Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft
File:                     gbv0m8K-YG6m9Ivb-WJX3natfMA.mft (raw, json)
Hash identifier:          v+LRdFLjZKKkreOK5G1N2lH5ftH1Sy5eK1ExJenFZ8Q=
Subject key identifier:   62:E6:8E:19:A5:D9:3D:07:72:1A:8F:F9:C5:20:59:C3:4F:87:88:80
Authority key identifier: 81:BB:F4:9B:C2:BE:60:6E:A6:F4:8B:DB:F9:62:57:DE:76:AD:7C:C0
Certificate issuer:       /CN=81bbf49bc2be606ea6f48bdbf96257de76ad7cc0
Certificate serial:       01976D3D7B9C2A2E3DBCB4B5B7C91A48E792
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft
Manifest number:          158C
Signing time:             Sat 14 Jun 2025 07:00:35 +0000
Manifest this update:     Sat 14 Jun 2025 07:00:35 +0000
Manifest next update:     Sun 15 Jun 2025 07:00:35 +0000
Files and hashes:         1: gbv0m8K-YG6m9Ivb-WJX3natfMA.crl (hash: 9xIY0heoIbmMjH/ceLWNR3H0dEAAhRxBgFzswry89bk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:3d:7b:9c:2a:2e:3d:bc:b4:b5:b7:c9:1a:48:e7:92
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=81bbf49bc2be606ea6f48bdbf96257de76ad7cc0
        Validity
            Not Before: Jun 14 07:00:35 2025 GMT
            Not After : Jun 15 07:00:35 2025 GMT
        Subject: CN=62e68e19a5d93d07721a8ff9c52059c34f878880
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:a3:6d:e9:ec:f4:56:ea:0e:ed:94:f5:7a:24:
                    25:f1:4c:5c:7e:0d:4c:db:50:e5:46:da:12:3d:5e:
                    ec:f2:34:0b:a5:b2:ff:df:aa:ee:6f:c4:21:bf:fa:
                    9b:c2:ba:60:52:8e:c6:be:53:ff:7b:5d:db:2d:d0:
                    b1:40:b6:53:3c:f5:1b:12:ab:05:fb:79:59:3e:aa:
                    6d:4c:14:27:5d:90:19:fb:b9:f8:82:39:f9:82:45:
                    f7:d4:7b:c2:89:77:4a:c7:3b:ae:9d:4f:2a:0b:1a:
                    2a:2f:8d:55:26:92:4a:cf:c7:c8:99:77:9d:60:89:
                    7f:b4:b5:3e:fe:d9:b7:36:a1:1d:be:d6:37:e6:69:
                    8e:80:f1:f8:42:f4:03:59:8c:16:bc:0c:ea:62:73:
                    18:bf:d3:43:16:e2:53:41:5d:1f:34:8e:97:70:71:
                    1b:16:45:4f:08:d5:70:2d:65:6d:24:c2:74:16:21:
                    29:0f:b6:26:a5:4a:9e:85:f3:76:5e:e8:7c:6b:ef:
                    e8:9d:16:16:b4:0a:83:bc:77:7f:60:e9:3d:0e:fe:
                    75:89:2b:38:51:58:ed:bf:4c:c6:88:05:07:3a:46:
                    2f:71:91:41:d4:56:8a:1a:4f:3f:41:1b:32:08:48:
                    92:89:37:c9:8b:b5:ca:5a:4b:0b:37:b4:01:f3:b6:
                    f8:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:E6:8E:19:A5:D9:3D:07:72:1A:8F:F9:C5:20:59:C3:4F:87:88:80
            X509v3 Authority Key Identifier:
                keyid:81:BB:F4:9B:C2:BE:60:6E:A6:F4:8B:DB:F9:62:57:DE:76:AD:7C:C0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:fc:50:ee:bf:5f:db:e7:14:0f:05:ac:5d:0f:e0:2a:94:a0:
         33:20:3e:82:0d:ca:54:e7:c3:25:5f:35:d4:c6:83:c4:92:4b:
         e1:d5:69:1b:e2:cc:f6:4d:36:95:0e:88:e7:25:5f:4a:aa:9e:
         3e:be:13:d8:cc:96:a7:2f:86:80:4b:84:98:0d:0f:e2:2f:63:
         f0:02:79:ad:f5:9c:ca:d1:69:22:ba:91:59:66:aa:7e:23:ba:
         6a:6b:36:69:a7:0c:25:c8:84:7e:17:52:64:2f:00:1b:21:2b:
         cd:27:a4:e0:52:69:45:e1:1a:c0:46:5e:08:0d:c7:70:a9:b7:
         5d:f9:fd:6c:69:2c:1d:d7:49:34:00:89:24:f0:14:cd:7b:2a:
         c4:b5:51:03:cc:a7:43:57:c7:de:4e:03:a1:a7:63:89:b0:b2:
         ba:2a:11:6d:d7:97:dd:12:24:56:cb:9d:e7:5b:fd:0f:f0:c2:
         21:b6:d0:6a:0c:5e:73:f8:62:d1:56:f1:ec:96:a8:27:a7:e3:
         09:bb:f9:11:9c:be:b0:fc:c7:77:38:d8:61:0a:f1:98:88:79:
         ce:c6:62:66:cb:63:be:71:e2:fd:7b:46:07:8e:7b:e5:4e:52:
         ff:93:31:dd:30:38:c1:3f:64:04:1c:46:24:bb:94:cc:08:49:
         3d:10:6e:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 09:16:23 2025 by rpki-client