Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.mft
File:                     gXNntPK_jrMfbhYk7Vbtq6nwITs.mft (raw, json)
Hash identifier:          +FHBAg+PBlPB+ASD3lNilfweXbmNt/PWkkdIEXxQcrQ=
Subject key identifier:   CE:F4:DA:B1:F4:D6:26:77:9B:C5:97:37:CF:E5:13:05:1E:4A:49:75
Authority key identifier: 81:73:67:B4:F2:BF:8E:B3:1F:6E:16:24:ED:56:ED:AB:A9:F0:21:3B
Certificate issuer:       /CN=817367b4f2bf8eb31f6e1624ed56edaba9f0213b
Certificate serial:       0198D4E0A541BE115CF0C9D6FB7F615214E8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gXNntPK_jrMfbhYk7Vbtq6nwITs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.mft
Manifest number:          0D64
Signing time:             Sat 23 Aug 2025 03:02:28 +0000
Manifest this update:     Sat 23 Aug 2025 03:02:28 +0000
Manifest next update:     Sun 24 Aug 2025 03:02:28 +0000
Files and hashes:         1: gXNntPK_jrMfbhYk7Vbtq6nwITs.crl (hash: OjjK68CZOtYWitV8gHaXHzyw11vLr7eyv2a8VP78BOk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gXNntPK_jrMfbhYk7Vbtq6nwITs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:e0:a5:41:be:11:5c:f0:c9:d6:fb:7f:61:52:14:e8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=817367b4f2bf8eb31f6e1624ed56edaba9f0213b
        Validity
            Not Before: Aug 23 03:02:28 2025 GMT
            Not After : Aug 24 03:02:28 2025 GMT
        Subject: CN=cef4dab1f4d626779bc59737cfe513051e4a4975
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:df:92:5f:0b:ff:7c:85:4c:2a:cf:3e:e8:a7:
                    a4:d5:c5:64:72:9f:76:4e:09:b7:04:8f:16:73:0c:
                    81:15:14:ad:b1:a4:00:6b:7d:3b:a1:00:1a:a5:96:
                    16:b0:3c:8d:8c:bd:41:ff:03:20:e9:b8:2d:ba:4f:
                    c7:57:83:d7:e8:f1:8c:68:d9:99:d8:f8:10:e6:03:
                    53:aa:db:fa:9d:39:4b:f2:bd:8f:e3:10:c5:96:41:
                    38:5e:57:ec:3a:20:48:67:3a:9a:6e:0b:a8:1d:b6:
                    ec:c0:fc:8b:64:16:51:e1:41:a2:11:b5:49:95:13:
                    b1:9b:f0:03:ab:a2:dd:75:a9:ae:23:f3:8f:0a:df:
                    a5:48:01:3a:7e:a0:98:8a:59:22:0e:18:75:e6:0e:
                    b4:e4:86:fc:9c:31:e6:1e:eb:49:69:8b:1f:2b:6f:
                    fa:bc:fc:78:bc:ef:ba:ba:5d:b7:84:94:f7:fd:09:
                    b4:df:fb:98:f2:3e:68:e4:3f:a5:12:40:c6:f0:0d:
                    f4:4a:a1:85:68:c3:f0:08:88:89:38:40:2e:25:c0:
                    37:85:a4:5f:ee:8b:77:16:97:2c:42:38:87:1b:66:
                    ed:23:68:d8:da:0b:fb:37:de:62:65:9a:eb:2b:12:
                    02:1e:a4:ed:b9:fd:cf:d1:f2:83:f9:35:ed:6e:7d:
                    2a:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:F4:DA:B1:F4:D6:26:77:9B:C5:97:37:CF:E5:13:05:1E:4A:49:75
            X509v3 Authority Key Identifier:
                keyid:81:73:67:B4:F2:BF:8E:B3:1F:6E:16:24:ED:56:ED:AB:A9:F0:21:3B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gXNntPK_jrMfbhYk7Vbtq6nwITs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:8d:88:b5:da:66:61:85:42:a5:b3:5b:c3:6c:b4:a6:6b:bc:
         f4:d8:ff:4d:e1:e0:9b:63:db:53:e8:4d:09:d0:0d:01:89:85:
         53:cb:b9:bb:96:4d:4b:f1:ea:aa:30:55:49:3a:10:0a:3b:2b:
         fc:eb:c0:57:10:a5:46:27:e4:2d:ac:8c:6d:f2:e6:9e:94:75:
         77:21:e2:a7:6d:b3:70:05:d7:51:8e:33:fc:66:7e:97:35:68:
         ed:1e:d6:c8:6f:8b:74:89:dd:46:d5:00:be:0f:56:07:d2:b1:
         b5:54:10:2d:75:d1:db:7f:96:44:e0:7a:d1:29:21:30:4b:24:
         47:63:86:01:96:1f:9e:19:e6:d9:d1:f5:2c:9e:3f:07:a7:8a:
         d2:5d:3f:23:ea:bd:3f:6e:af:5a:58:70:46:1e:ce:76:5b:1b:
         83:37:61:bd:a6:2b:b7:9f:e8:ba:52:c0:10:7d:77:25:b0:5f:
         b7:73:fd:b2:a3:42:ba:33:12:50:d8:b0:64:43:66:ae:2f:b5:
         db:fc:10:d3:14:3d:ea:e4:c5:9e:b2:dd:28:ad:18:f8:42:20:
         45:28:6d:d2:52:56:cc:33:1e:bd:11:85:10:6a:58:fa:fe:72:
         88:3e:0b:9f:51:68:2a:16:b3:b2:09:ae:14:21:cb:74:33:18:
         f5:0c:7d:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4KVBvhFc8MnW+39hUhToMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxNzM2N2I0ZjJiZjhlYjMxZjZlMTYyNGVkNTZlZGFiYTlm
MDIxM2IwHhcNMjUwODIzMDMwMjI4WhcNMjUwODI0MDMwMjI4WjAzMTEwLwYDVQQD
EyhjZWY0ZGFiMWY0ZDYyNjc3OWJjNTk3MzdjZmU1MTMwNTFlNGE0OTc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnN+SXwv/fIVMKs8+6Kek1cVkcp92
Tgm3BI8WcwyBFRStsaQAa307oQAapZYWsDyNjL1B/wMg6bgtuk/HV4PX6PGMaNmZ
2PgQ5gNTqtv6nTlL8r2P4xDFlkE4XlfsOiBIZzqabguoHbbswPyLZBZR4UGiEbVJ
lROxm/ADq6LddamuI/OPCt+lSAE6fqCYilkiDhh15g605Ib8nDHmHutJaYsfK2/6
vPx4vO+6ul23hJT3/Qm03/uY8j5o5D+lEkDG8A30SqGFaMPwCIiJOEAuJcA3haRf
7ot3FpcsQjiHG2btI2jY2gv7N95iZZrrKxICHqTtuf3P0fKD+TXtbn0qXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM702rH01iZ3m8WXN8/lEwUeSkl1MB8GA1UdIwQY
MBaAFIFzZ7Tyv46zH24WJO1W7aup8CE7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1hObnRQS19qck1mYmhZazdWYnRxNm53SVRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy85NTc1ZDAtOWM3Yy00NTcxLTg2M2Et
NTU1MTMwYTU3MDQxLzEvZ1hObnRQS19qck1mYmhZazdWYnRxNm53SVRzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy85NTc1ZDAtOWM3Yy00NTcxLTg2M2EtNTU1MTMwYTU3MDQx
LzEvZ1hObnRQS19qck1mYmhZazdWYnRxNm53SVRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB42Itdpm
YYVCpbNbw2y0pmu89Nj/TeHgm2PbU+hNCdANAYmFU8u5u5ZNS/HqqjBVSToQCjsr
/OvAVxClRifkLayMbfLmnpR1dyHip22zcAXXUY4z/GZ+lzVo7R7WyG+LdIndRtUA
vg9WB9KxtVQQLXXR23+WROB60SkhMEskR2OGAZYfnhnm2dH1LJ4/B6eK0l0/I+q9
P26vWlhwRh7OdlsbgzdhvaYrt5/oulLAEH13JbBft3P9sqNCujMSUNiwZENmri+1
2/wQ0xQ96uTFnrLdKK0Y+EIgRSht0lJWzDMevRGFEGpY+v5yiD4Ln1FoKhazsgmu
FCHLdDMY9Qx9ig==
-----END CERTIFICATE-----