Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/30ba36-834e-4c04-a702-72ec3086f0e8/1/SPEmUDG2es3hHypnONAjRpnRgBc.mft
File:                     SPEmUDG2es3hHypnONAjRpnRgBc.mft (raw, json)
Hash identifier:          J0tFFqaT3meeXk6zSVQnEwXGttBVJ+wnTHRwYmo9+R4=
Subject key identifier:   A0:A1:C9:22:4C:63:5A:8F:BE:3D:D7:A2:D1:62:48:F3:E5:75:A3:9E
Authority key identifier: 48:F1:26:50:31:B6:7A:CD:E1:1F:2A:67:38:D0:23:46:99:D1:80:17
Certificate issuer:       /CN=48f1265031b67acde11f2a6738d0234699d18017
Certificate serial:       0198D6601489368F988BA6AB1CEB061F7A29
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/SPEmUDG2es3hHypnONAjRpnRgBc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/30ba36-834e-4c04-a702-72ec3086f0e8/1/SPEmUDG2es3hHypnONAjRpnRgBc.mft
Manifest number:          61
Signing time:             Sat 23 Aug 2025 10:01:17 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:17 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:17 +0000
Files and hashes:         1: SPEmUDG2es3hHypnONAjRpnRgBc.crl (hash: qR0FTWhPc29B5LTX2mGkzYVLourP15JoPvyX5FNjg0g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/30ba36-834e-4c04-a702-72ec3086f0e8/1/SPEmUDG2es3hHypnONAjRpnRgBc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/30ba36-834e-4c04-a702-72ec3086f0e8/1/SPEmUDG2es3hHypnONAjRpnRgBc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/SPEmUDG2es3hHypnONAjRpnRgBc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:14:89:36:8f:98:8b:a6:ab:1c:eb:06:1f:7a:29
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=48f1265031b67acde11f2a6738d0234699d18017
        Validity
            Not Before: Aug 23 10:01:17 2025 GMT
            Not After : Aug 24 10:01:17 2025 GMT
        Subject: CN=a0a1c9224c635a8fbe3dd7a2d16248f3e575a39e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:76:c4:fb:59:a6:5c:1d:6c:34:92:8c:79:e9:
                    36:e8:0d:cb:be:35:83:39:5e:d4:2b:0a:e5:ad:57:
                    fe:fc:fc:fc:12:cc:8f:d9:81:95:df:4b:7a:5b:85:
                    60:2d:15:12:be:7d:67:9b:26:f4:68:0e:40:91:a6:
                    08:bc:16:12:91:6c:c2:20:15:f9:83:b7:86:53:06:
                    be:1f:95:f4:4c:08:e5:ee:f8:ef:92:4f:fa:b6:93:
                    1f:d0:c6:d0:03:00:3d:3c:dc:4b:1a:e9:f7:a2:b2:
                    d3:30:65:49:d1:4b:65:37:b4:52:ed:38:64:d7:8b:
                    ec:34:fe:c0:93:3d:31:36:71:13:c5:19:db:eb:4c:
                    52:ef:45:21:8d:70:9c:21:a3:45:a9:b4:3f:b9:08:
                    c9:c5:84:d6:eb:f2:49:5b:c2:88:9c:a2:21:76:02:
                    d9:18:61:1d:07:40:36:e2:33:69:2a:08:bd:3b:1f:
                    58:48:e9:b0:cb:4c:fe:9c:ea:a5:8c:fc:3c:8a:f2:
                    d2:32:e1:2c:c7:b3:7a:8e:27:47:a1:46:13:dc:ba:
                    cb:ac:ef:44:18:0c:b7:5e:85:f2:82:81:cc:30:b0:
                    85:1d:14:aa:d1:95:d4:15:66:87:57:26:0f:52:06:
                    4c:bb:a3:4a:95:6c:d0:2c:53:14:ec:9c:f5:06:9c:
                    b7:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:A1:C9:22:4C:63:5A:8F:BE:3D:D7:A2:D1:62:48:F3:E5:75:A3:9E
            X509v3 Authority Key Identifier:
                keyid:48:F1:26:50:31:B6:7A:CD:E1:1F:2A:67:38:D0:23:46:99:D1:80:17

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SPEmUDG2es3hHypnONAjRpnRgBc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/30ba36-834e-4c04-a702-72ec3086f0e8/1/SPEmUDG2es3hHypnONAjRpnRgBc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/30ba36-834e-4c04-a702-72ec3086f0e8/1/SPEmUDG2es3hHypnONAjRpnRgBc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:46:a3:6c:45:69:b9:7b:37:e8:c2:db:42:9f:f3:80:cf:13:
         92:bd:49:7e:6c:0e:c6:44:16:b3:a2:1d:64:05:f1:cf:45:bb:
         f0:fa:6d:ed:b0:35:8b:87:6d:e5:cc:6f:fe:14:a9:d4:e5:f9:
         d7:41:d3:4a:78:e1:30:51:d5:5e:a5:f5:79:c9:e9:31:19:25:
         8f:3b:a4:5c:ed:6e:21:5b:84:01:b9:d5:1f:6f:1a:41:3b:d9:
         45:70:1e:c9:0f:d1:9e:fd:9e:b3:87:41:ca:8c:10:7a:30:93:
         d0:b5:4f:47:a6:37:cc:be:a1:6e:d3:62:20:5e:e2:57:42:4c:
         e1:92:9f:e3:cf:4e:92:83:ab:67:cc:cd:66:b9:93:af:d0:69:
         be:53:82:8d:40:82:af:aa:73:bc:11:04:65:36:fb:68:ce:e2:
         28:56:7f:5f:8a:13:5c:0c:b9:d4:62:27:d1:5b:a3:73:cd:f1:
         cb:6e:58:22:3c:26:95:b3:db:d0:70:b3:b9:21:8a:c5:fb:a8:
         26:7d:f4:30:c3:36:58:3c:41:01:56:a0:6e:b9:59:6b:84:95:
         fb:9f:f0:7d:66:a9:71:5a:9e:c9:dd:b4:19:42:94:7a:60:3e:
         7d:1a:a4:47:de:f6:a8:46:29:c9:06:23:a3:82:0b:48:82:40:
         a8:db:3f:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----