Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft
File:                     8j79S9kntM6jMSCiG09zFNy-oXk.mft (raw, json)
Hash identifier:          SQh1AF6+WMsz2lvTNtVPtmtaAIq4ZEyq0YYYM2s9nsE=
Subject key identifier:   7A:09:99:06:6E:60:06:C3:55:32:35:16:05:B9:AF:24:81:A3:43:61
Authority key identifier: F2:3E:FD:4B:D9:27:B4:CE:A3:31:20:A2:1B:4F:73:14:DC:BE:A1:79
Certificate issuer:       /CN=f23efd4bd927b4cea33120a21b4f7314dcbea179
Certificate serial:       0197684DF77C7869E66AF8E169C1319FB75B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8j79S9kntM6jMSCiG09zFNy-oXk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft
Manifest number:          0D31
Signing time:             Fri 13 Jun 2025 08:00:29 +0000
Manifest this update:     Fri 13 Jun 2025 08:00:29 +0000
Manifest next update:     Sat 14 Jun 2025 08:00:29 +0000
Files and hashes:         1: 8j79S9kntM6jMSCiG09zFNy-oXk.crl (hash: su+wedYon8L3vsHz4P9+zlyoS/8kvyeL1cw/sFU9z7g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8j79S9kntM6jMSCiG09zFNy-oXk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 08:00:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:4d:f7:7c:78:69:e6:6a:f8:e1:69:c1:31:9f:b7:5b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f23efd4bd927b4cea33120a21b4f7314dcbea179
        Validity
            Not Before: Jun 13 08:00:29 2025 GMT
            Not After : Jun 14 08:00:29 2025 GMT
        Subject: CN=7a0999066e6006c35532351605b9af2481a34361
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:82:fa:83:68:6a:21:ee:37:6e:00:46:0a:ea:
                    5a:aa:1b:42:85:d5:fe:e5:8e:a5:c0:76:ec:ba:91:
                    9e:f3:f4:95:4a:33:11:45:54:76:90:1a:12:45:19:
                    76:97:85:c2:1d:99:67:38:8f:37:cf:dc:55:be:8b:
                    e1:75:fa:44:a0:6d:15:e3:99:44:be:fe:e4:a5:89:
                    e3:7f:e6:3f:ec:6a:60:8f:f4:7b:cf:97:04:32:fb:
                    6c:20:8a:89:49:f4:dc:4f:4b:74:e9:55:a5:3c:dd:
                    c6:74:1c:6e:30:c7:83:20:b7:b7:9d:8a:6f:f4:e4:
                    dd:23:91:97:61:46:7b:2c:2a:d7:7d:24:6c:4a:53:
                    ba:d4:d7:da:49:59:4a:3c:76:a6:38:f5:9c:48:08:
                    92:92:db:a7:9d:65:e9:89:43:d0:92:48:72:8d:a2:
                    3a:79:d0:97:bf:74:a7:09:5a:8b:64:55:0e:ef:a0:
                    4e:8a:fe:06:a6:1f:7d:88:7a:6f:92:ba:1d:2b:62:
                    d0:6d:15:ba:c4:1d:76:5d:fc:32:05:7c:fe:07:ee:
                    4f:83:f1:b8:4e:2c:ee:d3:d1:b1:78:62:7b:53:8c:
                    58:4b:5f:72:9d:a7:a4:5e:a8:64:e0:f4:13:41:78:
                    fd:b7:24:be:91:a1:4f:0d:a1:64:80:9f:42:f1:1f:
                    16:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7A:09:99:06:6E:60:06:C3:55:32:35:16:05:B9:AF:24:81:A3:43:61
            X509v3 Authority Key Identifier:
                keyid:F2:3E:FD:4B:D9:27:B4:CE:A3:31:20:A2:1B:4F:73:14:DC:BE:A1:79

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8j79S9kntM6jMSCiG09zFNy-oXk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:bd:98:84:56:f8:9e:22:25:9b:40:6c:b2:7b:b6:70:35:cf:
         47:48:08:38:79:c7:e7:59:1a:e1:16:15:7e:9e:ce:a7:ad:db:
         3b:ee:de:b8:5d:d5:43:de:65:d2:81:b6:59:ba:20:29:22:c4:
         e7:69:a1:00:ad:7d:91:8f:57:3a:ab:d3:ec:95:67:f8:a3:f0:
         79:94:29:31:21:73:2b:e3:23:6b:59:0b:fb:a6:da:02:31:d6:
         e8:5b:5a:9d:ee:6c:c9:ec:7b:c6:a4:da:26:0e:c4:61:3d:1d:
         7e:ac:d1:ad:24:87:8b:91:a9:6e:d3:50:4f:b8:f5:eb:d7:fe:
         5b:63:5c:1d:85:a7:b3:fa:44:9a:8c:51:1d:f7:b1:45:fa:01:
         1d:a9:71:1e:d4:e6:5c:71:5c:84:f3:24:f3:8e:31:6c:b9:f0:
         70:3d:5b:f0:8b:3e:5f:31:80:47:f1:f8:4d:4b:06:7e:cf:51:
         90:45:9a:9b:71:7e:2f:c6:a9:50:0a:1d:93:63:eb:65:6e:bc:
         0f:f8:e6:93:3f:46:86:64:7c:55:4d:ac:2c:51:1e:63:01:27:
         0b:17:e9:40:b4:66:74:8b:36:5e:26:11:80:e7:38:74:02:e0:
         ab:2e:ae:8d:c8:1e:29:83:5c:24:6c:15:88:48:36:83:9c:bd:
         f5:40:5a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----