Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft
File:                     CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft (raw, json)
Hash identifier:          lv4UZqQbQ+rRERlDtX6StLOepxTd+VuSS3o3c7vMhQo=
Subject key identifier:   E4:F3:80:7F:36:D5:26:EE:AB:3A:8E:59:B8:06:76:BE:C0:00:42:99
Authority key identifier: 08:D2:7F:DC:90:F8:0F:80:97:2C:12:5B:D4:1E:DB:0A:E8:33:4A:A0
Certificate issuer:       /CN=08d27fdc90f80f80972c125bd41edb0ae8334aa0
Certificate serial:       0197488D48C4BC326F785AA09FB6197C895A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft
Manifest number:          0A15
Signing time:             Sat 07 Jun 2025 04:01:48 +0000
Manifest this update:     Sat 07 Jun 2025 04:01:48 +0000
Manifest next update:     Sun 08 Jun 2025 04:01:48 +0000
Files and hashes:         1: CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl (hash: k3Wtr/U+E7uXzdtkR4e7qkK8uLzT32HaiignnasyKxQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8d:48:c4:bc:32:6f:78:5a:a0:9f:b6:19:7c:89:5a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08d27fdc90f80f80972c125bd41edb0ae8334aa0
        Validity
            Not Before: Jun  7 04:01:48 2025 GMT
            Not After : Jun  8 04:01:48 2025 GMT
        Subject: CN=e4f3807f36d526eeab3a8e59b80676bec0004299
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:cb:55:e2:93:35:2b:08:51:ad:3a:d9:0d:a6:
                    1b:82:5b:8b:2a:13:0e:ac:e1:45:f0:25:4b:e8:a3:
                    54:e5:9d:5c:4f:87:37:72:0e:37:de:80:c5:cf:e9:
                    af:2d:01:c1:32:e9:82:a2:c7:2d:2d:bf:a7:9d:28:
                    3e:d0:8b:1d:ec:b0:72:c0:b8:e4:78:20:ac:28:1a:
                    41:87:ec:3e:1d:5b:da:89:33:db:4c:b8:25:20:a4:
                    f3:25:ba:9b:53:9a:ee:a3:97:c6:13:44:96:de:1f:
                    52:c9:98:ed:da:e2:56:e6:4f:10:d8:0c:5a:50:07:
                    ce:4a:0b:81:9e:9a:8b:93:70:a1:79:a8:3e:04:26:
                    7b:22:71:c5:53:a7:93:7a:49:cc:e1:40:dd:43:c8:
                    f8:c1:01:86:cf:02:4f:c6:71:4c:ec:98:52:39:56:
                    80:b6:c9:a7:d2:b3:b0:e8:b9:8e:db:bb:33:7c:7f:
                    08:0a:b1:44:4d:36:cc:c6:45:52:53:f7:8d:94:b6:
                    6d:f0:cc:5a:2e:57:d3:32:5c:24:0c:07:8d:3f:ba:
                    df:dd:20:89:31:2a:36:4b:19:c9:76:f1:e7:c9:a8:
                    9c:14:d3:c3:7a:df:70:6d:70:51:bc:e8:f0:fd:8c:
                    88:7b:8d:0d:3a:1e:1c:fb:17:09:77:b4:4d:dc:43:
                    7e:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:F3:80:7F:36:D5:26:EE:AB:3A:8E:59:B8:06:76:BE:C0:00:42:99
            X509v3 Authority Key Identifier:
                keyid:08:D2:7F:DC:90:F8:0F:80:97:2C:12:5B:D4:1E:DB:0A:E8:33:4A:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNJ_3JD4D4CXLBJb1B7bCugzSqA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/662dbe-5937-46fa-8d96-910541155fef/1/CNJ_3JD4D4CXLBJb1B7bCugzSqA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cd:b4:ef:b2:6a:d5:30:4e:60:4b:85:c2:8c:58:a3:69:cb:0d:
         49:c8:b1:1d:3f:b7:05:b7:28:12:1e:2c:62:73:56:bf:62:be:
         da:5f:c9:c8:ba:2d:ca:08:9a:9b:24:94:2b:cd:c8:c1:be:f9:
         1f:c6:b2:8a:be:c4:7e:91:d6:c5:21:07:e3:3b:cf:55:27:e7:
         1b:15:0f:c3:15:89:45:1b:56:d4:6f:17:1b:30:fb:08:27:da:
         33:d6:2b:43:a2:56:51:e4:03:6e:34:b8:07:c7:9e:60:9e:a0:
         7e:a6:d5:47:f6:d5:80:7e:bd:51:a1:1b:48:f2:56:4e:48:a7:
         17:19:6e:c2:d6:d9:da:28:83:65:bc:a9:49:4d:5b:89:c6:3d:
         0c:36:97:bb:63:2a:8d:0f:4b:41:63:ae:ea:5a:3b:57:40:5b:
         9e:9e:c8:b9:d1:0c:25:25:a6:d4:8f:6a:06:09:4d:48:38:fc:
         8f:b8:fd:b8:a7:8e:1f:09:71:27:58:41:9d:1f:34:16:cd:a0:
         a4:e3:22:bc:3c:26:34:79:de:5d:d7:92:6b:f3:7c:08:39:f7:
         c8:47:4f:50:37:8f:03:2f:70:5c:43:0c:8a:64:6e:48:79:5b:
         57:f6:ca:fd:a2:30:93:99:8c:c7:1f:2c:83:f9:be:d8:b0:ed:
         64:6e:8a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----