Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft
File:                     HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft (raw, json)
Hash identifier:          z9IyTDcbYOZ7dDTG5QOxmimLOs9okOllONEPkB1/Mo4=
Subject key identifier:   17:9D:B0:D6:9A:5E:20:D4:42:36:11:31:8D:C9:E6:C1:3C:6E:9F:0A
Authority key identifier: 1D:C5:D3:BC:C9:1E:4A:31:A2:08:36:1A:F0:A9:3A:62:F6:2D:82:70
Certificate issuer:       /CN=1dc5d3bcc91e4a31a208361af0a93a62f62d8270
Certificate serial:       019745F92E288033F490F58B8BE1B60DD8FD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft
Manifest number:          1579
Signing time:             Fri 06 Jun 2025 16:00:47 +0000
Manifest this update:     Fri 06 Jun 2025 16:00:47 +0000
Manifest next update:     Sat 07 Jun 2025 16:00:47 +0000
Files and hashes:         1: HcXTvMkeSjGiCDYa8Kk6YvYtgnA.crl (hash: sLF5wOUhlYP2d5RbnoOg/JhaNFjhoZfS6r53cN9w+qM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 15:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:45:f9:2e:28:80:33:f4:90:f5:8b:8b:e1:b6:0d:d8:fd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1dc5d3bcc91e4a31a208361af0a93a62f62d8270
        Validity
            Not Before: Jun  6 16:00:47 2025 GMT
            Not After : Jun  7 16:00:47 2025 GMT
        Subject: CN=179db0d69a5e20d4423611318dc9e6c13c6e9f0a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:54:72:a1:f5:2b:1e:49:55:b8:0f:b3:00:67:
                    0b:a8:8c:66:b1:e1:7c:8c:d5:a8:6a:6d:9d:a3:4e:
                    83:89:c1:ca:21:bd:bf:6c:e5:f6:c6:0c:62:46:11:
                    fb:d5:26:93:30:e5:66:d5:bf:c8:72:c1:b3:20:4f:
                    b1:48:9d:78:b5:46:4b:25:f9:36:79:2e:e6:b4:6d:
                    40:b8:28:33:7a:6a:ec:f6:d4:35:ba:dc:b2:5b:db:
                    21:62:72:76:b1:3b:37:10:f6:c8:98:54:a1:61:39:
                    93:b8:70:57:69:07:95:0c:16:05:de:9b:19:54:9c:
                    53:6c:26:09:8e:95:ac:07:76:24:46:81:f5:41:e9:
                    d2:85:f3:0e:2e:e7:b6:2d:64:4a:1c:c9:98:11:1d:
                    4a:90:76:cb:4e:58:f1:53:97:8b:7f:1f:33:55:69:
                    48:03:de:da:55:7e:98:45:e5:57:32:b1:34:05:29:
                    e4:9e:2f:ef:e5:f5:00:66:cb:67:a7:42:26:3d:02:
                    4b:00:b1:31:d8:e7:2d:47:3d:b6:a2:00:94:c3:86:
                    67:2f:a9:9f:86:9e:ff:cc:d3:8f:9e:5b:8f:af:ef:
                    d4:35:b1:a4:0c:e3:09:79:38:59:54:42:f6:f5:d9:
                    c3:b8:51:0c:28:83:3b:9a:99:ee:58:5e:07:10:79:
                    c8:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:9D:B0:D6:9A:5E:20:D4:42:36:11:31:8D:C9:E6:C1:3C:6E:9F:0A
            X509v3 Authority Key Identifier:
                keyid:1D:C5:D3:BC:C9:1E:4A:31:A2:08:36:1A:F0:A9:3A:62:F6:2D:82:70

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/494bc5-1aeb-4565-aad7-f69b7e266233/1/HcXTvMkeSjGiCDYa8Kk6YvYtgnA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:3f:fe:08:6a:51:63:fe:7b:d5:24:4c:ea:e8:13:58:37:ee:
         23:20:44:19:ad:fd:82:a2:64:48:d6:e4:96:24:1c:d3:2c:50:
         1d:97:d2:8b:82:5d:6d:b3:36:58:75:ae:29:d5:6d:2e:b8:01:
         49:2c:62:c2:4b:df:f5:ca:f2:12:78:cc:bd:69:46:c3:07:a0:
         5d:ef:88:a3:77:ba:e7:2e:90:a5:6a:55:94:d6:b1:34:3e:33:
         c2:5d:fb:1b:88:da:b8:ec:2f:da:ed:f2:5d:2a:57:73:64:7d:
         0d:bb:a7:80:89:1a:72:ac:1b:76:d4:87:92:41:9e:43:57:29:
         73:fe:f4:83:b7:25:49:f2:8c:30:21:6d:cd:2b:75:18:46:c4:
         4f:c4:a7:ff:9a:2f:8d:68:e4:f2:a3:b7:80:ab:2a:5f:da:c2:
         f0:26:1b:bc:2b:a2:bc:4b:9c:bd:c5:cb:4b:90:73:c6:05:d6:
         77:d3:04:f1:66:fc:62:c0:47:9c:00:b5:8f:cb:9a:ea:66:b7:
         de:d6:fa:00:ff:0c:6e:16:e0:f7:3c:96:3d:0b:1f:d4:8b:01:
         86:c4:f9:b6:f9:95:b9:d7:35:2b:3b:c7:9a:a1:f1:a3:61:a3:
         b7:0f:a9:49:11:e2:5d:d2:da:f8:b2:92:e5:4b:c1:c7:c0:4d:
         92:60:42:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----