Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/dc5159-45f0-426f-9ef1-96e0c1c44483/1/g_65rfwvZVEiBb1IETJMnX9qAiI.mft
File:                     g_65rfwvZVEiBb1IETJMnX9qAiI.mft (raw, json)
Hash identifier:          L2Kxz7SyV9AaIsv2ZQR668zDOcGMpKC0u6R5zmKmY6Y=
Subject key identifier:   6A:15:58:DB:AB:AB:8D:D4:26:2A:E5:70:96:6E:E2:72:5F:7F:51:7A
Authority key identifier: 83:FE:B9:AD:FC:2F:65:51:22:05:BD:48:11:32:4C:9D:7F:6A:02:22
Certificate issuer:       /CN=83feb9adfc2f65512205bd4811324c9d7f6a0222
Certificate serial:       0198D6610FBCFB8A55E0B82EE8AD006E686D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/g_65rfwvZVEiBb1IETJMnX9qAiI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/dc5159-45f0-426f-9ef1-96e0c1c44483/1/g_65rfwvZVEiBb1IETJMnX9qAiI.mft
Manifest number:          0443
Signing time:             Sat 23 Aug 2025 10:02:21 +0000
Manifest this update:     Sat 23 Aug 2025 10:02:21 +0000
Manifest next update:     Sun 24 Aug 2025 10:02:21 +0000
Files and hashes:         1: g_65rfwvZVEiBb1IETJMnX9qAiI.crl (hash: wGA25VSup6WGXIZj/K8UA4/HwloyMWqMNmTFkSmlZ4s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/dc5159-45f0-426f-9ef1-96e0c1c44483/1/g_65rfwvZVEiBb1IETJMnX9qAiI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/dc5159-45f0-426f-9ef1-96e0c1c44483/1/g_65rfwvZVEiBb1IETJMnX9qAiI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/g_65rfwvZVEiBb1IETJMnX9qAiI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:61:0f:bc:fb:8a:55:e0:b8:2e:e8:ad:00:6e:68:6d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=83feb9adfc2f65512205bd4811324c9d7f6a0222
        Validity
            Not Before: Aug 23 10:02:21 2025 GMT
            Not After : Aug 24 10:02:21 2025 GMT
        Subject: CN=6a1558dbabab8dd4262ae570966ee2725f7f517a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:6c:a3:9c:d3:79:4a:9e:a7:da:18:3a:ec:80:
                    7b:c0:12:3c:72:f1:17:c7:4f:8b:d8:9e:33:98:0b:
                    e5:8a:77:9f:da:65:23:71:6b:fb:1a:2e:cc:50:26:
                    9c:3a:0a:e5:4d:f2:e9:fc:bc:6d:b7:22:5e:11:98:
                    7e:36:7b:7c:bd:cc:73:eb:d0:2c:32:26:09:be:8c:
                    e3:4d:de:db:7b:3a:e9:65:7c:59:9e:0a:bd:ba:ce:
                    8d:f9:3c:c3:3d:aa:c9:17:3c:6d:fc:04:4a:d0:7a:
                    7a:f8:4f:34:1e:18:38:af:41:30:c8:46:e9:a6:13:
                    e1:47:bc:6d:c6:a5:8f:14:b9:01:40:a5:a1:74:91:
                    4a:39:02:33:5b:78:4a:ed:93:fc:ff:54:0f:eb:0c:
                    59:b5:84:f4:99:2f:e1:0e:ed:4e:32:d5:c7:b5:f7:
                    30:1c:94:67:51:10:2c:4a:ea:b4:88:e0:81:c3:ca:
                    85:a9:0c:2a:b6:fd:bd:8a:15:dc:5d:b8:f1:14:0c:
                    b2:cb:1e:5b:b7:c8:e2:32:23:9d:c9:3a:87:4f:10:
                    8b:18:93:ae:fc:82:5b:cf:c6:33:ec:15:01:0f:f5:
                    28:09:bf:33:a4:53:4a:aa:b2:27:98:8a:69:5b:fb:
                    a6:c2:7b:01:6d:f6:20:2a:c0:f1:09:a8:7a:63:a4:
                    ac:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:15:58:DB:AB:AB:8D:D4:26:2A:E5:70:96:6E:E2:72:5F:7F:51:7A
            X509v3 Authority Key Identifier:
                keyid:83:FE:B9:AD:FC:2F:65:51:22:05:BD:48:11:32:4C:9D:7F:6A:02:22

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g_65rfwvZVEiBb1IETJMnX9qAiI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/dc5159-45f0-426f-9ef1-96e0c1c44483/1/g_65rfwvZVEiBb1IETJMnX9qAiI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/dc5159-45f0-426f-9ef1-96e0c1c44483/1/g_65rfwvZVEiBb1IETJMnX9qAiI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:9c:8d:f6:42:eb:40:37:0b:7a:45:05:3c:d0:0a:14:b1:87:
         1d:d9:04:9c:a0:14:ae:89:98:c9:f7:49:85:8a:34:0d:cc:82:
         23:1b:06:99:16:56:ee:e8:6e:3d:10:cd:cf:a8:ca:64:7b:29:
         15:c2:ec:c5:7b:3d:0f:1e:11:65:1b:96:bd:b8:14:0a:dc:d7:
         9f:79:dd:4c:56:64:0a:39:28:87:c0:7a:88:38:e8:b3:2b:68:
         1b:32:cf:ef:f7:46:11:9b:99:58:df:4f:ac:cc:20:93:e4:b2:
         75:f0:41:16:2f:b2:86:47:46:19:97:f2:aa:5c:c0:42:de:0a:
         ad:8f:c7:7e:67:13:ee:d1:01:e4:04:b3:c0:12:85:fb:fc:11:
         12:45:e4:da:51:85:60:c7:5a:b1:e9:46:60:af:11:2a:fd:5f:
         be:4e:46:3e:73:57:0a:de:cc:51:ea:1d:7e:85:f2:12:47:c0:
         fa:0b:00:b5:62:2f:87:ff:f0:f3:21:b4:d5:c6:d5:6b:13:f0:
         88:c7:86:b8:24:dd:67:a9:50:69:a5:df:8b:24:86:0f:4a:20:
         c2:60:12:ba:df:ff:30:7e:28:39:30:39:2c:28:23:f7:0c:99:
         ac:d1:ad:b3:ef:0f:08:61:25:b1:49:08:8f:58:82:9e:d5:45:
         73:a9:5e:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----