Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
File:                     vFxHuPnkKkkot2dDFqcap21AHjw.mft (raw, json)
Hash identifier:          umOU1nJtELeAxm4LKE0LIVrzQVBiAj+akcoiWi1WMS4=
Subject key identifier:   49:6F:B1:AC:97:93:0E:19:9B:EB:A3:0F:E6:ED:82:D4:6F:09:2A:70
Authority key identifier: BC:5C:47:B8:F9:E4:2A:49:28:B7:67:43:16:A7:1A:A7:6D:40:1E:3C
Certificate issuer:       /CN=bc5c47b8f9e42a4928b7674316a71aa76d401e3c
Certificate serial:       0199FBEBC978A3F0BD09E83F253EF845A8BF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vFxHuPnkKkkot2dDFqcap21AHjw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
Manifest number:          0C73
Signing time:             Sun 19 Oct 2025 10:02:37 +0000
Manifest this update:     Sun 19 Oct 2025 10:02:37 +0000
Manifest next update:     Mon 20 Oct 2025 10:02:37 +0000
Files and hashes:         1: vFxHuPnkKkkot2dDFqcap21AHjw.crl (hash: odOTQTvvk4jHbzdJ2owyGYExjmw4HfsWhVYXy4faC2M=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vFxHuPnkKkkot2dDFqcap21AHjw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:eb:c9:78:a3:f0:bd:09:e8:3f:25:3e:f8:45:a8:bf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bc5c47b8f9e42a4928b7674316a71aa76d401e3c
        Validity
            Not Before: Oct 19 10:02:37 2025 GMT
            Not After : Oct 20 10:02:37 2025 GMT
        Subject: CN=496fb1ac97930e199beba30fe6ed82d46f092a70
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:63:dc:e7:64:42:8a:99:22:89:c0:62:03:df:
                    1a:df:81:bb:aa:13:0b:9d:61:5f:11:be:80:50:4a:
                    6b:79:34:bf:ba:6a:81:bf:37:75:b7:4d:6e:79:00:
                    85:df:0f:a5:fc:96:7b:97:ac:a2:8a:57:c0:76:3b:
                    f0:0b:2b:a6:b3:a3:af:77:f3:22:b6:94:4a:96:31:
                    35:5f:c7:9f:36:49:0d:e8:e9:1b:63:5c:ac:db:ca:
                    04:fb:85:47:48:91:76:f2:cb:4f:c2:6d:cb:0f:d8:
                    33:a8:c5:32:71:a8:8d:44:e5:e7:de:bf:5d:e0:56:
                    b6:9e:c5:03:04:21:df:b9:0d:71:c8:3f:1e:6b:d2:
                    54:d4:6e:89:ff:e6:78:f0:e1:7b:5f:4a:7f:73:29:
                    ac:bb:40:9f:62:2f:0f:48:8a:bd:af:d6:f5:1e:9f:
                    4a:8b:ae:be:e2:3b:eb:fa:60:c5:41:0b:66:00:c6:
                    cc:6d:83:71:17:81:af:de:cd:46:b6:b5:09:eb:f6:
                    48:34:ea:82:08:de:73:4e:e8:17:42:42:9e:1a:1d:
                    6d:c0:eb:ca:83:03:63:38:51:80:ba:7d:ce:99:ed:
                    c7:53:be:36:41:11:6b:e0:28:ca:51:c2:06:59:b8:
                    c0:a2:e5:25:b9:61:cc:af:3a:a0:c0:15:b3:9e:31:
                    cc:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:6F:B1:AC:97:93:0E:19:9B:EB:A3:0F:E6:ED:82:D4:6F:09:2A:70
            X509v3 Authority Key Identifier:
                keyid:BC:5C:47:B8:F9:E4:2A:49:28:B7:67:43:16:A7:1A:A7:6D:40:1E:3C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vFxHuPnkKkkot2dDFqcap21AHjw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:d0:55:6a:2f:21:b7:c8:dc:c9:d0:47:67:3d:94:8e:f2:39:
         af:9e:92:b9:02:d2:1a:1f:ee:30:73:de:f1:d7:65:71:23:6f:
         22:50:0b:3e:2e:19:c7:63:3c:d9:6e:e3:2f:cb:f7:11:e1:14:
         d3:72:9f:67:54:b0:ad:5e:4b:b9:a3:85:56:ca:57:66:e8:d5:
         f5:14:6d:10:e1:02:00:9d:85:aa:16:92:7b:df:d0:b3:09:e6:
         09:0a:46:67:d3:5d:03:ba:fc:2b:b5:3f:79:4d:8f:9d:27:5e:
         94:88:04:a1:d6:21:19:22:ff:34:48:18:fc:3f:a6:6d:51:4d:
         af:a4:2c:42:40:e7:9c:3b:6c:ff:2c:c2:20:52:7d:e0:ca:73:
         6f:fd:64:19:1b:d6:96:da:f2:dd:8a:90:85:a2:3f:1e:03:0a:
         d2:61:f2:8f:f9:6b:20:21:40:2e:00:ab:26:83:43:65:37:05:
         1c:60:ed:a7:38:1e:c5:0f:1c:2d:b1:4a:49:51:63:c5:85:ad:
         ae:de:f3:11:ab:6a:f7:7a:c4:5b:fe:b2:87:d8:51:f4:14:33:
         1c:a2:19:cd:46:4e:5b:96:04:da:90:5f:a6:77:ee:7b:ff:e3:
         58:9b:31:59:7f:8c:98:79:e7:50:cb:e7:b1:af:c8:a9:6f:fb:
         db:c0:8a:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----