Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
File:                     FLklHG89i7aaegPOrN0q58LIzjc.mft (raw, json)
Hash identifier:          QVDUiWj8+5RM/6/JyBhI9VYiW0N+fNzADBhcvxQmLps=
Subject key identifier:   8B:03:EA:A4:22:DD:28:F9:6D:AB:9A:0C:26:F8:0B:1C:D3:B0:F3:38
Authority key identifier: 14:B9:25:1C:6F:3D:8B:B6:9A:7A:03:CE:AC:DD:2A:E7:C2:C8:CE:37
Certificate issuer:       /CN=14b9251c6f3d8bb69a7a03ceacdd2ae7c2c8ce37
Certificate serial:       01976929BBB7C6DFEA2434E560073BA5CDF6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
Manifest number:          F7
Signing time:             Fri 13 Jun 2025 12:00:32 +0000
Manifest this update:     Fri 13 Jun 2025 12:00:32 +0000
Manifest next update:     Sat 14 Jun 2025 12:00:32 +0000
Files and hashes:         1: FLklHG89i7aaegPOrN0q58LIzjc.crl (hash: Tu1La6rKmeblP39lgcRfKLn+XRUabS0h0Q34ewYSGf4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 12:00:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:29:bb:b7:c6:df:ea:24:34:e5:60:07:3b:a5:cd:f6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14b9251c6f3d8bb69a7a03ceacdd2ae7c2c8ce37
        Validity
            Not Before: Jun 13 12:00:32 2025 GMT
            Not After : Jun 14 12:00:32 2025 GMT
        Subject: CN=8b03eaa422dd28f96dab9a0c26f80b1cd3b0f338
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:01:62:9e:0d:04:82:03:e3:0a:b8:2e:9d:1d:
                    a6:ac:83:22:c7:56:ee:ac:73:e6:bc:1e:c5:12:09:
                    d7:a4:ed:15:5e:24:59:68:47:a8:fb:96:85:e9:7d:
                    b5:4e:8b:cf:1c:79:07:9e:af:4f:65:e9:d3:d7:18:
                    e8:84:56:5a:7f:f6:93:38:4b:96:5c:43:8b:73:ee:
                    e8:95:4c:c6:f4:78:e7:5d:d9:a4:a9:de:2b:5e:8a:
                    5c:88:78:37:88:27:a3:68:ec:34:10:fa:6c:d3:ab:
                    70:18:f3:7a:f2:14:40:98:48:02:fe:e7:a9:a4:d6:
                    ad:dc:41:13:01:0e:81:7d:18:af:19:43:64:5c:38:
                    7e:37:cc:ad:be:4c:86:98:73:33:ed:4a:7d:5d:df:
                    94:28:55:b4:a3:ee:db:de:58:1d:e2:64:3f:d6:95:
                    42:55:de:56:b5:af:61:a3:ad:46:9f:60:58:b9:97:
                    8b:16:64:d1:42:18:45:67:bf:f1:24:c2:5b:34:0e:
                    01:d1:66:17:a3:8f:a4:75:6c:b5:01:b0:fa:89:a0:
                    ef:39:1e:fb:83:c4:44:1c:63:2b:59:40:65:e9:a4:
                    6d:1f:c5:95:a8:b9:50:13:ad:40:f7:7c:5d:dc:01:
                    3e:aa:87:ae:93:12:1b:96:6c:44:f8:1d:f2:a5:e5:
                    ac:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8B:03:EA:A4:22:DD:28:F9:6D:AB:9A:0C:26:F8:0B:1C:D3:B0:F3:38
            X509v3 Authority Key Identifier:
                keyid:14:B9:25:1C:6F:3D:8B:B6:9A:7A:03:CE:AC:DD:2A:E7:C2:C8:CE:37

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLklHG89i7aaegPOrN0q58LIzjc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b30d66-8fb0-4e9d-98ec-c2d8a59b00d3/1/FLklHG89i7aaegPOrN0q58LIzjc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:2d:58:b7:8c:b2:40:3f:e9:5a:5f:f6:1d:dc:46:e7:23:4b:
         20:2d:a3:16:63:93:c4:9a:88:8d:5a:75:77:67:d0:28:52:f5:
         80:5f:ce:7c:d8:58:4b:89:01:ed:44:b2:3c:17:09:87:c7:db:
         36:0c:72:e5:17:8c:3f:ab:c5:05:7a:27:d4:84:7f:79:bf:3c:
         ef:a6:8b:4d:23:ee:5d:60:ca:4a:74:4e:3c:ad:db:6b:e5:2d:
         ed:1d:96:62:b0:53:75:0a:84:fd:79:5f:d8:c7:a5:7a:b2:c4:
         0e:0b:81:ed:d8:97:b9:fe:b3:55:29:e6:f5:77:4f:eb:99:74:
         d4:d1:3b:ae:84:f8:0b:2e:26:ff:d4:37:81:72:e5:a1:32:84:
         07:84:7e:1a:1e:66:10:58:1d:d3:c0:4a:ad:d0:75:73:d1:29:
         ad:e1:e2:60:d0:a2:eb:e0:9c:38:d3:dd:35:92:73:7c:d5:c4:
         44:e3:43:a1:44:fc:da:84:db:1c:97:26:44:ad:9c:c8:c2:71:
         79:83:92:82:09:e7:94:73:87:6d:7a:21:5e:7d:5f:02:e5:13:
         be:ff:e2:a8:14:54:07:ea:1a:db:fe:9f:39:7f:d2:a4:4a:00:
         c5:7a:ef:0b:c6:d5:be:54:f6:4d:74:3c:ca:5d:06:95:db:99:
         c3:f8:43:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----