Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
File:                     UNlf0yarPwj3bczGVrs-Hia03Fc.mft (raw, json)
Hash identifier:          5Wgg6H97/++H0jHQ8O1vsaSKIwR9fmx8Kg08fGzA3Wc=
Subject key identifier:   93:30:B6:DA:82:31:71:2A:D6:10:49:A8:8F:69:05:7A:45:51:04:5B
Authority key identifier: 50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57
Certificate issuer:       /CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57
Certificate serial:       0198D6CDB194EC9DC6009ACACAF122A84B92
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
Manifest number:          01F1
Signing time:             Sat 23 Aug 2025 12:01:01 +0000
Manifest this update:     Sat 23 Aug 2025 12:01:01 +0000
Manifest next update:     Sun 24 Aug 2025 12:01:01 +0000
Files and hashes:         1: UNlf0yarPwj3bczGVrs-Hia03Fc.crl (hash: O6LpkOLVALg2WdZrYUR6/qBQp9kDWTJ+2xjExE5LIGk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:cd:b1:94:ec:9d:c6:00:9a:ca:ca:f1:22:a8:4b:92
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=50d95fd326ab3f08f76dccc656bb3e1e26b4dc57
        Validity
            Not Before: Aug 23 12:01:01 2025 GMT
            Not After : Aug 24 12:01:01 2025 GMT
        Subject: CN=9330b6da8231712ad61049a88f69057a4551045b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:3f:88:fe:07:aa:2d:26:98:5f:f9:d6:dd:8f:
                    bb:99:8a:e3:ba:fe:40:62:62:d9:1e:cc:1b:bd:a1:
                    de:4c:a3:81:dd:73:33:05:cb:90:28:cd:93:d2:5c:
                    3a:fb:16:0f:0b:42:e9:b7:7b:3e:68:cf:70:2e:8b:
                    95:77:c6:8b:f2:fa:47:d9:3e:3b:f5:1c:b6:35:bd:
                    98:ea:eb:7a:00:86:e7:80:7e:86:d3:ce:e5:2d:ec:
                    99:ad:a7:ca:9f:90:25:d6:fa:56:38:ec:e8:10:db:
                    c1:6a:8d:47:c4:05:cb:85:78:6f:38:57:66:21:0d:
                    13:9b:68:1c:11:02:cc:82:f1:e9:06:e9:42:97:9d:
                    9f:dd:c2:41:a6:2b:c6:e9:90:37:f3:d2:06:e6:87:
                    5e:a5:80:f0:ae:b4:ad:5b:00:dd:ff:0f:f7:1f:29:
                    d2:05:f7:28:11:9e:85:07:49:5a:92:86:26:e1:a9:
                    f2:d0:6d:b9:17:a6:b0:ed:9f:57:2b:80:bc:37:b5:
                    35:1f:e3:7e:28:35:eb:f0:ca:c5:96:18:7f:3e:34:
                    39:3b:08:f5:cb:87:c7:6e:5e:c2:8a:4e:32:88:30:
                    2c:d7:86:fa:95:1d:0f:78:19:90:2f:e6:bf:fb:ef:
                    ab:d8:64:70:48:89:8f:c1:58:7e:bc:1f:5e:ff:93:
                    c2:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:30:B6:DA:82:31:71:2A:D6:10:49:A8:8F:69:05:7A:45:51:04:5B
            X509v3 Authority Key Identifier:
                keyid:50:D9:5F:D3:26:AB:3F:08:F7:6D:CC:C6:56:BB:3E:1E:26:B4:DC:57

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNlf0yarPwj3bczGVrs-Hia03Fc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/e6ccc7-d1e5-4f07-8dab-506a4934cad5/1/UNlf0yarPwj3bczGVrs-Hia03Fc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         40:58:f4:01:8b:05:c7:d8:1b:47:55:92:07:f3:97:65:26:90:
         40:15:17:02:e5:53:8b:e2:6e:b6:d9:a8:07:26:9a:a8:7f:41:
         91:f2:44:c1:80:d4:30:32:1b:a2:a3:d3:d2:41:56:64:79:e7:
         92:2a:fa:0a:99:f7:df:ad:26:50:43:2a:3b:22:f6:1f:98:42:
         72:05:14:de:00:ad:5e:b0:4b:e2:74:98:ca:b9:92:64:d3:e0:
         80:47:91:2b:7c:fc:8d:55:33:65:ac:0d:7f:8d:15:c4:62:fb:
         bb:19:f8:eb:a6:2f:05:7e:ff:19:78:95:10:d8:a1:b7:5d:48:
         1f:cb:88:1b:78:a3:2c:6c:42:92:e8:ce:c3:54:eb:63:dc:8d:
         b8:e3:6b:b5:08:a5:26:24:a6:c6:75:31:40:f6:b7:e4:a9:48:
         8d:9f:05:78:4f:1e:66:bc:97:44:e4:e5:fd:cc:8a:69:b3:43:
         10:f0:2f:b8:e7:f8:b2:dd:13:6a:07:79:1c:7b:00:02:fe:87:
         17:dc:98:f4:bf:90:88:90:1d:30:dc:86:28:6e:f0:28:9b:dc:
         dd:6a:ab:ee:6e:8d:66:f0:13:85:76:36:df:e5:8a:fe:8a:67:
         67:63:c2:52:72:33:76:c6:3e:ca:f5:87:c2:09:db:69:98:20:
         9c:57:3b:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----