Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
File:                     QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft (raw, json)
Hash identifier:          UIGRAf7EktVOQvIU2pxgYW/9UT4vN46XtRPttyjRpXE=
Subject key identifier:   77:F7:63:E9:E5:8A:E8:22:FF:84:C2:A9:77:7E:03:BE:AE:E2:5F:94
Authority key identifier: 41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
Certificate issuer:       /CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Certificate serial:       01974A7AB51401559A134528B47915929EB9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
Manifest number:          0B69
Signing time:             Sat 07 Jun 2025 13:00:45 +0000
Manifest this update:     Sat 07 Jun 2025 13:00:45 +0000
Manifest next update:     Sun 08 Jun 2025 13:00:45 +0000
Files and hashes:         1: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl (hash: zy999Vv1td3xqsHjXjdQhY8wxs0TpiUrKgI24TQel9k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7a:b5:14:01:55:9a:13:45:28:b4:79:15:92:9e:b9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
        Validity
            Not Before: Jun  7 13:00:45 2025 GMT
            Not After : Jun  8 13:00:45 2025 GMT
        Subject: CN=77f763e9e58ae822ff84c2a9777e03beaee25f94
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:bc:ca:c2:6d:fa:6c:dc:af:0c:4f:21:dd:fe:
                    b0:19:cb:a6:8e:bb:67:f7:91:74:46:43:ac:20:77:
                    a6:35:05:cf:e1:81:59:d6:2a:ba:cb:a5:bc:7a:1e:
                    90:7a:e3:da:1d:9f:0c:59:d0:05:2f:9d:ef:09:1d:
                    e4:c9:d2:49:3a:62:00:97:97:c7:f1:c8:ba:69:83:
                    33:bc:87:c2:12:31:f9:35:06:34:da:e3:65:1a:8b:
                    10:16:eb:d4:b7:d5:64:53:16:9f:b1:b8:ea:d2:5e:
                    7a:19:bf:11:cd:8b:8d:dd:a3:52:55:78:45:d8:d5:
                    f6:53:67:98:24:49:c6:2f:df:ef:ae:9f:ef:d2:1a:
                    2c:a5:73:d1:09:c0:a5:7d:ac:a7:00:08:a3:f2:ec:
                    74:0a:b4:8c:f3:e5:c7:f7:31:49:7c:95:1e:06:27:
                    a3:69:df:96:3d:d7:d4:d8:41:7b:f9:9b:91:84:6b:
                    a6:e7:44:5d:d4:56:06:2a:1a:e6:0e:df:77:fc:3e:
                    bc:56:81:1f:4c:65:fb:c4:f0:76:2b:f5:ec:55:62:
                    0d:35:82:c6:ee:05:21:4d:76:fb:96:d4:5d:78:a5:
                    6b:42:57:0a:64:0b:49:6a:6c:94:64:50:6f:ac:60:
                    ab:6b:dd:11:74:b4:a9:9c:23:f2:ce:37:f7:df:89:
                    15:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:F7:63:E9:E5:8A:E8:22:FF:84:C2:A9:77:7E:03:BE:AE:E2:5F:94
            X509v3 Authority Key Identifier:
                keyid:41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d3:a8:43:49:61:62:6b:0f:b1:fe:86:eb:ce:5b:99:d7:dc:12:
         58:85:6c:00:dd:76:f5:ce:50:96:12:fb:64:1c:f2:33:8d:11:
         d1:86:31:35:f2:a0:6c:8e:4c:29:0c:d2:4c:83:12:75:ba:2b:
         5b:cf:93:2c:e9:af:ec:e4:76:0a:d5:9c:3e:0a:69:e2:c2:c6:
         40:f7:7c:82:7c:f1:90:2e:26:3b:dc:f9:23:85:11:58:19:77:
         d9:55:43:53:fb:fc:16:bb:e2:08:e8:28:2b:12:96:f4:af:d3:
         7f:8b:72:ce:09:dd:51:35:44:28:ba:d0:40:c4:c4:53:3e:e1:
         3b:58:17:4d:96:fe:0f:5d:54:7e:74:08:25:65:14:f4:ac:73:
         7b:66:50:a3:83:53:db:37:c0:0e:cd:b3:be:99:c0:7d:54:4d:
         b8:78:b0:e3:26:96:f6:c6:01:c3:3d:4b:fc:8d:3d:e9:fe:d0:
         03:75:04:52:d1:13:df:48:bc:7d:10:61:d2:a4:cc:4d:1a:87:
         59:22:bb:02:49:bc:ef:b6:d7:e3:6c:fd:df:82:90:f8:03:83:
         d4:0c:ca:ca:1c:7c:80:ee:11:b2:40:ae:17:f2:cf:a4:6f:30:
         99:83:ca:00:31:84:e1:bb:04:2e:33:ec:6a:a7:48:5c:d7:8d:
         6e:cc:4c:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----