Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft
File:                     sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft (raw, json)
Hash identifier:          Us1VUDGQ/apjd65aL3Tt7eboYtjFt4fOJ76Kk88F+l8=
Subject key identifier:   65:1D:EB:C1:92:D3:68:55:DC:79:A0:B8:DF:99:35:5D:02:9E:2E:3F
Authority key identifier: B0:7F:DF:43:7C:6F:5B:C7:3C:7D:CD:55:CE:58:CD:92:E4:9D:60:2E
Certificate issuer:       /CN=b07fdf437c6f5bc73c7dcd55ce58cd92e49d602e
Certificate serial:       0198D4A82ECA18DCDE8CB2C88681997F87ED
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sH_fQ3xvW8c8fc1VzljNkuSdYC4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft
Manifest number:          1645
Signing time:             Sat 23 Aug 2025 02:00:48 +0000
Manifest this update:     Sat 23 Aug 2025 02:00:48 +0000
Manifest next update:     Sun 24 Aug 2025 02:00:48 +0000
Files and hashes:         1: sH_fQ3xvW8c8fc1VzljNkuSdYC4.crl (hash: it/WIHLRRiqx+BLq0S10FNAV9edKFiTJe9Y5NHcJMKU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sH_fQ3xvW8c8fc1VzljNkuSdYC4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 02:00:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:a8:2e:ca:18:dc:de:8c:b2:c8:86:81:99:7f:87:ed
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b07fdf437c6f5bc73c7dcd55ce58cd92e49d602e
        Validity
            Not Before: Aug 23 02:00:48 2025 GMT
            Not After : Aug 24 02:00:48 2025 GMT
        Subject: CN=651debc192d36855dc79a0b8df99355d029e2e3f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:6d:fe:78:ff:1c:b3:24:c5:f3:9b:bc:f9:13:
                    9b:97:a0:d5:c9:90:c3:7e:63:57:bb:a1:a4:c4:8f:
                    c2:e9:7b:58:3a:6e:69:57:e6:03:b6:2a:df:0e:a7:
                    11:5b:38:f3:30:48:ec:df:31:93:ae:98:5a:de:d2:
                    fc:2c:f6:55:8e:ee:2c:9f:ad:88:69:92:e1:f9:2b:
                    7b:95:87:0a:3d:c9:60:b9:61:a4:fb:42:9e:7a:3d:
                    1b:7d:15:fc:75:f5:bd:07:32:6e:f8:cb:a4:bb:af:
                    c1:ee:5f:54:a4:2f:5a:a1:92:85:be:88:a0:17:32:
                    f6:b9:b0:06:d4:30:82:7b:22:b4:aa:24:48:17:5b:
                    58:3c:08:94:74:e7:32:3c:9f:de:87:3d:6a:6a:f6:
                    b6:10:31:f4:0c:2a:43:27:35:84:a7:f1:11:5d:f4:
                    45:77:ad:78:8f:12:45:fd:26:43:65:ae:eb:54:c5:
                    d1:c7:54:1a:e0:c3:b8:bd:e9:54:f3:b6:07:9c:ab:
                    dd:9d:c8:37:16:d2:49:91:c7:20:05:bf:0a:43:bd:
                    69:3c:51:d5:3e:6f:20:62:c7:63:f7:cc:7d:27:eb:
                    0c:1c:45:8e:1a:7b:a2:17:e5:6a:21:73:23:2d:77:
                    c2:43:05:56:09:a8:92:09:9a:5f:a6:f2:b9:17:6a:
                    f1:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                65:1D:EB:C1:92:D3:68:55:DC:79:A0:B8:DF:99:35:5D:02:9E:2E:3F
            X509v3 Authority Key Identifier:
                keyid:B0:7F:DF:43:7C:6F:5B:C7:3C:7D:CD:55:CE:58:CD:92:E4:9D:60:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sH_fQ3xvW8c8fc1VzljNkuSdYC4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bb0a42-6a19-4577-99d2-a78b97eea5c1/1/sH_fQ3xvW8c8fc1VzljNkuSdYC4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:a4:e8:f9:8c:ec:04:73:09:e4:a2:9a:dc:89:db:59:19:18:
         b4:86:c0:1a:f4:e9:4b:65:b4:66:d9:41:83:0a:9b:e1:4d:5d:
         32:99:58:7d:d7:6e:3e:ae:4c:01:b2:88:82:86:59:37:83:7d:
         4f:33:24:a1:44:fa:1a:b5:8c:87:8d:5e:37:b6:0b:f8:1b:85:
         c7:36:29:c3:0d:b1:3a:da:08:27:25:f8:b1:a7:ff:41:50:a6:
         27:28:94:14:e0:0a:34:fa:0b:5d:f6:92:1a:f5:9a:b4:c8:fb:
         b1:60:94:73:59:b3:29:a1:a4:06:31:2f:cb:8b:4f:48:5f:9a:
         f6:06:cc:eb:96:34:94:0e:70:e9:a8:7c:5f:2f:49:7d:2a:3a:
         5f:97:99:4c:3a:9c:56:1c:8e:2a:f4:4f:31:da:51:eb:56:69:
         86:e6:cc:2d:23:82:a5:a6:54:b4:ca:9c:f2:3c:4c:22:1b:24:
         a8:5d:69:6a:f7:d0:82:b3:26:e9:73:53:54:23:f4:3d:fe:31:
         d6:95:75:f8:f9:41:d7:b5:37:0c:1a:65:aa:1c:c1:a6:7c:68:
         57:6b:3d:bb:ec:4d:ce:37:f8:ce:74:7a:cd:26:93:cc:fe:af:
         c6:09:6c:2d:a4:79:9b:c1:da:e2:aa:91:58:c5:e2:d0:83:3b:
         ba:32:d1:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----