Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
File:                     qK9MCjctAUVV99TXyJz5lvBRQvU.mft (raw, json)
Hash identifier:          OjqbUM42TpKIU7wKVsEKKcyJ6JQBgP9BN7QM7iNHGGs=
Subject key identifier:   37:0D:A1:AE:00:A4:9C:3E:72:96:3B:B2:B8:CC:6A:6B:E8:EE:90:50
Authority key identifier: A8:AF:4C:0A:37:2D:01:45:55:F7:D4:D7:C8:9C:F9:96:F0:51:42:F5
Certificate issuer:       /CN=a8af4c0a372d014555f7d4d7c89cf996f05142f5
Certificate serial:       019761A7F0435D78FBB0B3421E6DD92E4A9F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
Manifest number:          031C
Signing time:             Thu 12 Jun 2025 01:01:25 +0000
Manifest this update:     Thu 12 Jun 2025 01:01:25 +0000
Manifest next update:     Fri 13 Jun 2025 01:01:25 +0000
Files and hashes:         1: qK9MCjctAUVV99TXyJz5lvBRQvU.crl (hash: 2/Nw5PW4guzm3qQG6hv3JqIDandcD48CUuX9qjWT5tM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:61:a7:f0:43:5d:78:fb:b0:b3:42:1e:6d:d9:2e:4a:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a8af4c0a372d014555f7d4d7c89cf996f05142f5
        Validity
            Not Before: Jun 12 01:01:25 2025 GMT
            Not After : Jun 13 01:01:25 2025 GMT
        Subject: CN=370da1ae00a49c3e72963bb2b8cc6a6be8ee9050
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:99:6d:37:41:e4:58:65:a9:d7:43:b1:53:5e:
                    0b:62:04:fd:6b:d1:dc:93:31:a8:a4:df:b0:1f:b6:
                    5b:55:cc:54:e9:2e:9e:e5:27:16:af:d0:f9:ed:4c:
                    d4:e3:bb:84:c7:3d:32:21:7d:82:10:4b:a3:a4:44:
                    79:72:95:49:34:07:48:de:17:46:2c:c3:ef:38:c4:
                    f3:4d:e8:fe:fd:5d:72:72:11:e1:3f:f5:4a:39:33:
                    74:58:20:8f:09:10:fd:2d:26:57:f7:03:1b:89:02:
                    e3:ca:69:d7:be:42:fe:97:7d:16:06:a4:32:a4:44:
                    2a:a6:0e:47:30:36:21:d6:64:de:aa:e9:91:b4:ec:
                    4a:d3:6f:55:0c:09:aa:84:d7:49:51:3f:d8:da:ef:
                    45:4e:00:0d:3e:cd:ec:91:e4:80:26:c0:99:07:8b:
                    fc:72:aa:e1:1b:3d:69:c7:48:84:2a:2f:73:b0:c6:
                    eb:fd:1f:15:57:15:90:e8:db:c0:71:bc:83:91:75:
                    99:21:25:fa:c7:26:00:27:13:a1:32:fc:13:f5:2c:
                    97:2b:80:af:63:99:6d:dc:5e:58:e2:01:21:ad:c5:
                    cc:e6:a8:47:08:73:02:1e:dc:b2:ed:2b:48:52:c6:
                    4d:0c:4f:41:02:10:10:5b:36:d7:92:11:76:2a:d3:
                    ce:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:0D:A1:AE:00:A4:9C:3E:72:96:3B:B2:B8:CC:6A:6B:E8:EE:90:50
            X509v3 Authority Key Identifier:
                keyid:A8:AF:4C:0A:37:2D:01:45:55:F7:D4:D7:C8:9C:F9:96:F0:51:42:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qK9MCjctAUVV99TXyJz5lvBRQvU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8b2bbd-af12-46ae-a50f-dab38fd3c786/1/qK9MCjctAUVV99TXyJz5lvBRQvU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:01:99:62:34:36:45:ff:7c:60:ea:35:70:8e:a8:26:07:f8:
         5b:31:ce:19:99:42:f2:3a:89:fa:59:eb:69:07:81:36:ce:d3:
         6e:c7:55:4f:18:3e:f1:34:16:1c:76:ff:24:b1:d2:46:61:cc:
         7e:49:35:67:93:8b:9d:2a:e7:da:0e:22:75:6a:57:28:e5:1c:
         33:72:27:00:bc:df:a3:2f:7c:43:33:fa:4a:47:c2:c5:f2:f7:
         ca:e0:06:80:06:b1:ed:67:54:95:09:bc:d1:46:1a:26:ea:e2:
         b6:fe:34:cc:e1:6b:f0:4c:fb:7b:7f:84:21:9b:3a:e6:94:b8:
         3e:c2:1c:42:a8:f5:65:b1:71:3e:a6:d2:ca:48:ae:56:74:94:
         07:b7:f4:a1:06:d1:5e:73:99:da:05:81:51:91:b6:ec:4c:77:
         c7:33:75:b2:21:7e:c2:fb:cc:8c:af:70:b4:29:04:23:e8:e0:
         e7:67:59:b9:80:d4:83:a3:d5:1f:06:22:3c:d5:57:7f:b8:d7:
         ab:be:19:50:cc:cf:7e:e0:46:c7:a0:8f:a1:06:59:93:f2:ea:
         64:e7:67:6c:fa:7d:fc:d2:1f:48:91:6d:6b:28:38:b3:cd:27:
         0e:8d:7c:e3:82:e2:74:61:45:ee:53:b9:c4:46:f9:40:1b:cb:
         1e:70:c6:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 08:32:28 2025 by rpki-client