Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.mft
File:                     NO2iVBz8z2guKd2uYx7cjR57b2A.mft (raw, json)
Hash identifier:          2JRdGGsaKGB6XwtObXk/lCewZkT5HgwPLq+pncWJIQs=
Subject key identifier:   10:B7:7D:B8:DD:7E:B8:A1:6E:D1:B6:C7:BD:AD:24:A9:40:82:0C:15
Authority key identifier: 34:ED:A2:54:1C:FC:CF:68:2E:29:DD:AE:63:1E:DC:8D:1E:7B:6F:60
Certificate issuer:       /CN=34eda2541cfccf682e29ddae631edc8d1e7b6f60
Certificate serial:       0197711A66ED0D7C31A010BC0020FA447425
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NO2iVBz8z2guKd2uYx7cjR57b2A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.mft
Manifest number:          063F
Signing time:             Sun 15 Jun 2025 01:00:45 +0000
Manifest this update:     Sun 15 Jun 2025 01:00:45 +0000
Manifest next update:     Mon 16 Jun 2025 01:00:45 +0000
Files and hashes:         1: NO2iVBz8z2guKd2uYx7cjR57b2A.crl (hash: qJ4h8QT2uz1VhdciYaEbsZwF2Ys/rWrvlm03A4L6NQ8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/NO2iVBz8z2guKd2uYx7cjR57b2A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 22:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:71:1a:66:ed:0d:7c:31:a0:10:bc:00:20:fa:44:74:25
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=34eda2541cfccf682e29ddae631edc8d1e7b6f60
        Validity
            Not Before: Jun 15 01:00:45 2025 GMT
            Not After : Jun 16 01:00:45 2025 GMT
        Subject: CN=10b77db8dd7eb8a16ed1b6c7bdad24a940820c15
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:e3:de:4a:81:bb:6c:5a:22:c5:7f:c1:7c:e0:
                    80:86:65:72:a5:16:bd:56:67:35:3d:24:5d:11:09:
                    c3:ca:74:5f:04:a7:a6:5b:ea:ec:74:af:16:fc:32:
                    04:07:32:1c:b8:bc:ac:cc:ad:6c:f4:11:12:33:2e:
                    4b:a6:31:e8:8b:8b:f2:31:52:4a:82:4f:08:9e:00:
                    e3:bf:42:cc:af:8a:dc:a5:0b:fe:eb:80:09:3c:8b:
                    2f:7b:39:4f:5c:28:61:63:fb:78:06:a7:8f:df:79:
                    e5:62:a6:5e:ba:4d:5e:df:6a:6a:1b:47:07:ce:d8:
                    22:46:6f:b1:76:fd:06:23:da:18:45:9e:6e:69:7b:
                    35:08:8e:06:14:d8:08:bc:34:40:fe:25:f6:09:59:
                    38:ac:8b:35:0b:4d:ef:b9:12:db:2d:ae:ae:02:26:
                    85:36:4c:a6:db:69:cb:9c:c0:b8:b7:51:d9:78:15:
                    d2:ba:45:1d:7f:56:8c:1d:7f:26:6b:85:fc:6f:6e:
                    00:3f:1d:a4:8a:85:d2:40:79:04:7f:07:c4:7a:37:
                    19:ba:6a:f4:8e:a7:78:98:a6:88:56:c8:fa:02:36:
                    a8:b5:b3:e5:b5:7f:5e:4b:f8:c9:7f:6c:0c:5b:2f:
                    a4:82:68:9a:37:d5:0e:36:7f:a2:b7:bf:3c:b1:d5:
                    61:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:B7:7D:B8:DD:7E:B8:A1:6E:D1:B6:C7:BD:AD:24:A9:40:82:0C:15
            X509v3 Authority Key Identifier:
                keyid:34:ED:A2:54:1C:FC:CF:68:2E:29:DD:AE:63:1E:DC:8D:1E:7B:6F:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NO2iVBz8z2guKd2uYx7cjR57b2A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/c7244e-b103-43b1-912f-aa632ddb7615/1/NO2iVBz8z2guKd2uYx7cjR57b2A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:50:62:07:bb:47:ba:fa:70:45:5d:e8:cf:98:11:66:42:a6:
         f5:c6:71:e4:74:bf:f5:2e:b6:0f:d0:ed:68:12:ef:26:25:be:
         07:a2:4f:48:fe:5e:f2:2b:11:f7:97:ad:5c:f2:0d:e2:58:02:
         c5:d9:85:05:59:54:2e:ad:0c:a7:bf:bd:d7:44:02:29:29:48:
         33:c6:19:ab:1e:15:05:aa:12:2e:55:64:f6:f4:57:86:d6:6c:
         7b:c6:a6:41:26:0f:03:67:74:cc:a7:80:76:60:9e:74:b6:63:
         31:03:82:61:8b:3a:81:1d:53:25:c9:aa:5c:20:b2:33:61:93:
         c7:cb:1a:6a:ed:fb:db:d3:63:cf:e6:8f:87:3b:cf:1a:1b:fc:
         46:24:a8:dc:f7:49:64:e7:fd:3a:28:05:0a:f1:41:a8:20:96:
         b3:54:64:42:76:1d:a5:37:14:e5:9d:eb:56:5b:60:18:ee:25:
         e3:55:a0:05:78:6a:de:49:39:ad:b5:2a:e5:1d:18:22:86:90:
         be:a5:ec:6d:23:59:64:c3:45:85:b4:13:f8:40:a0:49:df:a9:
         75:f6:0c:9d:c4:e8:85:3b:5b:cc:fe:66:4d:82:4d:fb:26:e5:
         db:c6:1d:33:35:5a:5d:a4:5b:e0:20:cd:1c:86:60:05:b4:56:
         f5:a1:cd:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----