Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/c20cdc-b1a6-498b-8ccc-9493a74b5f75/1/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.mft
File:                     zoHi1W_Z8ZMtvA8hYymUL-I_dVo.mft (raw, json)
Hash identifier:          XztXgUJXQIcbTC0HJYKQgZ0EhLyy9Op4EYdJGFgIs3A=
Subject key identifier:   87:61:46:0D:F0:2D:4A:64:58:84:46:86:C3:9F:2B:EB:C7:AE:F6:2A
Authority key identifier: CE:81:E2:D5:6F:D9:F1:93:2D:BC:0F:21:63:29:94:2F:E2:3F:75:5A
Certificate issuer:       /CN=ce81e2d56fd9f1932dbc0f216329942fe23f755a
Certificate serial:       019748FA970AF6039764C8371437CE5950B9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/c20cdc-b1a6-498b-8ccc-9493a74b5f75/1/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.mft
Manifest number:          018B
Signing time:             Sat 07 Jun 2025 06:01:11 +0000
Manifest this update:     Sat 07 Jun 2025 06:01:11 +0000
Manifest next update:     Sun 08 Jun 2025 06:01:11 +0000
Files and hashes:         1: zoHi1W_Z8ZMtvA8hYymUL-I_dVo.crl (hash: WRw2eKNURi6kulAWFufBgTPOGiIhiUmUOvo+qjgBklA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/c20cdc-b1a6-498b-8ccc-9493a74b5f75/1/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/c20cdc-b1a6-498b-8ccc-9493a74b5f75/1/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 22:50:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:fa:97:0a:f6:03:97:64:c8:37:14:37:ce:59:50:b9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ce81e2d56fd9f1932dbc0f216329942fe23f755a
        Validity
            Not Before: Jun  7 06:01:11 2025 GMT
            Not After : Jun  8 06:01:11 2025 GMT
        Subject: CN=8761460df02d4a6458844686c39f2bebc7aef62a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:0f:fa:a0:72:c0:bb:33:3a:ba:58:53:83:52:
                    db:f7:3d:34:4c:80:27:33:ea:6e:2b:f1:01:2e:66:
                    24:51:bc:0d:cc:eb:0a:8c:4c:99:0a:15:3a:69:4b:
                    01:42:03:55:6f:e8:07:18:32:07:7d:26:5d:dd:9c:
                    84:14:b3:33:36:f0:e3:f2:27:bb:0e:19:6c:fa:ab:
                    69:7a:dc:78:65:9a:50:2b:1c:60:51:68:ef:0f:10:
                    86:f6:60:0c:b5:34:0d:d6:44:62:9a:9f:4e:1a:50:
                    fe:1e:d4:1a:17:e4:ef:2e:c4:26:59:d8:dd:2e:87:
                    3b:f1:a7:1c:cb:3b:80:83:79:51:c3:e8:7f:d5:64:
                    34:f3:89:12:99:6c:f9:cc:5f:c7:f5:6f:a6:87:6c:
                    90:a7:d7:9a:ba:b5:3e:2d:51:4c:e5:1a:3e:43:43:
                    db:1d:12:32:6e:7a:fd:e2:4a:d5:8f:a4:e3:01:ce:
                    49:1e:7f:01:9f:11:0e:87:18:b1:95:32:88:cb:33:
                    7a:f5:d0:54:1b:d3:ae:5c:97:b3:f2:a0:36:23:39:
                    a2:12:a2:5b:0c:a9:5f:83:70:24:16:c6:c1:9d:c3:
                    8e:09:d2:9e:e6:2d:b5:52:d5:88:61:6b:7d:a0:df:
                    93:56:fe:2c:92:70:93:a7:8d:dc:9b:91:4e:9a:a2:
                    10:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:61:46:0D:F0:2D:4A:64:58:84:46:86:C3:9F:2B:EB:C7:AE:F6:2A
            X509v3 Authority Key Identifier:
                keyid:CE:81:E2:D5:6F:D9:F1:93:2D:BC:0F:21:63:29:94:2F:E2:3F:75:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c20cdc-b1a6-498b-8ccc-9493a74b5f75/1/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c20cdc-b1a6-498b-8ccc-9493a74b5f75/1/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:1f:8e:40:08:5b:dc:57:b2:3e:e1:65:51:6a:ee:57:19:40:
         41:e2:93:88:ff:d5:a0:04:73:71:76:d8:8b:36:bf:1e:d2:75:
         86:ac:d7:ed:ec:55:c2:7e:6e:8d:91:22:76:24:85:36:79:04:
         9a:b7:ab:68:a4:44:0d:8c:43:54:00:77:85:58:5a:db:a1:7d:
         d6:e0:50:41:a5:fd:c4:36:98:ae:86:44:01:96:b9:b4:7b:7b:
         7d:8e:2c:bc:98:9a:3c:9c:9d:ed:cc:d1:ab:40:d4:c9:60:67:
         92:ca:e4:c9:93:68:2e:fc:b3:92:ed:82:c8:4c:e1:bc:dd:e2:
         7e:cc:26:3b:d5:dc:aa:1a:e9:8a:68:69:14:8f:9c:51:ab:d4:
         62:81:1b:c8:aa:24:f1:28:09:d5:2c:5e:b3:71:c7:91:c5:97:
         63:92:55:ef:10:c0:c8:41:db:97:25:d1:c1:ac:1b:bd:47:55:
         2a:ee:2a:0f:cc:ac:47:c5:0d:e1:00:37:72:ae:71:28:6c:ce:
         78:73:f8:cf:06:29:83:44:dd:f6:07:24:c9:dc:c1:70:13:0d:
         8d:b6:a7:ac:16:7e:30:50:ca:06:a8:2e:6a:2b:f6:0a:48:e3:
         40:2b:f1:d8:63:35:e7:46:91:c7:fa:78:e6:d0:16:c8:ff:c4:
         70:fb:18:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----