Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
File:                     J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft (raw, json)
Hash identifier:          UFmwR8KEjNmjDLGT+TQjjFz9jQvGjsvqg/noEntR/Mc=
Subject key identifier:   D2:4E:B5:9C:17:FD:03:83:76:9E:79:5D:BB:07:45:97:03:77:05:20
Authority key identifier: 27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0
Certificate issuer:       /CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0
Certificate serial:       01977978AEBAE0D9DEE1FD2DDD19EEF3EC83
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
Manifest number:          060E
Signing time:             Mon 16 Jun 2025 16:00:41 +0000
Manifest this update:     Mon 16 Jun 2025 16:00:41 +0000
Manifest next update:     Tue 17 Jun 2025 16:00:41 +0000
Files and hashes:         1: J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl (hash: eBQMeT+oAxX+mg/SI7j9LLBeUgyYnS+IJh4F1Z887wo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Jun 2025 14:25:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:79:78:ae:ba:e0:d9:de:e1:fd:2d:dd:19:ee:f3:ec:83
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0
        Validity
            Not Before: Jun 16 16:00:41 2025 GMT
            Not After : Jun 17 16:00:41 2025 GMT
        Subject: CN=d24eb59c17fd0383769e795dbb07459703770520
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:90:7b:c3:2f:ec:b4:1c:12:90:0f:2c:b2:81:
                    75:a3:85:33:d9:b4:08:97:3a:39:ae:7a:c0:db:73:
                    af:90:42:a4:9b:a3:45:be:d9:bf:b3:0d:c9:39:9f:
                    55:20:32:df:8c:0c:ad:0d:7f:4f:17:10:9b:17:3d:
                    5b:9d:9d:b3:71:d6:e6:4d:44:4c:e9:9f:de:bd:f4:
                    22:d0:51:4d:fc:28:e0:48:8a:0f:f3:51:3d:3f:3e:
                    59:34:8d:83:7d:5d:f2:80:81:16:b4:03:ca:b4:93:
                    69:a9:66:f1:49:d8:5a:16:69:74:2d:39:33:73:07:
                    76:00:e5:fe:a5:45:21:c7:fc:eb:1d:9f:c3:57:56:
                    98:39:e9:ee:f1:bc:88:b3:c3:f6:f7:5a:23:a9:79:
                    a2:f6:98:42:fd:d9:0f:15:2e:51:76:0d:17:52:99:
                    fa:c0:90:70:5d:2c:ad:8f:21:4e:5d:2d:0b:07:3a:
                    ae:1e:1e:43:a5:d5:ee:04:2e:27:ec:2b:a9:8f:c5:
                    cb:30:c3:39:90:26:c4:1a:9e:c5:9a:3e:6f:89:22:
                    38:67:d3:2c:d1:75:4d:5c:fe:66:5f:0f:0a:bc:fb:
                    9a:95:4a:b8:73:48:8a:9a:de:17:95:1f:19:8d:c3:
                    ce:93:db:02:57:5a:07:f2:5d:1b:a1:df:49:c5:61:
                    55:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D2:4E:B5:9C:17:FD:03:83:76:9E:79:5D:BB:07:45:97:03:77:05:20
            X509v3 Authority Key Identifier:
                keyid:27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:79:d8:87:02:12:1f:b8:f9:24:19:76:d2:87:9f:80:ae:02:
         6c:28:1b:0d:b2:b5:a6:f9:a7:52:45:d5:ae:84:ed:7f:fc:7a:
         cf:8c:38:70:7f:fe:12:30:05:d3:39:9d:75:61:4a:82:c9:d0:
         04:87:9f:d3:bd:09:19:dc:a4:17:c5:3b:6e:a1:fd:cd:6a:c5:
         60:e4:8a:3c:17:a0:e2:ee:ef:72:05:02:5c:ab:a3:2b:e3:69:
         25:47:3c:fb:15:25:56:75:e1:df:99:8f:21:da:4c:43:9f:51:
         5e:70:79:19:cd:f7:c8:d9:aa:99:41:ea:2e:3a:f7:3b:18:46:
         b1:32:46:ee:d7:48:e4:03:80:57:2e:e3:43:6e:29:6c:4d:7a:
         ec:a7:b3:f3:78:75:4c:57:db:af:40:89:af:46:ca:52:bc:7e:
         34:d1:af:0c:3e:ab:25:80:a0:31:bb:6b:b6:d1:79:38:d3:f8:
         7f:8b:48:54:28:e6:3e:fe:23:1c:d6:ee:a0:e7:06:4d:0b:e7:
         49:ca:e4:08:a9:40:f9:26:d6:84:bb:44:db:57:b7:59:b4:53:
         ea:da:70:d2:70:58:30:8a:03:a9:41:10:22:56:a2:ca:e2:89:
         80:33:b4:bb:c7:a2:42:0c:a9:0c:56:ef:10:b1:bd:d4:4f:f4:
         77:06:9d:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----