Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft
File:                     urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft (raw, json)
Hash identifier:          hP+VO7Smx+uPrOInFjv+If5J4ANBMxWs55DmuMhUw3k=
Subject key identifier:   DA:01:46:E4:EC:EA:BD:F1:FB:4E:61:01:7B:91:86:F8:ED:2B:63:D1
Authority key identifier: BA:B9:BB:C2:4E:9A:C3:D9:EC:7E:10:BF:95:74:7D:AB:5C:45:DD:2B
Certificate issuer:       /CN=bab9bbc24e9ac3d9ec7e10bf95747dab5c45dd2b
Certificate serial:       0198D4736CEBDF85B7C3C9D0EFD332872B8B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/urm7wk6aw9nsfhC_lXR9q1xF3Ss.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft
Manifest number:          0B66
Signing time:             Sat 23 Aug 2025 01:03:10 +0000
Manifest this update:     Sat 23 Aug 2025 01:03:10 +0000
Manifest next update:     Sun 24 Aug 2025 01:03:10 +0000
Files and hashes:         1: urm7wk6aw9nsfhC_lXR9q1xF3Ss.crl (hash: YT4GydaegwNw/lKci+dv0ca3OUkMOJfj9agsH6g/ZCc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/urm7wk6aw9nsfhC_lXR9q1xF3Ss.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:73:6c:eb:df:85:b7:c3:c9:d0:ef:d3:32:87:2b:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bab9bbc24e9ac3d9ec7e10bf95747dab5c45dd2b
        Validity
            Not Before: Aug 23 01:03:10 2025 GMT
            Not After : Aug 24 01:03:10 2025 GMT
        Subject: CN=da0146e4eceabdf1fb4e61017b9186f8ed2b63d1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:01:ae:81:c0:42:5b:f2:87:a3:21:c6:bf:3d:
                    c0:f1:b1:cf:6d:11:a3:b8:aa:38:1c:eb:94:a6:6e:
                    ba:9e:46:d1:ac:c8:cd:c6:29:a2:d1:f2:88:75:e2:
                    2b:b1:df:54:1e:57:a7:5f:a2:d6:bc:6b:66:cf:f6:
                    b4:46:d8:74:1a:91:7a:0c:4a:51:09:2d:17:8f:8f:
                    35:d8:b0:fa:6c:da:9d:17:b8:cc:c2:d7:e0:2c:29:
                    55:bd:84:a0:46:a1:2e:22:a6:26:f6:16:47:5c:52:
                    55:b3:e0:02:3e:33:7c:de:49:63:34:e6:f6:2d:cb:
                    ae:db:84:41:57:d7:c7:c5:45:29:29:38:72:55:c9:
                    3f:f8:83:29:af:07:ac:f4:f8:06:f1:48:51:8b:33:
                    53:22:5a:8d:f9:a3:e3:33:d1:09:20:b7:3a:e3:e5:
                    f3:c9:08:e2:e1:2c:5f:df:af:0f:73:36:73:a3:4b:
                    88:4d:4c:cc:23:71:74:8f:11:d2:81:f9:0c:05:44:
                    da:c6:f4:25:5f:f0:1a:f3:7e:1a:51:3f:87:2f:65:
                    c7:4d:0c:c9:15:6e:26:02:50:d7:eb:b5:18:c2:cf:
                    21:a9:55:13:80:17:ca:9f:a6:dd:8e:92:70:76:50:
                    18:13:87:ae:ff:ba:2e:72:fb:52:46:69:8d:1f:d7:
                    4d:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:01:46:E4:EC:EA:BD:F1:FB:4E:61:01:7B:91:86:F8:ED:2B:63:D1
            X509v3 Authority Key Identifier:
                keyid:BA:B9:BB:C2:4E:9A:C3:D9:EC:7E:10:BF:95:74:7D:AB:5C:45:DD:2B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/urm7wk6aw9nsfhC_lXR9q1xF3Ss.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:d7:b0:5a:db:4b:02:35:7c:57:26:b1:78:b7:e3:f4:51:c1:
         a9:c6:45:47:9c:9e:7a:5c:ba:23:4a:06:aa:1f:b8:49:92:21:
         2b:37:84:8d:61:6f:22:60:1b:07:c3:da:ea:21:3e:28:96:f7:
         77:b3:85:0c:84:17:fe:7b:b0:46:c0:e8:db:dd:00:76:01:40:
         70:92:b2:38:10:b4:b0:1b:43:03:0d:14:db:15:e8:eb:7b:6c:
         d2:1f:52:32:c9:c2:8f:25:c9:c1:89:9b:56:18:94:3c:13:c7:
         37:b5:a0:5b:2f:95:f5:a4:0d:6f:9b:09:58:c7:93:51:79:42:
         d7:18:fa:50:90:7f:a8:3a:f7:c2:65:3c:38:63:a8:9c:f4:3a:
         6b:95:49:9e:34:5e:b1:ed:a7:15:07:99:b6:97:b8:bc:5e:60:
         df:bf:96:e7:63:e1:67:c3:5a:5e:da:b9:00:31:68:84:7f:4c:
         f2:9b:fa:4a:a1:04:ec:14:be:dc:95:50:4a:4f:75:0c:f9:4d:
         bc:fa:61:f1:f0:f9:83:c8:f7:cc:48:2d:4d:1c:df:9a:14:28:
         94:f4:06:8b:24:c5:ca:a6:94:ab:52:26:c3:38:1a:33:20:8d:
         69:47:ee:0a:8c:b3:e3:c1:53:db:29:6d:99:01:06:d9:81:18:
         f4:98:ff:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----