Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft
File:                     mXFUBuche_wTgSpHBMYq4JnnyP8.mft (raw, json)
Hash identifier:          z7zFwD976NcKv7MxiZ/96zAeO+jq4DtteyCcOygdKLY=
Subject key identifier:   53:66:DD:15:11:20:55:08:5B:6C:79:7A:9D:9A:C1:E9:1B:63:C4:65
Authority key identifier: 99:71:54:06:E7:21:7B:FC:13:81:2A:47:04:C6:2A:E0:99:E7:C8:FF
Certificate issuer:       /CN=99715406e7217bfc13812a4704c62ae099e7c8ff
Certificate serial:       0198D5BC31DF81C85493912500AEA8FDED08
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft
Manifest number:          0367
Signing time:             Sat 23 Aug 2025 07:02:17 +0000
Manifest this update:     Sat 23 Aug 2025 07:02:17 +0000
Manifest next update:     Sun 24 Aug 2025 07:02:17 +0000
Files and hashes:         1: mXFUBuche_wTgSpHBMYq4JnnyP8.crl (hash: wBdkEnZ0GhQhlp3FT2csZd5GYU2QfPQ+bWiyE1ulyLU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:bc:31:df:81:c8:54:93:91:25:00:ae:a8:fd:ed:08
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=99715406e7217bfc13812a4704c62ae099e7c8ff
        Validity
            Not Before: Aug 23 07:02:17 2025 GMT
            Not After : Aug 24 07:02:17 2025 GMT
        Subject: CN=5366dd15112055085b6c797a9d9ac1e91b63c465
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:ed:46:97:6c:d6:14:95:e8:59:f7:50:2a:59:
                    ef:51:23:f3:36:f3:19:a1:67:76:04:d9:a1:cd:b9:
                    63:62:b8:de:c7:b4:5b:a3:fd:a3:30:55:c2:c2:bf:
                    16:15:25:7d:c2:ba:14:c3:de:f5:f3:61:d2:6a:81:
                    7e:ab:fe:56:34:01:f8:cc:ed:b0:dd:c9:a0:32:23:
                    ea:68:37:87:cf:64:01:af:3a:81:d7:93:97:d2:c4:
                    c7:4b:77:be:79:d1:da:fb:c7:30:65:4d:28:17:f5:
                    07:25:ed:5e:04:af:97:b1:38:f2:09:dd:d8:1f:26:
                    53:f2:b8:4f:61:d1:86:8a:9f:bc:d6:51:37:84:ff:
                    44:16:1a:fa:36:b1:91:00:05:65:6a:41:71:5f:e6:
                    ef:9d:b8:29:ad:8e:f8:2f:2a:73:83:6f:2c:50:e9:
                    e2:08:3d:46:8f:3c:b3:2d:ec:ca:87:5c:4f:87:50:
                    9a:89:9f:56:eb:6f:48:19:22:8a:65:b7:d7:2f:c3:
                    18:0b:24:b1:0a:72:fa:ca:d1:d8:8d:fb:35:fd:5e:
                    89:f0:57:e9:c6:31:91:5b:dd:9e:cb:4b:d2:62:84:
                    46:d1:90:37:ee:6f:df:61:7f:27:9e:7a:38:09:86:
                    2f:b5:84:96:d5:3e:d7:96:25:d5:62:ed:c6:13:e7:
                    e8:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:66:DD:15:11:20:55:08:5B:6C:79:7A:9D:9A:C1:E9:1B:63:C4:65
            X509v3 Authority Key Identifier:
                keyid:99:71:54:06:E7:21:7B:FC:13:81:2A:47:04:C6:2A:E0:99:E7:C8:FF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:2c:5e:ad:9b:cf:56:ce:a4:96:40:3e:20:df:fd:4d:3c:90:
         5d:c5:af:6f:82:7a:cf:0e:20:38:50:6f:a6:61:27:a2:0b:ea:
         7c:96:a1:b0:59:d9:5c:b1:34:5f:93:78:51:1e:b1:4f:3a:4b:
         db:7e:9f:db:ae:8f:5d:15:e3:54:86:4b:29:5c:4f:11:34:20:
         2b:74:6a:f8:5f:34:ec:1d:ae:84:1f:7d:6e:16:19:b7:6d:73:
         a7:5d:f9:0b:f0:32:1c:b6:81:9f:3f:3a:24:80:76:58:e9:0f:
         2c:89:20:8b:be:df:5e:b4:b0:0d:09:0e:9b:84:a5:54:11:0d:
         e7:ab:e9:ba:8f:ff:79:99:ae:d5:9e:a6:23:90:70:37:94:56:
         10:79:58:ce:84:d9:b6:2b:3e:0d:51:d1:00:59:3c:b6:33:64:
         ab:fb:5c:2e:d9:02:b5:c8:56:bf:8c:eb:f4:20:85:f8:82:0d:
         1f:88:96:c5:a0:39:ac:f7:79:93:33:a0:a9:fa:8c:a0:dc:25:
         e6:91:5d:7c:8b:d5:41:96:b9:e4:98:93:38:7b:fd:f8:a3:e1:
         e4:21:b5:93:df:b4:f8:40:1e:1d:0e:2f:48:c7:c0:4b:06:c8:
         44:50:c4:22:0a:d2:65:2b:21:4d:24:52:f3:76:e8:e9:a8:60:
         61:7a:05:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----