Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft
File:                     nD_Ua11gbBzKtVixc24mIaS8BAM.mft (raw, json)
Hash identifier:          yjw9E2uYB9C8ceQTVhAISLjdwEn6M+1rczMfVPdw7OQ=
Subject key identifier:   4A:E8:57:EA:E9:BA:3B:EF:0D:6C:6F:AF:1C:C3:2A:CF:CA:1B:16:13
Authority key identifier: 9C:3F:D4:6B:5D:60:6C:1C:CA:B5:58:B1:73:6E:26:21:A4:BC:04:03
Certificate issuer:       /CN=9c3fd46b5d606c1ccab558b1736e2621a4bc0403
Certificate serial:       019769978EDD3DA1F75A0F6A4506635DDBF5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nD_Ua11gbBzKtVixc24mIaS8BAM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft
Manifest number:          081A
Signing time:             Fri 13 Jun 2025 14:00:29 +0000
Manifest this update:     Fri 13 Jun 2025 14:00:29 +0000
Manifest next update:     Sat 14 Jun 2025 14:00:29 +0000
Files and hashes:         1: nD_Ua11gbBzKtVixc24mIaS8BAM.crl (hash: amuxDwo8Yh7/EpXzcKdp26aOrGbcBp/vKX6fG1zi+Io=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nD_Ua11gbBzKtVixc24mIaS8BAM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:97:8e:dd:3d:a1:f7:5a:0f:6a:45:06:63:5d:db:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9c3fd46b5d606c1ccab558b1736e2621a4bc0403
        Validity
            Not Before: Jun 13 14:00:29 2025 GMT
            Not After : Jun 14 14:00:29 2025 GMT
        Subject: CN=4ae857eae9ba3bef0d6c6faf1cc32acfca1b1613
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:75:ff:9f:7d:cf:7a:31:9b:8f:8d:19:b9:56:
                    c8:a5:b3:a1:7b:cf:ca:25:19:28:cf:27:93:30:a7:
                    6a:b9:4a:43:89:81:4d:1b:33:4c:c5:1c:5a:16:30:
                    2b:e9:ef:1e:44:4a:40:99:4e:24:cb:5a:6a:b4:ca:
                    0d:a5:a2:24:5b:c4:a8:eb:4b:bf:3e:bb:fe:78:13:
                    e1:d9:ff:e4:e9:5a:78:ab:3a:09:ab:67:3e:9e:aa:
                    00:77:6b:4a:0f:9f:c8:53:fa:f6:1a:92:0f:b7:49:
                    15:43:14:78:a9:2e:25:d9:47:5e:24:fe:db:e3:d7:
                    f8:37:34:21:25:59:f4:60:2b:f7:e5:2c:b6:42:09:
                    35:b1:a1:ae:fb:80:6d:db:8b:5e:cf:18:f1:29:44:
                    f7:a4:c7:2e:62:70:56:2a:b9:eb:90:7d:e7:07:5a:
                    29:bc:42:b6:41:72:5a:8a:35:ec:ac:e5:0e:90:ff:
                    36:d3:05:77:f6:39:69:af:00:da:89:d6:ac:b5:0e:
                    73:21:6d:96:23:d8:18:1d:22:68:d0:d0:4a:f1:57:
                    43:62:c3:1c:5f:a2:94:59:08:8a:7e:d1:2c:f1:a9:
                    c2:18:94:df:46:94:cd:43:17:66:7b:90:28:92:ba:
                    af:05:dd:f3:52:93:2a:35:f9:3f:9a:1d:81:1c:1d:
                    c5:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:E8:57:EA:E9:BA:3B:EF:0D:6C:6F:AF:1C:C3:2A:CF:CA:1B:16:13
            X509v3 Authority Key Identifier:
                keyid:9C:3F:D4:6B:5D:60:6C:1C:CA:B5:58:B1:73:6E:26:21:A4:BC:04:03

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nD_Ua11gbBzKtVixc24mIaS8BAM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5ced25-9096-4750-8219-0b31c332d50d/1/nD_Ua11gbBzKtVixc24mIaS8BAM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:59:20:5d:45:60:94:7c:78:e7:24:35:7d:6b:06:36:dd:93:
         9b:ec:c4:a6:ed:1a:ab:be:f6:8a:7b:6a:b9:7a:a8:71:91:cf:
         64:30:8d:dd:35:7b:d0:cc:c0:be:9d:90:dd:24:a5:8f:21:0d:
         00:f3:70:ef:d6:d5:c8:ee:d5:ec:14:91:0e:6c:a3:39:6f:58:
         7a:b8:b7:ba:e9:39:3b:d3:a2:1f:50:21:0c:14:6a:66:da:ac:
         ce:ef:ae:ea:5a:47:ec:54:9c:91:3a:45:5f:80:64:29:20:4f:
         b1:a2:51:4d:a9:d5:3c:5c:5a:e5:bf:ce:d8:91:69:50:73:9c:
         94:ff:c3:87:a1:98:92:1a:e3:10:68:e7:d9:c6:50:a8:4e:f1:
         4c:3f:0e:5a:6e:db:65:c7:8a:f0:a0:75:bc:99:44:f9:1b:ff:
         9b:f9:12:9f:99:e4:2e:73:e4:9c:9c:05:68:da:bb:c7:d7:80:
         a9:16:4a:32:52:e6:09:e0:04:ad:c0:39:cb:e4:05:f6:2d:67:
         fe:78:26:a0:88:18:7c:dc:bb:9d:b4:e6:ae:ad:c3:e8:14:5a:
         b7:9a:70:f0:a1:cd:87:4f:99:6b:c8:53:e5:fb:d1:b4:5a:d4:
         6f:0f:42:9b:b5:cd:2f:ae:69:f4:8c:ca:36:bc:44:a2:38:1a:
         4e:93:fb:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----