Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/c7a7f5-e3a2-493b-a8bd-7bdb672e0c54/1/ZLkPNFJfgAJep3y2GOdRmYKrhZI.mft
File:                     ZLkPNFJfgAJep3y2GOdRmYKrhZI.mft (raw, json)
Hash identifier:          TEvHEiypj8SqXMk3hFvHrWzhgC/W7gVL604n9VI4JpQ=
Subject key identifier:   9C:80:FB:4B:C2:6B:50:FE:EC:72:B7:E5:B7:BD:AB:F9:0B:BF:57:D5
Authority key identifier: 64:B9:0F:34:52:5F:80:02:5E:A7:7C:B6:18:E7:51:99:82:AB:85:92
Certificate issuer:       /CN=64b90f34525f80025ea77cb618e7519982ab8592
Certificate serial:       01976960D835B17622E2C398A0E3B402708A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ZLkPNFJfgAJep3y2GOdRmYKrhZI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/c7a7f5-e3a2-493b-a8bd-7bdb672e0c54/1/ZLkPNFJfgAJep3y2GOdRmYKrhZI.mft
Manifest number:          158B
Signing time:             Fri 13 Jun 2025 13:00:43 +0000
Manifest this update:     Fri 13 Jun 2025 13:00:43 +0000
Manifest next update:     Sat 14 Jun 2025 13:00:43 +0000
Files and hashes:         1: ZLkPNFJfgAJep3y2GOdRmYKrhZI.crl (hash: tarqbtVX8sMBkAVkBHzqaK1JMnHwGyiLEvhYie7gGWw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/c7a7f5-e3a2-493b-a8bd-7bdb672e0c54/1/ZLkPNFJfgAJep3y2GOdRmYKrhZI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/c7a7f5-e3a2-493b-a8bd-7bdb672e0c54/1/ZLkPNFJfgAJep3y2GOdRmYKrhZI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ZLkPNFJfgAJep3y2GOdRmYKrhZI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:00:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:60:d8:35:b1:76:22:e2:c3:98:a0:e3:b4:02:70:8a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=64b90f34525f80025ea77cb618e7519982ab8592
        Validity
            Not Before: Jun 13 13:00:43 2025 GMT
            Not After : Jun 14 13:00:43 2025 GMT
        Subject: CN=9c80fb4bc26b50feec72b7e5b7bdabf90bbf57d5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:42:56:40:0f:c5:7b:ab:e3:3a:d8:ed:44:8f:
                    0e:5f:ff:02:4e:17:d1:de:7e:53:93:1b:17:ce:c1:
                    57:9f:4b:bc:9b:83:6e:ec:6c:6b:17:1d:e7:4c:d1:
                    f4:47:8a:af:e1:0e:87:09:30:cf:d2:a6:56:67:18:
                    89:d2:d8:31:9e:97:98:a1:9f:b5:6c:d0:13:e5:3d:
                    6b:5e:55:e7:cc:c0:7b:6d:8c:29:8d:b6:f8:18:33:
                    b2:25:36:74:57:a7:a7:14:cd:b4:f1:12:08:c1:04:
                    7c:65:5f:73:92:b5:8d:1f:86:88:0d:54:cb:55:04:
                    db:47:9e:6c:f5:a6:8f:73:14:6a:eb:17:e0:3e:3c:
                    0d:91:66:a6:9e:9b:58:09:80:7f:7e:c7:1b:02:6b:
                    ac:d0:f6:c8:11:f2:b6:0c:48:3d:53:0f:63:d9:eb:
                    9b:5a:00:49:79:9b:67:18:b6:ac:d2:8b:ed:d4:ad:
                    a1:d0:99:69:be:39:9b:73:93:5c:59:f2:f4:2b:47:
                    6c:42:47:10:e2:75:65:5d:8b:0d:25:3f:87:d3:6d:
                    78:2e:49:0a:8c:f9:14:bb:6f:2c:3e:27:d4:6f:64:
                    4d:cc:d4:f6:8f:74:48:dc:4a:98:2f:d1:57:1c:85:
                    4d:58:9c:cb:47:13:bb:4f:b5:dc:15:93:61:9d:63:
                    f6:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9C:80:FB:4B:C2:6B:50:FE:EC:72:B7:E5:B7:BD:AB:F9:0B:BF:57:D5
            X509v3 Authority Key Identifier:
                keyid:64:B9:0F:34:52:5F:80:02:5E:A7:7C:B6:18:E7:51:99:82:AB:85:92

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZLkPNFJfgAJep3y2GOdRmYKrhZI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c7a7f5-e3a2-493b-a8bd-7bdb672e0c54/1/ZLkPNFJfgAJep3y2GOdRmYKrhZI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c7a7f5-e3a2-493b-a8bd-7bdb672e0c54/1/ZLkPNFJfgAJep3y2GOdRmYKrhZI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c3:35:bb:79:82:21:cd:c8:f1:d3:24:82:c0:1e:1b:23:be:49:
         4e:6c:d1:18:d0:d7:91:ac:da:a9:bb:14:95:d7:94:a1:15:9b:
         f9:c6:0e:4b:6b:c5:16:96:d3:8d:d1:0a:51:3f:5a:90:7e:0f:
         31:b5:9e:d3:4b:c1:d8:93:94:92:59:e8:2c:7e:79:a8:e4:cb:
         bf:60:94:5e:3f:30:64:85:08:88:89:37:1e:c7:73:8b:64:4a:
         a7:7f:33:2e:9c:10:de:07:74:43:60:0f:79:24:81:21:02:79:
         70:9d:d7:9d:e4:97:e4:c7:37:16:18:1f:df:20:3c:d8:7d:08:
         09:f3:45:9a:ba:b9:e6:b2:a0:c5:3b:d3:74:32:77:de:b4:c5:
         cf:c5:0b:f8:bd:23:f0:76:3c:3e:4a:65:fb:b1:ef:2d:73:42:
         88:24:db:ef:bf:04:c0:18:12:3a:bd:b3:9f:76:7f:65:77:a7:
         16:31:4f:18:8a:bc:5a:5e:26:78:b7:12:28:70:d8:41:e6:72:
         d2:76:98:8a:53:86:4a:6c:f6:af:25:0f:3e:0f:cb:5b:b0:81:
         81:68:a8:81:08:90:2c:e5:5c:65:42:79:2f:ae:97:43:45:8a:
         c0:d1:af:8e:ad:9e:ea:cd:bf:73:62:42:26:11:bc:68:fe:5a:
         66:26:0a:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----