Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft
File:                     nD_Ua11gbBzKtVixc24mIaS8BAM.mft (raw, json)
Hash identifier:          tsvmfKna6eOeNvUnQ1qrzXVOLnsmhR8X/fi18ItKPaE=
Subject key identifier:   C8:18:12:95:55:57:C8:9E:C4:DC:85:49:79:1A:71:D6:73:34:E0:92
Authority key identifier: 9C:3F:D4:6B:5D:60:6C:1C:CA:B5:58:B1:73:6E:26:21:A4:BC:04:03
Certificate issuer:       /CN=9c3fd46b5d606c1ccab558b1736e2621a4bc0403
Certificate serial:       01975FEFAC377907D942EBAC112423AAF253
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nD_Ua11gbBzKtVixc24mIaS8BAM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft
Manifest number:          0815
Signing time:             Wed 11 Jun 2025 17:00:31 +0000
Manifest this update:     Wed 11 Jun 2025 17:00:31 +0000
Manifest next update:     Thu 12 Jun 2025 17:00:31 +0000
Files and hashes:         1: nD_Ua11gbBzKtVixc24mIaS8BAM.crl (hash: OWPVRxED2YTv0TG6NMSo1kXYiNy7BA4gWhBaHlLqyHI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nD_Ua11gbBzKtVixc24mIaS8BAM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 15:40:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5f:ef:ac:37:79:07:d9:42:eb:ac:11:24:23:aa:f2:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9c3fd46b5d606c1ccab558b1736e2621a4bc0403
        Validity
            Not Before: Jun 11 17:00:31 2025 GMT
            Not After : Jun 12 17:00:31 2025 GMT
        Subject: CN=c81812955557c89ec4dc8549791a71d67334e092
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:34:30:6a:a9:71:6a:cb:1a:71:5f:7c:50:10:
                    03:87:f6:7f:20:48:cc:0d:ad:bd:d4:3e:de:54:06:
                    3b:cb:4a:b1:3c:1f:32:bf:f7:aa:ce:f9:ca:1d:b6:
                    3c:63:09:11:dd:d2:01:71:c3:fe:ea:42:42:3e:a5:
                    26:9f:0e:aa:d5:84:53:ad:6e:09:81:d8:72:30:c2:
                    aa:14:1a:25:cf:5b:c0:68:b8:9b:33:1e:7b:41:8b:
                    e2:23:2f:61:f7:19:4c:24:ce:f3:a6:94:2d:39:0a:
                    7d:8b:26:16:0f:6e:f2:dc:e0:a6:3c:94:4d:79:80:
                    19:8d:c0:f4:f4:89:14:72:dc:de:cf:b6:a7:cc:c3:
                    44:05:33:d4:d6:d7:f5:5c:83:c7:e0:12:8e:cf:b1:
                    9f:4e:98:87:67:9a:9f:64:d5:cd:30:9a:04:f0:77:
                    b4:6b:1f:b8:36:b2:09:52:33:5a:2b:3a:1b:da:61:
                    ae:4a:4b:75:26:0e:af:80:d8:ea:7a:3a:07:8e:a2:
                    cf:ef:9a:fa:ef:49:2e:f8:df:18:2c:54:f7:a2:f8:
                    5f:0c:10:b3:44:86:6c:67:1e:b3:15:14:fd:40:30:
                    c2:35:c1:b9:70:2d:2f:ea:a0:bc:4e:fa:b1:9f:1b:
                    df:34:4b:61:4e:da:a6:82:16:fd:dc:e6:af:0c:78:
                    0b:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:18:12:95:55:57:C8:9E:C4:DC:85:49:79:1A:71:D6:73:34:E0:92
            X509v3 Authority Key Identifier:
                keyid:9C:3F:D4:6B:5D:60:6C:1C:CA:B5:58:B1:73:6E:26:21:A4:BC:04:03

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nD_Ua11gbBzKtVixc24mIaS8BAM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:ac:d1:e4:91:71:71:3b:7a:26:ed:e0:77:c6:79:38:33:4f:
         a5:b4:de:cc:ca:2b:53:d2:49:ef:22:ce:00:c1:e8:2e:57:c3:
         30:61:1c:25:f9:80:b4:d3:07:39:bf:4a:cc:e0:90:6f:91:ef:
         18:2c:ac:20:0d:7f:7d:2d:2a:ff:68:39:ae:37:8b:e4:5e:1e:
         dc:25:23:45:62:93:80:04:a0:d8:53:3c:3f:fd:57:e9:81:90:
         50:79:41:f7:fb:49:bb:61:ac:40:53:78:7f:0e:50:00:c7:75:
         fc:3f:5e:e6:a4:0e:73:e5:76:51:63:a4:d9:c2:73:29:15:37:
         1f:2d:2d:13:58:ec:24:79:3c:ea:8e:b1:9d:05:8c:9e:ba:0c:
         03:64:3d:9b:64:91:b5:ee:e1:f3:fe:65:3f:b9:5a:67:c8:cc:
         a9:e4:06:e2:c1:6a:e7:21:3a:89:ee:9f:d6:90:cc:6e:c3:f5:
         85:d4:46:f5:5b:6a:63:02:e1:cf:9e:41:9f:8c:50:65:83:f7:
         21:40:9c:37:98:5c:1e:7a:9a:06:35:b8:72:ed:d1:b4:15:eb:
         25:f1:08:f6:2f:c0:23:aa:b5:1b:c4:05:5a:56:35:26:27:4d:
         84:0a:92:ba:86:fd:a1:63:4c:a5:54:e9:e4:34:66:18:e3:71:
         b1:67:ce:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----