Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
File:                     aDjl4BZgX27c1MlhwZys9YFMeKM.mft (raw, json)
Hash identifier:          7EQc+6grySKplg+ctwFMYYi5zLmI0IofWSYRA8yR4O4=
Subject key identifier:   3F:95:93:4F:05:59:1C:B4:8A:AB:31:A4:26:FA:8A:B4:C1:90:08:26
Authority key identifier: 68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3
Certificate issuer:       /CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
Certificate serial:       01976628F62FED30FEE72AC662CEFCE18E6E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
Manifest number:          0FC7
Signing time:             Thu 12 Jun 2025 22:00:49 +0000
Manifest this update:     Thu 12 Jun 2025 22:00:49 +0000
Manifest next update:     Fri 13 Jun 2025 22:00:49 +0000
Files and hashes:         1: aDjl4BZgX27c1MlhwZys9YFMeKM.crl (hash: 13JTO11JXfEw+i0hvlgbQb6p93hqIgJb8s942IySSoM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 15:17:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:66:28:f6:2f:ed:30:fe:e7:2a:c6:62:ce:fc:e1:8e:6e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
        Validity
            Not Before: Jun 12 22:00:49 2025 GMT
            Not After : Jun 13 22:00:49 2025 GMT
        Subject: CN=3f95934f05591cb48aab31a426fa8ab4c1900826
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:3c:23:27:fc:69:5f:70:3c:ef:bd:69:94:5e:
                    28:d3:32:db:5d:28:91:a0:21:c2:5a:92:aa:2c:85:
                    96:7e:9b:2d:f9:38:1b:a3:00:66:b8:a5:4f:2d:45:
                    a4:d3:24:b7:b9:b9:d7:3f:c2:a2:0b:6d:f0:9e:98:
                    d3:1c:31:50:58:02:97:12:d0:c6:2f:51:7c:fc:e0:
                    df:cf:20:96:d4:28:0e:2c:0c:b0:59:0a:9b:d4:91:
                    1c:72:fe:c6:77:58:c0:92:2e:4b:1a:d3:a4:84:cb:
                    a1:d9:6e:e0:b8:61:db:22:4e:22:44:23:2c:1e:8d:
                    14:0a:66:e7:12:40:91:af:7e:c3:f2:f2:4e:57:af:
                    7e:0c:96:d7:c0:a1:a9:bb:a4:bf:22:2b:e8:34:18:
                    76:58:be:e9:ca:15:a3:cd:c0:b9:33:77:84:af:21:
                    c5:56:0e:93:8f:9b:07:da:5e:9f:dc:71:db:26:d9:
                    b8:eb:38:fb:37:ad:d2:c2:43:aa:90:39:72:56:41:
                    bd:99:7d:26:6d:22:31:cc:22:ed:b5:a1:a5:b6:84:
                    d4:c2:b6:cc:de:dd:3c:76:73:0b:95:af:04:4e:3c:
                    26:6c:2f:d0:4e:59:45:1f:07:a2:33:ea:00:e2:d1:
                    b4:01:9a:5f:c4:98:9a:d8:0c:91:26:bb:54:89:cf:
                    ea:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:95:93:4F:05:59:1C:B4:8A:AB:31:A4:26:FA:8A:B4:C1:90:08:26
            X509v3 Authority Key Identifier:
                keyid:68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:7d:08:4b:ac:49:e6:21:f6:cf:01:9e:5a:cb:de:3c:d7:d5:
         b9:b3:75:9b:a3:89:8b:b4:e5:2a:6f:f1:b8:da:d1:4e:92:7d:
         45:11:ba:cf:24:00:28:82:4d:7b:0d:b1:d0:03:b1:15:63:e3:
         f8:41:bd:b3:fb:81:e9:ac:94:62:90:05:54:b8:84:1b:a1:aa:
         36:44:15:ee:da:9f:7f:fe:96:1d:9c:71:0b:08:ac:f2:fd:ed:
         f7:2e:59:07:6c:82:ec:07:84:c3:5b:43:d7:3f:56:0e:e8:fb:
         3a:bf:c0:db:c6:39:15:18:c4:6c:e3:52:63:62:e0:ea:38:60:
         3a:28:0e:ed:1d:7b:b9:6e:a3:a4:30:93:24:31:25:92:3c:2a:
         b1:3f:a4:aa:80:97:21:89:04:28:69:ed:f3:ea:60:c7:a0:3e:
         06:57:0b:62:1e:2f:06:01:a6:6c:77:1c:7c:c3:6f:2b:92:9c:
         eb:75:aa:98:a2:36:4d:e6:aa:bf:39:7b:f3:82:5f:a9:db:7a:
         cf:ca:0c:8a:e2:97:64:6e:95:ab:cd:33:6a:c8:7c:28:63:dd:
         60:9f:07:a5:93:45:14:92:7b:46:86:e8:27:e4:e9:7f:20:51:
         3c:07:d9:e6:c0:ce:63:a3:ab:5b:55:19:db:f6:56:c2:71:b6:
         5d:61:f7:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 00:27:01 2025 by rpki-client