Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
File:                     T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft (raw, json)
Hash identifier:          nXwCty3TOJVFth8/CXDsz3QFJ/8ioeUKZXH2FWP66+8=
Subject key identifier:   45:F0:8D:3C:81:60:38:30:84:76:41:74:24:DD:E0:B3:43:4A:45:40
Authority key identifier: 4F:A8:93:E3:3A:82:1F:F6:6D:38:F0:EB:CE:49:91:1F:3A:5F:96:4E
Certificate issuer:       /CN=4fa893e33a821ff66d38f0ebce49911f3a5f964e
Certificate serial:       0198D54E597C96C5377F62601C646FF409B5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/T6iT4zqCH_ZtOPDrzkmRHzpflk4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
Manifest number:          072E
Signing time:             Sat 23 Aug 2025 05:02:18 +0000
Manifest this update:     Sat 23 Aug 2025 05:02:18 +0000
Manifest next update:     Sun 24 Aug 2025 05:02:18 +0000
Files and hashes:         1: T6iT4zqCH_ZtOPDrzkmRHzpflk4.crl (hash: S6QZOFmH9Zj0rWE+oEDeAxmKYCzjhIGmfUF3hJLMSIY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/T6iT4zqCH_ZtOPDrzkmRHzpflk4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:4e:59:7c:96:c5:37:7f:62:60:1c:64:6f:f4:09:b5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4fa893e33a821ff66d38f0ebce49911f3a5f964e
        Validity
            Not Before: Aug 23 05:02:18 2025 GMT
            Not After : Aug 24 05:02:18 2025 GMT
        Subject: CN=45f08d3c816038308476417424dde0b3434a4540
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:07:6e:e6:5d:5b:b8:4d:38:37:4c:0a:c6:30:
                    69:ed:69:16:c8:e5:2e:b5:f6:39:77:4b:33:d1:59:
                    64:93:03:b2:e7:5b:b1:59:a1:9b:94:7d:c0:39:2e:
                    53:6f:b8:79:b5:20:41:9d:52:36:f3:26:7a:0f:64:
                    f3:97:fa:a1:75:c0:9b:94:8a:fd:c8:c6:59:41:aa:
                    d1:c0:78:48:28:0b:85:aa:08:46:fa:8f:35:a0:98:
                    ac:7c:bf:7f:fb:31:c5:1f:0e:0c:b0:8f:cc:29:27:
                    b8:ff:8a:b6:97:b6:04:62:c7:a6:30:39:ce:57:c5:
                    67:49:93:cc:4d:04:19:45:d2:4f:81:8d:f8:f0:8c:
                    48:07:c7:be:74:0c:e5:41:fa:c0:e5:7c:03:db:70:
                    f5:95:f0:0e:f4:43:ec:5b:80:3f:da:87:23:0e:eb:
                    86:db:cf:76:bb:00:af:e7:6a:de:39:37:57:c5:b5:
                    1c:64:1d:e0:68:e5:e4:36:64:0c:2b:d2:1d:1a:4f:
                    5b:97:e1:d0:06:ed:0e:4f:8e:4e:78:a0:86:53:68:
                    98:62:9a:e9:1d:da:64:e8:35:17:cb:08:02:01:ef:
                    c2:88:62:18:1d:13:35:b3:6b:0e:48:33:8c:24:76:
                    b6:b2:67:b2:3e:fb:2c:a1:85:1f:ee:a8:d3:2a:03:
                    53:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:F0:8D:3C:81:60:38:30:84:76:41:74:24:DD:E0:B3:43:4A:45:40
            X509v3 Authority Key Identifier:
                keyid:4F:A8:93:E3:3A:82:1F:F6:6D:38:F0:EB:CE:49:91:1F:3A:5F:96:4E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T6iT4zqCH_ZtOPDrzkmRHzpflk4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:46:21:a1:d4:54:31:b1:38:a1:d4:70:01:80:79:de:81:30:
         12:d1:7a:11:ee:20:d3:80:6b:6c:d1:f1:51:07:09:16:f3:c9:
         4d:ce:30:10:d5:b5:b1:3a:e9:37:6b:34:a1:10:1b:91:4e:ec:
         5e:e8:24:50:81:c0:fb:da:90:ac:d8:b7:74:3d:c9:62:42:87:
         2c:0d:3b:92:8c:c1:e0:e7:33:e2:2d:50:91:2a:69:e8:e2:c2:
         d8:cd:93:e7:9b:70:6c:7e:bd:b1:c0:0e:1d:5e:14:43:3a:83:
         c6:3b:dc:0b:a3:be:44:c3:51:53:77:28:37:94:0d:be:42:87:
         e3:4c:af:f9:03:96:a0:dd:e0:d2:f2:83:37:88:e1:54:06:f3:
         85:9f:c3:c5:f0:04:9b:9e:b8:4b:ca:e4:cb:00:cb:84:b2:b7:
         e4:5f:8e:cd:35:77:a3:7f:d9:40:2e:68:b9:34:a8:b7:48:db:
         bc:15:71:8d:d5:dc:ec:da:77:3c:54:9d:9f:d5:e2:80:1b:ba:
         80:06:46:f8:14:6e:88:f4:51:85:6b:ec:a7:3e:77:72:1a:f9:
         d2:3f:ef:ad:48:ce:4a:ea:5f:99:5b:eb:31:2a:39:7c:26:a1:
         c6:4d:a5:b8:b3:eb:d6:07:04:11:2f:67:53:b4:c8:94:18:40:
         eb:f4:84:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----