Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft
File:                     N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft (raw, json)
Hash identifier:          oz5TBHk4L70DcidhglKwuZQBB3qViFHPCT4rJvh2sqc=
Subject key identifier:   11:1C:DB:95:49:BF:AF:98:FA:82:B1:67:73:EA:6F:1B:5B:2D:14:F6
Authority key identifier: 37:69:8B:4F:37:D8:08:1C:35:05:AD:A0:BA:A8:52:21:93:43:41:BE
Certificate issuer:       /CN=37698b4f37d8081c3505ada0baa85221934341be
Certificate serial:       0198D4740D48E6E3E60E6C9406C96624E9F6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/N2mLTzfYCBw1Ba2guqhSIZNDQb4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft
Manifest number:          0EA5
Signing time:             Sat 23 Aug 2025 01:03:51 +0000
Manifest this update:     Sat 23 Aug 2025 01:03:51 +0000
Manifest next update:     Sun 24 Aug 2025 01:03:51 +0000
Files and hashes:         1: N2mLTzfYCBw1Ba2guqhSIZNDQb4.crl (hash: ddVsneLvVIROP8ysZY89wdGYfXbHh77WZmzjyMsp5Kc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/N2mLTzfYCBw1Ba2guqhSIZNDQb4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:74:0d:48:e6:e3:e6:0e:6c:94:06:c9:66:24:e9:f6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=37698b4f37d8081c3505ada0baa85221934341be
        Validity
            Not Before: Aug 23 01:03:51 2025 GMT
            Not After : Aug 24 01:03:51 2025 GMT
        Subject: CN=111cdb9549bfaf98fa82b16773ea6f1b5b2d14f6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:61:1e:70:05:1e:31:5b:7d:21:df:2d:dd:6c:
                    91:f3:fc:5c:31:cd:6f:ca:0f:1a:33:67:0a:07:ed:
                    d0:c6:27:78:16:59:57:1c:dd:26:96:31:ae:f8:0a:
                    9e:36:7f:5f:de:76:71:85:d2:6f:be:51:3a:61:86:
                    ea:38:4f:1c:9a:dd:48:05:1b:0e:57:74:a5:c0:26:
                    89:d9:53:fb:6c:5e:c8:55:ff:f3:fb:4d:fe:34:5f:
                    9e:2e:7a:e8:0d:26:6c:8e:6c:54:b2:46:36:3d:33:
                    b0:05:d0:d2:8c:5a:32:9e:54:a6:28:18:91:19:ae:
                    a3:d6:ee:52:00:37:55:74:36:17:40:dd:42:48:0c:
                    8a:12:df:94:69:2e:ab:8a:1f:83:fc:44:1a:7e:60:
                    77:01:a6:c8:3a:ed:1f:6b:4c:96:12:b2:bf:71:07:
                    5f:88:f7:c7:41:82:ad:5d:63:73:23:38:d6:c8:a8:
                    a7:f5:a4:1a:e8:04:c4:20:84:75:f5:a6:a0:6a:c6:
                    4c:c7:bd:db:8c:32:e5:da:da:22:15:0d:06:2b:28:
                    7c:ed:9a:78:98:57:fa:fd:8d:fa:b7:21:3e:37:66:
                    c9:18:10:17:c0:7b:c8:18:c6:6a:c5:ee:8d:90:21:
                    ed:e5:fc:ad:cb:54:69:94:42:1e:7a:51:07:a0:4c:
                    5e:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:1C:DB:95:49:BF:AF:98:FA:82:B1:67:73:EA:6F:1B:5B:2D:14:F6
            X509v3 Authority Key Identifier:
                keyid:37:69:8B:4F:37:D8:08:1C:35:05:AD:A0:BA:A8:52:21:93:43:41:BE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N2mLTzfYCBw1Ba2guqhSIZNDQb4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/10bf3d-4eb5-4a13-83b7-2bb81d99d5f1/1/N2mLTzfYCBw1Ba2guqhSIZNDQb4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a3:ad:bf:24:51:5c:42:81:9d:98:ea:cb:13:d7:96:23:c0:13:
         e1:c5:cc:8a:c4:34:40:49:12:93:c5:1c:1c:85:99:4a:40:22:
         5d:05:36:2d:ac:a2:f4:d4:2e:2e:a6:a6:81:10:2c:f7:45:a9:
         f1:10:27:66:13:d2:ea:0a:a7:11:ee:30:fa:2c:1d:4e:af:a0:
         f9:e6:7e:8c:13:7f:7b:7d:ba:02:1c:fb:62:56:33:95:47:5a:
         e4:a1:f6:27:7b:7f:70:e6:0d:a2:87:8a:ec:f2:21:a9:38:3f:
         94:c8:d1:e9:ba:a5:d5:4d:99:6a:a4:38:5b:7b:0f:b4:e3:6c:
         61:ad:5b:f7:f2:2e:0b:8c:c0:b9:ea:1a:5e:41:1e:95:96:23:
         6e:54:c5:1b:45:4a:8a:70:79:d5:b8:9e:67:c5:af:87:55:38:
         be:38:08:6b:62:7f:b4:ed:71:15:ed:1a:aa:bc:2d:5f:b4:c8:
         0e:88:3b:85:58:48:8c:a2:e9:b0:b5:5e:8f:a9:96:5c:73:44:
         6f:b0:be:c4:a5:1b:24:cd:47:02:9f:3f:49:77:fb:70:e2:c2:
         16:60:b3:64:19:19:4c:5a:60:51:fc:8e:3e:83:34:cc:1d:de:
         1c:86:08:58:d4:91:f9:31:29:9b:af:b8:5b:24:22:77:fe:e4:
         da:d3:a0:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----