Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
File:                     goIekswnAHYZMDmOI4DCOqR1XxY.mft (raw, json)
Hash identifier:          T2JzEZ2AoDRCa4BwPU3nzdXb71d+XlpcXgJlKHHmtWo=
Subject key identifier:   55:CB:23:9F:26:5B:57:45:1E:25:D3:0D:53:62:D8:F9:E9:54:96:90
Authority key identifier: 82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16
Certificate issuer:       /CN=82821e92cc2700761930398e2380c23aa4755f16
Certificate serial:       0198D66135D4D339F83B9ECEE1BDCECD368C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
Manifest number:          06FF
Signing time:             Sat 23 Aug 2025 10:02:31 +0000
Manifest this update:     Sat 23 Aug 2025 10:02:31 +0000
Manifest next update:     Sun 24 Aug 2025 10:02:31 +0000
Files and hashes:         1: goIekswnAHYZMDmOI4DCOqR1XxY.crl (hash: KS4NMNjpHO9fCnhvnsh1LFseAfChZA+EL47TFvePdRU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:02:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:61:35:d4:d3:39:f8:3b:9e:ce:e1:bd:ce:cd:36:8c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=82821e92cc2700761930398e2380c23aa4755f16
        Validity
            Not Before: Aug 23 10:02:31 2025 GMT
            Not After : Aug 24 10:02:31 2025 GMT
        Subject: CN=55cb239f265b57451e25d30d5362d8f9e9549690
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:85:1e:eb:cf:78:2f:8a:45:75:24:ac:2a:11:
                    c1:6a:fb:db:1f:1a:f4:46:e3:e6:4c:0d:64:c4:0d:
                    94:cf:21:bf:1f:45:0a:c8:c0:ed:bd:ce:3e:0d:b9:
                    76:5e:fb:bb:3f:4b:2c:20:b6:49:19:c5:02:59:56:
                    9c:88:e6:69:5a:7a:7f:5f:48:ce:16:d7:76:7a:88:
                    dc:e5:10:73:f2:93:72:6a:e4:92:ca:b9:42:70:ab:
                    7f:98:df:96:1f:9b:e6:4a:a3:76:46:39:9a:a4:d1:
                    de:30:a0:65:ef:33:58:25:ca:8a:c6:a7:cd:a2:ca:
                    4d:63:13:a3:9a:eb:c3:f0:16:32:44:92:00:16:04:
                    91:de:af:0d:6f:4b:a9:7c:f0:f4:2e:82:2d:21:43:
                    23:65:71:c1:1e:96:53:d5:47:54:4c:de:79:16:c4:
                    64:0d:e7:0d:cf:2c:bc:50:76:9e:a4:8d:a2:7a:a7:
                    12:b6:bb:9b:3f:ea:e3:ab:9c:f7:8e:34:d8:9c:81:
                    20:a2:9e:d4:09:9d:fa:11:ee:a2:af:c1:77:f8:c7:
                    84:c1:0a:d6:95:2a:e7:7f:d5:74:17:33:f1:e8:fe:
                    57:18:16:53:15:07:40:26:36:33:4c:0a:f4:5e:2e:
                    35:4e:a6:32:43:5b:01:42:22:39:5a:c9:b2:41:4e:
                    d9:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:CB:23:9F:26:5B:57:45:1E:25:D3:0D:53:62:D8:F9:E9:54:96:90
            X509v3 Authority Key Identifier:
                keyid:82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2b:fe:cf:17:55:6f:dd:ae:f0:10:a9:55:77:f4:31:06:a0:c2:
         bf:58:2f:b6:91:79:c6:2e:9c:d8:00:ba:fe:32:5c:1f:75:bb:
         2e:9c:eb:40:93:12:79:8e:c0:f0:c9:cc:bb:7b:01:21:3c:bc:
         c8:cb:13:57:3e:27:12:ff:f4:48:47:38:27:2b:92:8e:62:51:
         2d:5f:c3:b3:31:2b:e5:27:32:a6:b0:f8:09:fb:af:1e:f8:12:
         00:1b:f4:b4:2b:61:59:bb:d4:ef:6b:d5:de:e3:67:f6:0c:af:
         c3:e2:75:a1:81:ba:b2:72:12:83:19:d3:7b:d0:10:a5:1c:1a:
         7b:3b:e6:2c:49:d2:4e:f9:fa:84:59:f8:74:88:40:36:64:1d:
         23:31:1c:29:10:00:e5:b3:a5:c2:02:a7:35:c1:67:08:be:67:
         09:eb:eb:bc:5b:53:e5:fa:4a:8f:13:f1:94:91:3c:7b:7e:b0:
         32:8d:44:0c:35:1b:ce:1a:98:1c:45:5c:8a:a9:b0:c5:de:f2:
         e1:7a:15:95:2b:0e:97:fc:78:75:29:14:15:8f:a9:10:6d:b8:
         28:b8:f7:78:38:f1:3d:a6:b5:62:2b:c6:37:9c:23:a6:8c:0b:
         5d:9b:96:02:35:d2:3f:43:22:7b:94:4a:24:30:49:67:73:7e:
         a8:c0:dc:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----