:d6:f2:
                    65:2d:aa:86:da:7e:2f:1e:30:13:73:41:75:fe:6c:
                    f9:19:e2:ed:a5:35:bb:a2:09:6b:d6:28:23:ca:88:
                    1b:a7:f6:b9:22:24:ae:8b:02:ff:1b:0f:bf:a6:48:
                    81:67:f1:5a:1c:e9:f9:d7:59:c7:d5:df:02:24:98:
                    4f:13:4a:a1:d1:21:be:38:3a:0e:d9:7a:96:02:6b:
                    e9:9b:d2:78:2c:70:e8:04:cb:58:d2:a1:01:74:6c:
                    03:5f:7e:f3:7b:a1:cb:e6:b9:b3:bc:bc:dc:8d:10:
                    82:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:9F:45:83:25:F6:B9:22:FA:8C:CF:28:14:4E:30:81:1B:1D:00:70
            X509v3 Authority Key Identifier:
                keyid:9F:37:81:82:51:A0:81:D1:CC:7F:30:15:32:0E:B6:35:26:70:9B:91

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzeBglGggdHMfzAVMg62NSZwm5E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/6b5b7b-f93c-4f37-8a64-6b2f526047a9/1/nzeBglGggdHMfzAVMg62NSZwm5E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/6b5b7b-f93c-4f37-8a64-6b2f526047a9/1/nzeBglGggdHMfzAVMg62NSZwm5E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:af:93:be:b3:83:55:da:5c:9b:e2:40:f1:ff:dd:a8:7e:87:
         2b:c5:33:a5:dc:e1:0a:8d:01:08:40:85:21:88:d6:7b:74:84:
         b1:53:39:a3:42:70:4d:f9:b0:89:33:d4:e8:a9:d6:1d:20:55:
         3f:d6:91:46:e0:8b:ce:a3:49:70:73:48:70:6c:f6:ef:07:68:
         fb:eb:50:1c:3b:cd:ce:09:61:b1:16:16:57:e6:24:52:6a:1a:
         fa:e2:a2:c6:08:26:25:42:60:cd:a4:4b:a6:7f:c6:ea:16:50:
         6e:a1:42:4c:98:4e:79:96:14:30:b4:48:1b:85:92:d0:4e:f0:
         6a:6e:f5:c4:2f:13:b8:ff:da:ab:e2:f8:5c:65:67:e0:e4:6b:
         c2:8a:1f:9b:24:47:c6:49:5e:9a:6a:e9:69:a0:bd:83:4c:51:
         92:9e:16:5e:45:4f:39:cd:1f:b9:3c:44:33:2d:57:a3:ca:1e:
         e1:2c:06:fa:2f:51:9f:95:4b:1e:06:93:2a:a1:48:3a:bb:7d:
         f9:a3:46:e6:16:b6:cf:81:f3:5a:c7:d9:ef:dc:c2:28:e3:5a:
         7c:36:00:b7:c3:ed:ca:31:f5:51:af:65:85:44:95:08:a7:09:
         61:f3:d2:9b:1b:d8:8b:0b:4a:5a:68:ca:e7:ea:2d:11:7f:ed:
         f4:b6:c2:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----