Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft
File:                     nD_Ua11gbBzKtVixc24mIaS8BAM.mft (raw, json)
Hash identifier:          neKanMgd/2SMeAg5uVYAZnz+NL5qOtYOkdQPjeevEug=
Subject key identifier:   52:45:FF:69:EF:62:31:C3:B7:95:87:7C:76:85:89:18:2C:2F:38:AB
Authority key identifier: 9C:3F:D4:6B:5D:60:6C:1C:CA:B5:58:B1:73:6E:26:21:A4:BC:04:03
Certificate issuer:       /CN=9c3fd46b5d606c1ccab558b1736e2621a4bc0403
Certificate serial:       019767A92FB109A5C769AA63CC3534385A7A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nD_Ua11gbBzKtVixc24mIaS8BAM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft
Manifest number:          0819
Signing time:             Fri 13 Jun 2025 05:00:30 +0000
Manifest this update:     Fri 13 Jun 2025 05:00:30 +0000
Manifest next update:     Sat 14 Jun 2025 05:00:30 +0000
Files and hashes:         1: nD_Ua11gbBzKtVixc24mIaS8BAM.crl (hash: jp+0GrRkMm25kZ91n6G31LmABimKH+JH2qX91ZbBZmU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nD_Ua11gbBzKtVixc24mIaS8BAM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 05:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:a9:2f:b1:09:a5:c7:69:aa:63:cc:35:34:38:5a:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9c3fd46b5d606c1ccab558b1736e2621a4bc0403
        Validity
            Not Before: Jun 13 05:00:30 2025 GMT
            Not After : Jun 14 05:00:30 2025 GMT
        Subject: CN=5245ff69ef6231c3b795877c768589182c2f38ab
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:0f:30:c8:02:a7:db:18:11:c5:c7:36:15:2e:
                    64:b4:ab:45:b4:83:e8:9e:43:6d:c0:51:08:45:ae:
                    49:d7:ef:25:4e:dc:a2:41:a0:2d:64:44:89:55:5e:
                    54:39:40:6f:26:5f:05:26:b2:c1:da:e2:3d:8c:bb:
                    3a:d7:32:ed:1f:c8:ba:66:82:15:5f:b3:d3:bd:b6:
                    fd:8a:d1:a9:4d:86:4e:77:c5:e7:89:bd:97:9b:51:
                    65:b7:3f:56:29:c3:7e:0d:50:ff:8a:e9:09:56:d8:
                    9c:2e:72:4f:e6:3b:ae:80:58:e2:69:43:89:05:5c:
                    eb:5c:06:35:eb:ac:8c:5e:ec:1b:e4:cb:89:34:f9:
                    70:a6:71:02:c6:4f:cd:87:f6:07:1b:0c:8b:7c:0c:
                    46:35:46:68:15:3e:94:6d:ab:e4:8e:99:97:f5:d8:
                    67:db:72:5a:91:53:83:80:c0:d5:a0:8e:2d:0c:4d:
                    49:b3:74:49:23:4c:87:cf:0a:7f:79:12:66:c0:db:
                    b1:86:c2:ac:0d:1f:23:1f:95:fb:46:31:a3:c8:e4:
                    fd:7b:84:d6:1a:dc:78:23:11:fc:e9:2d:1b:c4:a4:
                    94:5b:b5:d7:cd:f2:b1:81:28:54:94:a6:81:a5:2e:
                    a5:ec:bc:03:58:bb:3b:3b:9b:f9:cd:10:38:66:d5:
                    58:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:45:FF:69:EF:62:31:C3:B7:95:87:7C:76:85:89:18:2C:2F:38:AB
            X509v3 Authority Key Identifier:
                keyid:9C:3F:D4:6B:5D:60:6C:1C:CA:B5:58:B1:73:6E:26:21:A4:BC:04:03

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nD_Ua11gbBzKtVixc24mIaS8BAM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:a0:87:88:1b:83:d8:5f:8b:af:0a:f6:7a:77:b5:7e:f1:ca:
         6f:1a:57:d7:59:ac:e5:af:d1:31:3e:a6:42:2e:a4:39:66:5f:
         c4:8d:19:fb:27:db:2a:d9:6a:d6:e7:35:a6:90:dd:99:97:ba:
         4d:0b:2b:4e:b0:d0:03:2f:8f:fc:ec:1e:e1:e2:60:02:00:c2:
         3b:00:36:17:8b:7f:e5:71:dc:e3:77:e5:34:f8:72:c5:53:d1:
         65:23:a1:b1:9d:3d:fd:60:1f:4a:e7:3f:fe:ee:95:38:9f:e0:
         86:2f:01:71:b1:9f:65:f7:21:ac:f1:cc:27:07:a8:18:79:2f:
         fb:8d:6a:30:5c:77:5b:23:65:6c:a5:54:59:3d:ff:33:e9:22:
         4a:25:f7:f1:c8:ca:cb:58:cc:65:5d:8d:a1:f6:e2:aa:1d:9c:
         bb:fc:4f:76:fe:93:0d:16:9d:ba:02:16:a1:33:10:ab:f7:ce:
         5d:b8:1b:d5:b9:4f:19:3e:5d:bc:86:53:8e:7f:be:bf:fe:7e:
         22:bf:24:0c:8a:9f:ce:7e:36:13:a0:e8:76:a5:4e:a9:29:db:
         be:d9:82:d9:40:71:9c:b4:b2:6e:04:26:c1:17:f9:59:5f:ff:
         82:fe:8d:e9:6a:0f:b4:57:4b:90:9e:53:bb:54:a5:00:a6:0b:
         03:6a:34:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 12:53:43 2025 by rpki-client