Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft
File:                     hJxbptQKtOTjm3tpttLZhEqiSK8.mft (raw, json)
Hash identifier:          rNvyvRRWdBMWCUWmUQOBOQdvMKIypQM0zFsWp1LM1zY=
Subject key identifier:   E4:87:08:4D:D3:39:9F:F1:27:15:81:CA:90:57:40:43:7F:60:82:BE
Authority key identifier: 84:9C:5B:A6:D4:0A:B4:E4:E3:9B:7B:69:B6:D2:D9:84:4A:A2:48:AF
Certificate issuer:       /CN=849c5ba6d40ab4e4e39b7b69b6d2d9844aa248af
Certificate serial:       019766CDA653C7065D22A441E3F0CF6F5395
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hJxbptQKtOTjm3tpttLZhEqiSK8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft
Manifest number:          0C6B
Signing time:             Fri 13 Jun 2025 01:00:42 +0000
Manifest this update:     Fri 13 Jun 2025 01:00:42 +0000
Manifest next update:     Sat 14 Jun 2025 01:00:42 +0000
Files and hashes:         1: hJxbptQKtOTjm3tpttLZhEqiSK8.crl (hash: sSYP98TKix+y6NPzEG+vX0q72N7HS/kx0YspCdjgRuY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hJxbptQKtOTjm3tpttLZhEqiSK8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:66:cd:a6:53:c7:06:5d:22:a4:41:e3:f0:cf:6f:53:95
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=849c5ba6d40ab4e4e39b7b69b6d2d9844aa248af
        Validity
            Not Before: Jun 13 01:00:42 2025 GMT
            Not After : Jun 14 01:00:42 2025 GMT
        Subject: CN=e487084dd3399ff1271581ca905740437f6082be
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:a4:47:95:9b:33:6d:22:95:60:3e:05:e8:ba:
                    10:ff:e1:13:1e:01:5d:4a:4d:4c:78:7a:b4:9d:28:
                    9c:13:f4:2e:14:31:4a:17:52:45:06:ce:59:27:c7:
                    1f:9d:4c:76:44:8d:c9:e5:29:21:2b:0d:1e:d8:7d:
                    d4:3f:f6:7f:06:88:c9:28:99:62:20:a8:4e:df:d7:
                    84:d0:18:5d:ef:8d:96:f0:d9:99:6f:a8:9a:c5:b6:
                    3a:d3:05:9a:24:4a:52:71:33:a6:da:00:d6:35:8d:
                    81:00:4d:12:c6:c2:d4:46:38:0c:37:ce:7f:73:85:
                    ae:37:71:01:9f:78:35:3a:7b:c0:e6:fc:04:14:89:
                    d6:77:5e:db:78:00:64:2d:d8:10:e2:90:ae:fb:00:
                    6c:6b:c8:3d:fc:19:5f:96:b4:c1:f9:f7:08:15:fe:
                    2e:d8:bc:cd:19:bf:95:b1:94:31:82:8b:49:86:6b:
                    5f:d0:42:49:41:fe:50:26:b6:d5:8f:46:4c:bc:4a:
                    4d:88:7d:cd:14:cc:1b:85:6f:18:3d:8c:ca:8d:d5:
                    d3:0b:90:bf:56:11:1a:79:d7:27:4c:ca:2d:a0:99:
                    a5:d3:af:53:84:d9:e7:63:a1:24:c7:80:4f:b8:f5:
                    16:96:62:b2:41:e2:91:de:22:26:c2:f1:59:3a:35:
                    10:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:87:08:4D:D3:39:9F:F1:27:15:81:CA:90:57:40:43:7F:60:82:BE
            X509v3 Authority Key Identifier:
                keyid:84:9C:5B:A6:D4:0A:B4:E4:E3:9B:7B:69:B6:D2:D9:84:4A:A2:48:AF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJxbptQKtOTjm3tpttLZhEqiSK8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/37c514-8213-438c-a164-d98487bdee48/1/hJxbptQKtOTjm3tpttLZhEqiSK8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:f2:94:35:a8:22:f7:08:c9:34:cb:76:69:9c:87:10:95:51:
         a5:95:44:74:3f:05:4c:92:04:af:6c:48:c4:89:78:d9:0f:e3:
         2c:fa:7b:d2:bf:7c:f2:5f:c3:9d:74:27:f3:3a:d2:df:d2:b8:
         25:ca:d7:bc:52:52:db:ee:02:0f:c5:25:d0:2a:17:d0:40:cb:
         1f:fb:0c:ec:9d:d3:bf:48:c9:0d:94:9f:0d:9a:dc:37:96:05:
         e2:4b:a9:8b:b4:ac:71:db:f6:a4:2a:aa:90:ed:e3:8a:6e:db:
         5d:52:2e:90:20:6f:78:8a:45:df:8b:01:a7:b1:5e:6e:62:9b:
         fc:00:ee:ce:07:3c:f6:e6:53:54:ed:31:f6:03:ed:6c:01:ea:
         73:5f:f6:dc:3e:e6:15:3d:75:8c:ca:3b:3b:62:4e:24:b5:05:
         8e:27:1d:a2:5d:e4:c3:9c:02:89:db:38:85:1f:63:38:d9:d3:
         37:e0:30:a7:4e:9a:15:6d:5b:8f:e5:d4:14:28:b6:8f:5d:68:
         34:62:ee:46:92:ca:da:60:63:ca:d8:2d:01:74:fc:e8:35:41:
         36:4f:7c:59:d2:47:a8:84:dd:bd:a0:86:3f:9b:ac:9b:c2:c3:
         94:80:f8:e8:2d:0e:fa:9a:7e:35:a9:6e:dd:e6:34:e9:23:16:
         6b:b6:21:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdmzaZTxwZdIqRB4/DPb1OVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0OWM1YmE2ZDQwYWI0ZTRlMzliN2I2OWI2ZDJkOTg0NGFh
MjQ4YWYwHhcNMjUwNjEzMDEwMDQyWhcNMjUwNjE0MDEwMDQyWjAzMTEwLwYDVQQD
EyhlNDg3MDg0ZGQzMzk5ZmYxMjcxNTgxY2E5MDU3NDA0MzdmNjA4MmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzqRHlZszbSKVYD4F6LoQ/+ETHgFd
Sk1MeHq0nSicE/QuFDFKF1JFBs5ZJ8cfnUx2RI3J5SkhKw0e2H3UP/Z/BojJKJli
IKhO39eE0Bhd742W8NmZb6iaxbY60wWaJEpScTOm2gDWNY2BAE0SxsLURjgMN85/
c4WuN3EBn3g1OnvA5vwEFInWd17beABkLdgQ4pCu+wBsa8g9/BlflrTB+fcIFf4u
2LzNGb+VsZQxgotJhmtf0EJJQf5QJrbVj0ZMvEpNiH3NFMwbhW8YPYzKjdXTC5C/
VhEaedcnTMotoJml069ThNnnY6Ekx4BPuPUWlmKyQeKR3iImwvFZOjUQyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOSHCE3TOZ/xJxWBypBXQEN/YIK+MB8GA1UdIwQY
MBaAFIScW6bUCrTk45t7abbS2YRKokivMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEp4YnB0UUt0T1RqbTN0cHR0TFpoRXFpU0s4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8zN2M1MTQtODIxMy00MzhjLWExNjQt
ZDk4NDg3YmRlZTQ4LzEvaEp4YnB0UUt0T1RqbTN0cHR0TFpoRXFpU0s4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8zN2M1MTQtODIxMy00MzhjLWExNjQtZDk4NDg3YmRlZTQ4
LzEvaEp4YnB0UUt0T1RqbTN0cHR0TFpoRXFpU0s4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFvKUNagi
9wjJNMt2aZyHEJVRpZVEdD8FTJIEr2xIxIl42Q/jLPp70r988l/DnXQn8zrS39K4
JcrXvFJS2+4CD8Ul0CoX0EDLH/sM7J3Tv0jJDZSfDZrcN5YF4kupi7Sscdv2pCqq
kO3jim7bXVIukCBveIpF34sBp7FebmKb/ADuzgc89uZTVO0x9gPtbAHqc1/23D7m
FT11jMo7O2JOJLUFjicdol3kw5wCids4hR9jONnTN+Awp06aFW1bj+XUFCi2j11o
NGLuRpLK2mBjytgtAXT86DVBNk98WdJHqITdvaCGP5usm8LDlID46C0O+pp+Nalu
3eY06SMWa7Yh6w==
-----END CERTIFICATE-----
Generated at Fri Jun 13 04:04:12 2025 by rpki-client