Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
File:                     S2T4wOGznYqO-OjItaD_7itTtYc.mft (raw, json)
Hash identifier:          JOWl7HjGHfIh8erja/eqvFrvsMFEc2suR6yf3puCJ+s=
Subject key identifier:   1D:A2:D7:FE:32:2A:EC:DC:31:FD:60:89:E7:DB:F7:FD:59:6F:11:37
Authority key identifier: 4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87
Certificate issuer:       /CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587
Certificate serial:       0198D473A761D7CC1D12C4ED00A07FB5B93F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
Manifest number:          0773
Signing time:             Sat 23 Aug 2025 01:03:25 +0000
Manifest this update:     Sat 23 Aug 2025 01:03:25 +0000
Manifest next update:     Sun 24 Aug 2025 01:03:25 +0000
Files and hashes:         1: S2T4wOGznYqO-OjItaD_7itTtYc.crl (hash: avcoiVdx2wHtTyVXITsnkifY/n40QXyCNuYjq1FZyAU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 01:03:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:73:a7:61:d7:cc:1d:12:c4:ed:00:a0:7f:b5:b9:3f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587
        Validity
            Not Before: Aug 23 01:03:25 2025 GMT
            Not After : Aug 24 01:03:25 2025 GMT
        Subject: CN=1da2d7fe322aecdc31fd6089e7dbf7fd596f1137
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:92:c5:9f:5d:1d:ce:14:a3:00:20:ab:95:0e:
                    80:c9:e4:71:c4:9e:8c:2f:fe:14:20:e3:52:a1:53:
                    a9:af:47:c3:a7:b1:8a:2b:d7:53:a7:bc:fa:b0:63:
                    c8:73:92:94:02:4e:99:0d:63:e0:5c:59:b4:12:83:
                    69:2f:70:1b:89:a2:1c:8b:06:6c:3e:74:88:e7:c4:
                    73:89:9c:2b:d6:36:a8:3d:ad:72:ba:80:73:a8:f2:
                    af:cb:a4:14:3e:99:61:59:24:25:08:7e:1a:27:5d:
                    c5:9a:eb:44:9b:59:65:21:61:12:ec:92:ed:fe:a1:
                    cd:70:88:90:3b:0f:9e:6c:3c:b3:88:d9:b3:4e:62:
                    cd:fc:e1:9e:5b:75:85:af:57:6b:0f:9b:dc:7e:d3:
                    26:7e:d4:f0:24:92:d9:2d:d1:dc:46:a0:41:77:e9:
                    9a:6b:96:0b:7f:43:f2:73:a9:89:3c:c9:41:f4:82:
                    3f:98:56:ed:64:00:ca:84:83:08:de:6c:8f:35:fd:
                    4e:d4:1a:1c:0e:65:1b:8a:9e:90:61:f5:80:16:0f:
                    b2:19:d5:25:b9:8f:d4:35:2f:ec:6e:b2:00:0c:8e:
                    b1:dc:5c:25:c0:7b:55:a8:29:bb:0d:bb:11:a5:a9:
                    d6:94:3f:ea:bd:d6:71:63:24:d7:38:e7:f2:2b:3c:
                    70:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:A2:D7:FE:32:2A:EC:DC:31:FD:60:89:E7:DB:F7:FD:59:6F:11:37
            X509v3 Authority Key Identifier:
                keyid:4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:be:9b:16:bb:14:c2:4a:45:9b:33:62:4e:35:56:1b:3f:bf:
         29:70:e0:00:81:83:d3:42:a5:cb:0d:eb:9f:5d:85:f4:5c:a9:
         a8:7a:f5:94:19:e0:af:c6:2a:bb:85:43:e2:a1:25:b5:42:36:
         c3:bc:d4:ef:7e:84:fc:d4:c9:ce:7f:eb:d5:e7:1e:55:15:4e:
         28:fb:fb:28:e2:fc:92:f0:cb:44:1d:d9:ca:b2:2f:4c:d0:63:
         41:fe:2b:ff:d2:bc:70:b6:ab:79:7f:39:51:7c:dc:c3:77:1e:
         ac:8e:70:ea:7c:71:0c:71:bf:bb:e1:6e:5e:73:9f:c2:06:32:
         82:6c:d2:74:78:d5:6a:28:c1:45:75:26:69:94:8e:b0:a0:36:
         99:e1:18:a3:8a:98:8a:04:e7:6b:c4:da:d7:c5:ba:05:ea:f7:
         eb:35:e9:c4:e2:f0:6d:4e:8d:c3:a7:de:72:1b:77:91:ec:a8:
         87:b9:16:87:95:6a:54:4c:4b:27:44:d4:b2:fe:cf:dd:6d:0d:
         10:82:90:f3:57:95:0f:49:5e:17:db:ee:4e:f3:32:6f:8b:59:
         0b:6a:d5:ab:3a:f1:4d:37:f1:16:a8:46:37:f4:50:bb:d5:b4:
         e1:49:29:08:f6:d5:9e:87:e9:ba:78:fd:06:16:d7:a0:8d:8f:
         6c:3d:5a:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----