Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
File:                     j7phV8tS0RaPUIRsXlB5IkDt8-A.mft (raw, json)
Hash identifier:          937sX0Sv0Ay68gyiIvy+hOc4kmRPzUYX5zAAMjv+9dA=
Subject key identifier:   B7:F6:58:FC:6E:58:0F:F6:14:7A:1A:29:19:B7:83:C0:1B:FD:68:A8
Authority key identifier: 8F:BA:61:57:CB:52:D1:16:8F:50:84:6C:5E:50:79:22:40:ED:F3:E0
Certificate issuer:       /CN=8fba6157cb52d1168f50846c5e50792240edf3e0
Certificate serial:       0197640356BAB2B48303A8C622AA96F17A41
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
Manifest number:          08BA
Signing time:             Thu 12 Jun 2025 12:00:29 +0000
Manifest this update:     Thu 12 Jun 2025 12:00:29 +0000
Manifest next update:     Fri 13 Jun 2025 12:00:29 +0000
Files and hashes:         1: j7phV8tS0RaPUIRsXlB5IkDt8-A.crl (hash: iu7i6rQAn/aZRdv67Z+kJEwLgZszE0a39Aa1Z43SBqM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 12:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:03:56:ba:b2:b4:83:03:a8:c6:22:aa:96:f1:7a:41
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8fba6157cb52d1168f50846c5e50792240edf3e0
        Validity
            Not Before: Jun 12 12:00:29 2025 GMT
            Not After : Jun 13 12:00:29 2025 GMT
        Subject: CN=b7f658fc6e580ff6147a1a2919b783c01bfd68a8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:41:85:8f:18:14:83:20:cb:7e:08:33:97:e6:
                    1e:38:65:e9:81:52:23:4c:88:46:70:2b:da:84:40:
                    c6:01:1e:a9:d1:e4:f0:50:49:de:a2:a7:9f:ea:18:
                    3f:af:ba:5e:d8:74:70:b3:44:10:96:3c:94:f3:da:
                    48:75:2b:0f:f7:a2:3b:81:43:e2:f0:8d:c4:17:50:
                    55:48:94:a0:0c:bc:54:d7:0c:fe:0b:7f:48:1e:dc:
                    cf:ed:53:69:7c:b6:4f:1f:c3:ae:7c:ac:30:f9:f7:
                    2f:22:c6:6c:88:1c:80:d7:76:ea:08:2d:6b:14:c5:
                    7c:14:f6:40:04:d7:e3:15:97:d5:ea:fa:f5:e2:23:
                    fa:96:72:59:97:8f:3a:64:c1:fc:5b:67:35:47:dd:
                    79:5f:0b:a7:7f:b3:32:56:4e:76:36:bd:b9:62:71:
                    c9:59:20:9c:8d:57:3c:61:37:5a:84:02:13:13:5b:
                    8d:0c:9e:55:29:ed:2f:e1:d9:bd:68:f5:22:ec:b0:
                    ff:b4:a6:30:7c:e4:56:72:5a:16:8a:ff:c5:e2:8b:
                    dc:3a:12:8e:9e:66:2a:2e:7e:60:ec:f8:2d:26:8a:
                    82:3c:fa:a2:c4:89:99:42:fd:37:d0:ce:da:41:bd:
                    05:99:c3:01:ca:e1:32:c1:d0:ed:d1:94:7e:89:f4:
                    f5:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:F6:58:FC:6E:58:0F:F6:14:7A:1A:29:19:B7:83:C0:1B:FD:68:A8
            X509v3 Authority Key Identifier:
                keyid:8F:BA:61:57:CB:52:D1:16:8F:50:84:6C:5E:50:79:22:40:ED:F3:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j7phV8tS0RaPUIRsXlB5IkDt8-A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e25b63-7b94-4759-9195-20fad94cab14/1/j7phV8tS0RaPUIRsXlB5IkDt8-A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a3:d8:a5:6c:f3:aa:71:b2:9d:a4:3f:39:15:e4:e9:b2:9d:46:
         ed:88:8f:f3:b5:ff:ba:bb:20:60:91:81:19:74:19:02:ba:5c:
         c9:ec:3b:4d:0e:06:2f:0f:c9:24:4e:51:84:79:a1:e9:da:3c:
         5d:f2:bf:77:4d:03:1c:4c:7b:8a:c0:9b:6b:4c:ee:1f:ab:5a:
         c9:d9:1e:19:10:3a:27:ee:ad:83:43:62:33:10:00:1d:45:02:
         0d:d5:d9:ed:ee:38:71:3b:9b:4c:ba:b9:8e:68:cb:d5:1e:e8:
         ae:2b:e6:78:61:1f:ed:de:fd:82:03:af:74:f6:17:ca:dd:68:
         e2:8c:21:bf:93:ad:d5:c4:ba:02:73:78:6e:43:28:fb:c7:78:
         33:3f:9d:b6:00:2e:81:9c:26:2a:8c:13:a6:dd:b6:59:3e:c4:
         14:c8:97:88:c1:69:04:ea:a0:c7:a1:c1:e3:ed:f0:39:bb:fe:
         e2:7e:de:b9:ce:04:c3:5c:da:5e:91:0f:6a:21:3e:27:a6:01:
         e9:73:4f:7a:5d:c6:10:b6:23:15:e9:8d:ac:72:a1:83:ba:70:
         06:d2:eb:dd:29:93:14:a9:5f:fe:15:dd:3d:a7:99:d4:78:59:
         a5:43:8e:03:61:7c:c6:2c:fe:1c:c0:26:5c:1e:5d:c0:04:18:
         60:54:2b:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 15:21:15 2025 by rpki-client