Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
File:                     ELZc9vpeH8roz4TJcB44vftjqrM.mft (raw, json)
Hash identifier:          n1xNc2KqdL/bYbzkkhQc0PkW4cgRjRbFlw7dNTOa030=
Subject key identifier:   DE:BD:B8:FB:31:F5:01:F1:95:61:28:3F:21:86:1C:3A:B2:E8:89:E9
Authority key identifier: 10:B6:5C:F6:FA:5E:1F:CA:E8:CF:84:C9:70:1E:38:BD:FB:63:AA:B3
Certificate issuer:       /CN=10b65cf6fa5e1fcae8cf84c9701e38bdfb63aab3
Certificate serial:       0197575A4A8052AD8EEA8DC20BC92DBF50F1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
Manifest number:          0E30
Signing time:             Tue 10 Jun 2025 01:00:24 +0000
Manifest this update:     Tue 10 Jun 2025 01:00:24 +0000
Manifest next update:     Wed 11 Jun 2025 01:00:24 +0000
Files and hashes:         1: ELZc9vpeH8roz4TJcB44vftjqrM.crl (hash: c9Erh9HsCYREqUkSEDMcO8PLz311lRnsTcQziws9ccE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:57:5a:4a:80:52:ad:8e:ea:8d:c2:0b:c9:2d:bf:50:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=10b65cf6fa5e1fcae8cf84c9701e38bdfb63aab3
        Validity
            Not Before: Jun 10 01:00:24 2025 GMT
            Not After : Jun 11 01:00:24 2025 GMT
        Subject: CN=debdb8fb31f501f19561283f21861c3ab2e889e9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f5:83:e2:74:e8:31:79:0f:bc:3b:76:20:df:f0:
                    af:cf:f2:f2:70:bd:d8:c7:8f:4e:31:7b:91:cf:fd:
                    98:f7:37:bf:e4:c0:0e:91:09:83:ab:4c:d2:50:91:
                    d7:5f:e7:23:c9:75:a2:f8:b4:c3:26:3d:32:21:fc:
                    b7:a8:68:bd:6c:5d:be:89:f9:d9:78:6f:3b:14:4d:
                    20:e8:84:bc:6e:ec:5e:da:3c:54:04:92:81:49:b4:
                    3d:d2:94:1d:20:e0:8f:3b:03:ce:2e:eb:49:1b:0a:
                    d1:da:c3:55:f7:ac:89:ec:11:9a:99:5e:50:83:90:
                    23:9a:e3:f5:03:dd:fc:e0:41:24:ee:5a:a8:a6:c9:
                    7b:52:a1:e7:00:41:da:4d:62:80:d4:c0:5a:87:3a:
                    e6:b1:72:85:f1:bc:5d:ec:cd:41:86:ca:67:94:57:
                    fb:b7:8d:84:c7:c0:2c:72:f4:f3:54:b5:0c:14:12:
                    d4:bd:e4:a4:b2:61:d6:a8:fa:3e:be:84:3f:84:b8:
                    62:cd:d8:d0:ec:30:c8:08:97:02:1b:75:94:1d:b9:
                    d6:c3:af:da:e5:7f:43:1c:1b:86:32:1d:07:e1:f6:
                    91:9a:f0:eb:09:b5:3a:cd:c4:09:eb:a0:71:61:b8:
                    af:12:f1:24:09:b6:bb:9a:45:a6:74:4d:20:d6:46:
                    a8:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DE:BD:B8:FB:31:F5:01:F1:95:61:28:3F:21:86:1C:3A:B2:E8:89:E9
            X509v3 Authority Key Identifier:
                keyid:10:B6:5C:F6:FA:5E:1F:CA:E8:CF:84:C9:70:1E:38:BD:FB:63:AA:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ELZc9vpeH8roz4TJcB44vftjqrM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/8090c2-8180-4f3f-8142-a23855872b86/1/ELZc9vpeH8roz4TJcB44vftjqrM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4a:0e:d1:c9:5b:68:57:52:9b:3b:a2:88:c0:18:9d:9b:a1:54:
         63:5d:ef:c2:2a:09:66:90:12:99:42:5a:3e:b3:67:c2:79:30:
         73:bc:14:68:03:89:31:ed:f5:14:68:aa:f9:fc:8e:99:84:ae:
         65:b9:8e:7e:78:99:78:06:e0:7b:20:e4:15:f9:c5:2c:36:f6:
         9e:40:89:65:e4:a7:57:d8:fd:bb:55:d5:9a:3f:99:56:cc:4a:
         6b:62:f9:39:a6:de:48:8a:9a:00:c9:be:60:35:d9:fb:d9:22:
         0b:d0:da:a6:db:03:e4:51:21:62:fb:70:95:84:09:19:06:a8:
         23:ea:1e:11:b4:f7:45:b9:88:ad:3e:57:61:75:79:90:5d:e8:
         58:80:5b:59:5c:85:2d:6a:36:bb:6a:af:f3:a0:3e:4d:4a:36:
         da:10:4b:b9:af:54:8e:f7:24:42:bc:cc:35:a2:84:8e:47:3b:
         7b:bc:f3:f5:16:33:f4:dd:0a:62:d5:aa:43:95:01:3a:91:d0:
         37:1a:90:aa:e5:36:2e:38:c6:d8:71:c9:94:a6:95:b4:ad:8d:
         9f:b7:fc:63:cf:cc:70:b0:50:c1:32:25:eb:5c:e8:fd:f9:07:
         a3:40:67:c5:c6:62:ef:50:cf:e9:b4:41:1a:a4:e2:15:ed:03:
         2c:76:ed:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 11:03:26 2025 by rpki-client