Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.mft
File:                     k0F7oKbrs_OxuCr3UPviioakGzU.mft (raw, json)
Hash identifier:          98oeZX9NS232Sc26lZdcyo/fvO0fV9ubY+nlFwSbqm0=
Subject key identifier:   5B:35:D5:C7:FC:9A:7A:30:5B:E3:FC:8B:D2:3F:9B:03:73:7F:0D:69
Authority key identifier: 93:41:7B:A0:A6:EB:B3:F3:B1:B8:2A:F7:50:FB:E2:8A:86:A4:1B:35
Certificate issuer:       /CN=93417ba0a6ebb3f3b1b82af750fbe28a86a41b35
Certificate serial:       0197639667F6E4B13B21DBC7C8CA98AB3ACA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/k0F7oKbrs_OxuCr3UPviioakGzU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.mft
Manifest number:          08AB
Signing time:             Thu 12 Jun 2025 10:01:30 +0000
Manifest this update:     Thu 12 Jun 2025 10:01:30 +0000
Manifest next update:     Fri 13 Jun 2025 10:01:30 +0000
Files and hashes:         1: k0F7oKbrs_OxuCr3UPviioakGzU.crl (hash: 99DKHinQgTtywJHU7ljzj0FVmBmfOzxVsOQEC8uN3EQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/k0F7oKbrs_OxuCr3UPviioakGzU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 10:01:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:63:96:67:f6:e4:b1:3b:21:db:c7:c8:ca:98:ab:3a:ca
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=93417ba0a6ebb3f3b1b82af750fbe28a86a41b35
        Validity
            Not Before: Jun 12 10:01:30 2025 GMT
            Not After : Jun 13 10:01:30 2025 GMT
        Subject: CN=5b35d5c7fc9a7a305be3fc8bd23f9b03737f0d69
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:92:85:60:16:a9:ee:c2:1b:02:0a:d2:1a:b8:
                    e8:3e:7d:25:d6:90:da:11:95:c1:aa:b8:63:2f:20:
                    14:dd:99:93:2a:4a:cc:be:af:1c:7e:56:7f:f6:1b:
                    db:61:57:73:1d:03:cd:ab:80:95:ca:09:e6:c1:43:
                    4c:00:1d:2c:18:bc:96:10:1a:0f:b1:67:3d:11:aa:
                    a6:49:d0:a4:8e:6c:8d:74:93:4d:a9:d8:9a:97:e1:
                    c1:39:59:39:27:ef:02:e9:01:f9:28:fe:f5:66:39:
                    db:21:21:59:af:1a:4a:f1:fd:af:8c:9f:10:4a:2f:
                    a4:6f:0e:00:ea:68:6f:e7:f1:d5:73:b5:c6:77:17:
                    52:c4:ae:1e:7c:53:f9:ea:d3:4a:5b:aa:e4:91:ac:
                    ab:16:75:6c:99:82:09:b6:ce:f4:af:2c:a3:cc:cd:
                    82:4f:fd:be:a1:f2:57:8a:71:1f:e1:13:ab:7c:e4:
                    81:df:e3:f2:54:e0:e0:87:85:81:76:fb:09:44:30:
                    05:c7:48:2a:91:f2:c0:f2:26:9a:68:76:f2:39:93:
                    7a:50:1a:0c:45:0a:c7:81:7e:1c:36:06:f5:2c:68:
                    80:79:80:28:cc:44:e7:cc:c1:03:49:39:e9:a6:da:
                    1a:7b:5b:e9:e6:e2:2c:46:a0:5a:ac:d9:ff:24:e7:
                    eb:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:35:D5:C7:FC:9A:7A:30:5B:E3:FC:8B:D2:3F:9B:03:73:7F:0D:69
            X509v3 Authority Key Identifier:
                keyid:93:41:7B:A0:A6:EB:B3:F3:B1:B8:2A:F7:50:FB:E2:8A:86:A4:1B:35

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k0F7oKbrs_OxuCr3UPviioakGzU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/48/18c999-b73a-4214-a22c-728fd6babaff/1/k0F7oKbrs_OxuCr3UPviioakGzU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:58:1b:02:5c:aa:4b:e9:b5:da:77:35:ff:31:a1:c7:e0:a0:
         3c:d6:05:f3:2d:11:c5:59:ab:bb:a2:f2:6d:47:02:b9:20:07:
         c9:8f:50:4b:80:11:cb:d0:c2:52:4f:88:fa:c7:81:6e:39:6f:
         ee:72:bb:64:0c:38:8a:1e:51:b5:19:91:9a:79:46:ef:e7:b2:
         37:5f:a9:31:79:6b:9d:cc:d6:2d:69:d8:97:06:f3:4a:45:93:
         a8:38:0e:7d:56:2c:7d:41:70:f5:3c:b8:2d:17:92:76:dc:79:
         6c:96:ea:cd:88:c0:cf:d1:67:ab:f6:83:84:cf:59:28:07:06:
         f2:95:79:77:11:ef:93:33:26:c5:ce:84:e8:22:12:94:c3:97:
         24:f6:91:66:bf:1c:a4:a1:9f:29:fc:b5:3b:2a:49:e3:9f:0e:
         88:77:2a:d1:e0:db:22:8b:97:ba:06:db:65:d3:21:48:37:72:
         aa:82:0f:f3:82:c6:87:0a:5e:94:05:c5:a7:18:13:39:2e:72:
         75:3f:0c:6c:60:c1:3f:fe:86:85:90:e9:6d:33:96:f2:62:12:
         a0:34:6a:06:89:40:0d:b4:c5:c9:62:de:74:d9:78:83:85:bb:
         a1:cc:e3:bf:4e:a4:09:e4:8c:77:60:5a:cb:2b:0a:4b:f8:1f:
         1f:7f:87:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 18:02:10 2025 by rpki-client