Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
File:                     HSXQyIRbeYhsGZNFuJD16KzVFtg.mft (raw, json)
Hash identifier:          776AKQ1Y9aKmMdfZ0QMFASQDqSCK4n4xarzZqTt6J8Y=
Subject key identifier:   0E:B8:6C:54:DA:05:90:3A:12:C3:62:3F:8B:0E:BF:95:36:26:0A:6F
Authority key identifier: 1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8
Certificate issuer:       /CN=1d25d0c8845b79886c199345b890f5e8acd516d8
Certificate serial:       0198D4DFE494AAE890B0B21236FAD1FA1C67
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
Manifest number:          1643
Signing time:             Sat 23 Aug 2025 03:01:39 +0000
Manifest this update:     Sat 23 Aug 2025 03:01:39 +0000
Manifest next update:     Sun 24 Aug 2025 03:01:39 +0000
Files and hashes:         1: HSXQyIRbeYhsGZNFuJD16KzVFtg.crl (hash: t5J0MDK1u1Jh5twwSoa6xZQqBGey9JFVSw4YmTuPedg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:df:e4:94:aa:e8:90:b0:b2:12:36:fa:d1:fa:1c:67
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1d25d0c8845b79886c199345b890f5e8acd516d8
        Validity
            Not Before: Aug 23 03:01:39 2025 GMT
            Not After : Aug 24 03:01:39 2025 GMT
        Subject: CN=0eb86c54da05903a12c3623f8b0ebf9536260a6f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:35:35:63:04:c9:70:9b:3e:19:33:58:5b:63:
                    48:d7:f0:b4:5d:1a:e8:d9:6b:d8:20:b9:46:98:60:
                    9e:15:83:b3:b1:bf:81:b7:48:5a:34:3a:4f:0d:24:
                    c4:f2:dc:9c:b3:5f:99:d9:47:34:fd:e8:50:b2:ac:
                    8b:b7:47:41:ee:5c:73:62:54:d1:a0:c0:d4:5a:0b:
                    3e:a9:9e:fd:99:54:9d:82:c7:ef:19:a3:37:d9:78:
                    92:2a:bd:7d:04:19:fe:6f:3c:05:7e:c2:b8:e7:7d:
                    92:14:ed:9a:bd:0a:b3:13:1b:37:ab:ca:37:a4:52:
                    b7:35:b7:ae:09:27:46:0e:4d:e8:b9:83:f0:22:b1:
                    7b:3a:08:9d:6b:4e:28:43:1f:a6:06:9e:03:85:64:
                    95:08:3b:56:8c:96:db:29:7f:1d:06:2e:32:eb:2f:
                    61:0b:58:87:52:49:b8:d9:e3:7b:be:66:5b:2d:3f:
                    29:b3:1d:5b:62:5e:b2:b0:fd:32:db:3b:ea:08:e2:
                    36:ef:50:64:1a:1e:f1:16:2d:55:72:72:11:7a:af:
                    f0:bb:eb:4b:10:42:57:7c:19:f0:8e:15:df:2b:0d:
                    99:29:47:f2:ba:c5:9f:35:68:dd:a8:fe:78:d8:b1:
                    74:ed:b4:35:ac:f0:d8:06:bc:22:ac:a7:1e:ed:e4:
                    75:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:B8:6C:54:DA:05:90:3A:12:C3:62:3F:8B:0E:BF:95:36:26:0A:6F
            X509v3 Authority Key Identifier:
                keyid:1D:25:D0:C8:84:5B:79:88:6C:19:93:45:B8:90:F5:E8:AC:D5:16:D8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HSXQyIRbeYhsGZNFuJD16KzVFtg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/37/557524-297d-4849-b4be-c52eb56bfa5b/1/HSXQyIRbeYhsGZNFuJD16KzVFtg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         69:a7:b1:71:0d:97:9c:e8:60:a5:b8:42:8f:ba:95:0a:c4:21:
         39:60:54:20:7b:4c:77:98:48:b3:00:ab:af:31:7e:d6:41:45:
         76:79:de:e2:d8:9e:1d:52:2b:0c:57:e8:18:cc:1e:8a:b3:c8:
         2d:ec:2a:76:8b:92:37:b5:f0:c5:fa:fe:0c:22:05:bb:96:a7:
         02:d8:b4:c9:80:80:2f:57:e6:ee:0d:e9:ca:26:cf:4d:42:d9:
         2e:d1:cc:b4:fa:cc:50:b5:e7:e5:86:d2:82:3f:30:52:50:72:
         69:73:0c:46:f6:22:eb:7a:0a:12:e6:c5:2c:92:02:f9:bc:8e:
         28:05:af:30:c8:78:d6:6e:e9:91:4b:61:e2:22:85:fb:e2:1e:
         74:d3:ad:8e:38:b7:5b:5f:37:04:68:58:ff:d3:0e:de:5f:3a:
         12:80:d7:6f:94:db:2f:3b:9d:6c:2f:5e:6d:6e:99:22:26:ca:
         f1:c6:87:ed:5e:b8:5c:cf:92:18:2b:e5:f4:67:a2:14:35:01:
         a1:d0:e8:b1:46:9b:5e:cb:44:fa:f0:c6:5b:48:14:92:07:76:
         c0:3a:4b:b3:41:53:5c:b7:2c:18:34:f8:00:dc:c7:b5:82:6f:
         18:6e:50:93:d0:70:72:f6:de:52:6b:ad:5f:57:60:e9:d0:10:
         fa:b9:65:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----