Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/49c630-80d8-4955-ba6e-ee6dbfa98d2e/1/H4zVvaNGEK2v7R_tQ6IjRfB2fn8.mft
File:                     H4zVvaNGEK2v7R_tQ6IjRfB2fn8.mft (raw, json)
Hash identifier:          EPLpGbMwUpEqdHB7xuWRmChOqVUqN4USTlaNZ4UDh/g=
Subject key identifier:   14:FE:4E:16:21:C3:9C:78:9C:9D:65:18:7E:71:3F:8F:67:5A:06:C6
Authority key identifier: 1F:8C:D5:BD:A3:46:10:AD:AF:ED:1F:ED:43:A2:23:45:F0:76:7E:7F
Certificate issuer:       /CN=1f8cd5bda34610adafed1fed43a22345f0767e7f
Certificate serial:       01976F9A382BEC3D2569EFB74DB1CCCC832E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/H4zVvaNGEK2v7R_tQ6IjRfB2fn8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/53/49c630-80d8-4955-ba6e-ee6dbfa98d2e/1/H4zVvaNGEK2v7R_tQ6IjRfB2fn8.mft
Manifest number:          145F
Signing time:             Sat 14 Jun 2025 18:01:07 +0000
Manifest this update:     Sat 14 Jun 2025 18:01:07 +0000
Manifest next update:     Sun 15 Jun 2025 18:01:07 +0000
Files and hashes:         1: H4zVvaNGEK2v7R_tQ6IjRfB2fn8.crl (hash: qADtAuGyZuuEImmGuywhtd5bbqDUhZ/P8L210a8pJyU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/53/49c630-80d8-4955-ba6e-ee6dbfa98d2e/1/H4zVvaNGEK2v7R_tQ6IjRfB2fn8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/53/49c630-80d8-4955-ba6e-ee6dbfa98d2e/1/H4zVvaNGEK2v7R_tQ6IjRfB2fn8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/H4zVvaNGEK2v7R_tQ6IjRfB2fn8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 18:01:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:9a:38:2b:ec:3d:25:69:ef:b7:4d:b1:cc:cc:83:2e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1f8cd5bda34610adafed1fed43a22345f0767e7f
        Validity
            Not Before: Jun 14 18:01:07 2025 GMT
            Not After : Jun 15 18:01:07 2025 GMT
        Subject: CN=14fe4e1621c39c789c9d65187e713f8f675a06c6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:3f:45:2d:2f:2d:c1:c5:5e:bb:e4:3f:18:1d:
                    ee:83:7c:f9:07:1d:00:f5:37:0d:e6:a6:d0:10:85:
                    81:77:a3:77:a4:51:93:36:5d:7f:18:e4:1e:79:67:
                    9c:ae:c5:9f:52:90:a8:b9:1f:ce:cc:7e:6d:d5:21:
                    a3:7f:7d:7e:0a:17:c8:5f:22:6a:40:82:e7:07:7f:
                    4c:c6:24:3d:16:58:aa:89:c7:ec:37:07:74:04:7d:
                    f2:27:44:81:04:8e:79:8a:6c:b0:cc:7e:38:8e:4d:
                    be:ff:3d:b7:82:51:cb:37:9e:c0:66:e5:62:20:e8:
                    ee:bf:60:cf:22:6f:89:4a:c6:d6:e7:94:05:64:39:
                    db:d2:8c:04:50:c1:dc:03:4b:d0:d2:e0:a3:fe:2d:
                    8c:f2:f9:4a:ee:39:dc:47:d7:47:d8:da:8a:0d:ce:
                    ec:a0:9b:49:52:26:a5:98:f7:6d:72:0e:58:b7:57:
                    63:9e:2b:01:52:c1:9f:fa:68:ec:17:b4:dd:f6:65:
                    ad:7f:0a:a8:bb:de:82:56:5d:01:02:1e:f5:d5:c2:
                    24:53:7c:8a:eb:3e:6a:b4:ca:f4:19:c7:22:84:35:
                    01:a0:5d:e1:9a:01:03:03:28:f9:f2:5a:6a:4e:e8:
                    72:69:8e:82:2c:87:62:a7:6b:8b:10:28:54:30:f2:
                    84:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                14:FE:4E:16:21:C3:9C:78:9C:9D:65:18:7E:71:3F:8F:67:5A:06:C6
            X509v3 Authority Key Identifier:
                keyid:1F:8C:D5:BD:A3:46:10:AD:AF:ED:1F:ED:43:A2:23:45:F0:76:7E:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H4zVvaNGEK2v7R_tQ6IjRfB2fn8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/49c630-80d8-4955-ba6e-ee6dbfa98d2e/1/H4zVvaNGEK2v7R_tQ6IjRfB2fn8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/53/49c630-80d8-4955-ba6e-ee6dbfa98d2e/1/H4zVvaNGEK2v7R_tQ6IjRfB2fn8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:5b:bc:8a:2e:ab:45:cf:33:9c:37:e8:4e:ed:7d:67:88:60:
         f3:65:82:0c:d5:53:2d:22:7a:49:1a:f9:50:22:91:e5:82:56:
         7f:d6:90:42:f7:26:c6:42:81:01:0a:2e:c6:fa:71:4b:87:81:
         0e:0b:19:2a:e5:81:c6:44:29:e9:a3:8a:19:77:03:93:48:fd:
         4e:ef:b7:0a:3a:9b:e7:69:0f:08:b2:1e:9f:4a:9a:a0:cc:e7:
         a5:12:fb:d0:ef:bb:44:41:80:c4:5e:91:2e:76:09:3f:8c:20:
         20:6d:a9:c1:04:64:a5:d3:fb:ce:71:a1:ce:13:98:7a:09:3e:
         a0:80:1d:cc:ca:2d:1a:d4:d8:6c:1a:01:de:07:ef:81:cb:30:
         c2:79:89:1b:2a:cf:63:8d:9e:9d:dd:99:96:50:c1:85:c7:f7:
         60:06:31:60:85:93:a3:6e:ae:65:0b:a2:b1:d2:8f:1f:7e:4a:
         9c:0f:7b:1c:d5:0e:46:bb:41:35:5c:3e:69:d0:88:37:69:58:
         bb:6c:05:f2:ad:22:90:4f:6d:dd:09:fd:81:6b:c3:dd:80:6a:
         3b:8b:19:50:59:61:cb:92:12:6c:1e:df:aa:fe:79:2f:d6:d9:
         70:57:8e:12:42:8d:5c:1e:db:9e:8d:96:e9:3d:a9:5a:00:2b:
         1a:46:da:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----