Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
File:                     H0qus-K3pD3wHzHVGiDvIlXOr-M.mft (raw, json)
Hash identifier:          QE+qaWRXKmAtwEDYl8DrCiMioGPtfD1wWtRe3kJdUF0=
Subject key identifier:   0C:05:DC:25:DE:84:D9:2B:98:B4:1F:C4:22:9A:48:52:68:80:92:14
Authority key identifier: 1F:4A:AE:B3:E2:B7:A4:3D:F0:1F:31:D5:1A:20:EF:22:55:CE:AF:E3
Certificate issuer:       /CN=1f4aaeb3e2b7a43df01f31d51a20ef2255ceafe3
Certificate serial:       0198D660D1BD062F5D3994177AE28D9540D4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/H0qus-K3pD3wHzHVGiDvIlXOr-M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
Manifest number:          04EB
Signing time:             Sat 23 Aug 2025 10:02:05 +0000
Manifest this update:     Sat 23 Aug 2025 10:02:05 +0000
Manifest next update:     Sun 24 Aug 2025 10:02:05 +0000
Files and hashes:         1: H0qus-K3pD3wHzHVGiDvIlXOr-M.crl (hash: IBdilXHUZFw49hUuOUUlIoAqTNDiyWMkdHhdwQF7bA0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/H0qus-K3pD3wHzHVGiDvIlXOr-M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:d1:bd:06:2f:5d:39:94:17:7a:e2:8d:95:40:d4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1f4aaeb3e2b7a43df01f31d51a20ef2255ceafe3
        Validity
            Not Before: Aug 23 10:02:05 2025 GMT
            Not After : Aug 24 10:02:05 2025 GMT
        Subject: CN=0c05dc25de84d92b98b41fc4229a485268809214
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:a6:66:a1:38:5d:be:25:88:40:c0:61:df:93:
                    08:75:1a:be:fe:ab:5d:2d:dd:5d:b6:4b:75:61:97:
                    11:57:4f:3c:c3:23:01:bb:d3:90:33:50:08:65:e9:
                    ad:ae:7c:92:67:2b:60:63:f8:29:26:2c:fa:69:16:
                    12:5e:0e:87:00:57:db:53:ec:ca:f9:af:07:c1:9b:
                    b4:91:26:b4:bf:20:6f:79:8a:ee:fb:67:41:42:36:
                    c8:08:73:7f:b5:5a:9e:25:9e:f3:00:af:a4:2a:3e:
                    a8:94:c3:bb:9c:54:76:2e:f5:6e:e6:92:51:84:d4:
                    e7:5c:57:fd:42:16:b8:04:91:0d:97:72:2b:74:58:
                    db:14:80:e0:eb:f0:79:fa:9b:94:c4:7d:6f:3d:3e:
                    61:01:88:45:38:f8:19:1d:fe:5c:4d:2e:33:39:01:
                    45:d7:79:eb:ac:cf:80:9a:3b:00:a7:cb:9f:45:90:
                    29:0d:0b:7f:17:81:33:fa:79:39:d8:c9:e9:b0:1e:
                    0d:9b:75:21:1b:ce:59:62:7b:2d:be:3b:de:fe:11:
                    5c:19:5d:31:75:1a:23:f4:28:db:4a:ec:18:19:fb:
                    5f:5c:f5:32:12:41:16:b5:58:f6:a6:bf:1d:c6:ca:
                    90:ba:d9:b6:b5:5c:67:18:62:eb:ca:75:90:d5:57:
                    aa:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0C:05:DC:25:DE:84:D9:2B:98:B4:1F:C4:22:9A:48:52:68:80:92:14
            X509v3 Authority Key Identifier:
                keyid:1F:4A:AE:B3:E2:B7:A4:3D:F0:1F:31:D5:1A:20:EF:22:55:CE:AF:E3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0qus-K3pD3wHzHVGiDvIlXOr-M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/06/3f3f50-2f35-407e-b99c-e1842be412d1/1/H0qus-K3pD3wHzHVGiDvIlXOr-M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:3f:33:65:69:8e:d9:43:fc:a2:e4:3d:1c:d7:55:d6:06:1b:
         7a:91:16:ad:65:82:7f:62:38:ee:7b:a8:71:e4:19:3d:62:55:
         47:dd:bf:8b:c7:c1:a0:dd:f1:f0:ad:cc:e6:a3:73:20:f5:6b:
         05:26:1d:8e:3a:26:1a:ab:f0:8d:5c:2f:39:05:07:20:e0:2a:
         29:c6:28:a0:62:6f:e2:d0:69:71:07:40:8e:45:e9:59:6b:c5:
         f2:0a:ea:c6:af:cd:95:76:98:f7:e8:8f:ba:f2:b5:c5:0e:91:
         77:69:2e:de:e6:5d:0e:ac:72:c1:95:c2:50:93:51:60:5b:e6:
         39:2f:0f:28:4b:7c:dd:b8:b8:32:6e:d1:41:00:54:bd:95:31:
         bd:fe:30:5c:82:d3:a6:9a:c8:e2:f3:f1:10:9b:dc:39:00:49:
         45:47:b3:b5:bb:d5:d3:30:6f:6f:57:cc:75:db:08:c5:bb:10:
         af:fe:59:35:22:ae:9f:56:e3:55:10:07:26:8f:cf:86:51:88:
         54:be:c8:95:58:f3:cf:39:b6:40:fe:e8:ca:ad:c2:0c:8e:4b:
         7c:d7:3c:8b:54:18:a1:91:3a:41:1b:e1:7b:bd:6f:14:64:9e:
         89:44:bc:ab:5d:ba:03:10:90:37:fb:aa:2d:75:38:2b:f6:ea:
         e6:5d:eb:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----