Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.mft
File:                     UgO7TxlYEfjXcjygGgsv-963Whs.mft (raw, json)
Hash identifier:          ffM//k9V/51TUMBeGBNicClcPONrn+Wuy778dXOYbXQ=
Subject key identifier:   7D:1D:1C:6E:26:C5:DA:60:79:12:8F:FF:92:FB:16:40:52:21:A0:26
Authority key identifier: 52:03:BB:4F:19:58:11:F8:D7:72:3C:A0:1A:0B:2F:FB:DE:B7:5A:1B
Certificate issuer:       /CN=5203bb4f195811f8d7723ca01a0b2ffbdeb75a1b
Certificate serial:       01976BBD89E3F960AF24C7B214F2710E24AA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UgO7TxlYEfjXcjygGgsv-963Whs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.mft
Manifest number:          01C3
Signing time:             Sat 14 Jun 2025 00:01:12 +0000
Manifest this update:     Sat 14 Jun 2025 00:01:12 +0000
Manifest next update:     Sun 15 Jun 2025 00:01:12 +0000
Files and hashes:         1: UgO7TxlYEfjXcjygGgsv-963Whs.crl (hash: CTQiCNfhuDNFny6qmLQEI18hXgIy1jBG3s3dtbaGYyw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UgO7TxlYEfjXcjygGgsv-963Whs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 00:01:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:bd:89:e3:f9:60:af:24:c7:b2:14:f2:71:0e:24:aa
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5203bb4f195811f8d7723ca01a0b2ffbdeb75a1b
        Validity
            Not Before: Jun 14 00:01:12 2025 GMT
            Not After : Jun 15 00:01:12 2025 GMT
        Subject: CN=7d1d1c6e26c5da6079128fff92fb16405221a026
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:b6:11:be:e6:e6:0b:7b:b6:6e:5f:2e:1b:3d:
                    2e:0e:d7:cb:8b:77:79:50:c3:05:d1:a1:fa:d3:ab:
                    a2:67:4c:0b:d9:43:14:42:ca:82:2b:91:71:48:95:
                    3e:cd:55:51:08:fb:4f:b4:28:e7:85:10:65:f8:46:
                    71:ed:ec:bd:e2:73:d5:8f:3d:62:16:15:c9:71:90:
                    36:58:e4:50:a6:60:9a:1c:fe:2c:96:6c:68:20:aa:
                    24:00:38:47:9e:23:78:53:a3:33:ad:a7:85:03:31:
                    82:d5:ab:15:90:37:f9:09:55:7b:82:36:2c:53:87:
                    1f:b3:c5:77:1a:10:0a:d6:8a:0c:c5:33:ec:65:97:
                    86:3e:59:b0:87:2a:38:be:2d:f3:86:37:11:2b:f6:
                    1e:46:65:60:f7:76:f3:cf:35:36:50:4f:40:11:64:
                    fd:d1:13:6d:b9:dd:bf:ee:78:8e:d7:e9:2d:19:ee:
                    44:28:f9:96:6d:c2:b5:1b:bf:6c:14:fc:35:7f:bf:
                    b0:20:64:70:a5:68:ff:13:48:79:e6:a0:80:37:1d:
                    e8:8e:89:08:48:02:b8:e6:47:3f:9b:52:c9:48:3c:
                    a2:8e:30:9d:fc:1a:a0:f1:d9:60:4e:18:78:90:e6:
                    f3:af:d3:7b:f4:95:e2:89:a8:d5:fb:de:24:bf:33:
                    2f:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:1D:1C:6E:26:C5:DA:60:79:12:8F:FF:92:FB:16:40:52:21:A0:26
            X509v3 Authority Key Identifier:
                keyid:52:03:BB:4F:19:58:11:F8:D7:72:3C:A0:1A:0B:2F:FB:DE:B7:5A:1B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UgO7TxlYEfjXcjygGgsv-963Whs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/80/0a92a1-e594-41ee-855c-2ba6a022d4c9/1/UgO7TxlYEfjXcjygGgsv-963Whs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:0a:8e:33:b2:27:95:b3:c6:e8:e9:63:55:02:fd:a0:40:ab:
         f8:f8:c5:83:25:7f:66:7a:4c:81:e5:b5:4f:3c:e5:06:8d:44:
         d6:6c:db:45:f2:18:ac:48:0e:b7:34:25:21:57:f4:83:b8:b4:
         7d:c9:e8:a8:d3:c3:8f:45:e1:32:42:1c:09:0f:c7:39:47:1e:
         25:fa:56:f5:03:68:4e:80:14:23:70:a4:d1:b9:9d:79:a9:52:
         38:5d:f6:62:56:ea:8c:89:47:b2:9c:f2:b3:2e:f4:06:7f:76:
         43:3b:ad:d5:03:73:26:2d:a5:df:ba:e8:99:b8:81:d0:86:dd:
         a6:4a:9c:38:b9:23:8c:b1:46:ed:da:0e:d7:a4:e0:d0:49:29:
         d6:f8:0a:2d:c9:9d:66:a5:ca:40:b6:d7:a2:44:92:ba:41:96:
         1e:0f:79:b5:97:d4:3c:3f:8b:be:81:41:86:3b:e9:0b:6a:ab:
         c5:07:ed:7e:d4:c0:97:87:b1:86:57:eb:a2:a3:38:a5:6a:9c:
         3f:92:f6:1c:7b:44:ba:78:7d:14:8e:90:16:f8:31:2e:6f:13:
         15:6d:21:c1:a1:99:ee:f7:2a:26:81:cf:c7:40:62:eb:60:65:
         46:67:ef:10:62:2d:a7:c7:32:bc:01:ff:88:83:f3:0f:d0:8a:
         f5:b1:71:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 06:36:42 2025 by rpki-client