Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
File:                     xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft (raw, json)
Hash identifier:          0J6zGJDWJe3GtBhRfqgZUTB19LuQtDeDVY+BeuorQUw=
Subject key identifier:   12:2D:3E:10:4D:8A:2E:72:49:6C:A4:A0:47:F9:78:4A:9D:DF:2C:F1
Authority key identifier: C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F
Certificate issuer:       /CN=c596785476efbae77f961d23057057fa036fb27f
Certificate serial:       0199FCC61E22D36C256F4F43DB90C9AF2405
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
Manifest number:          158E
Signing time:             Sun 19 Oct 2025 14:01:06 +0000
Manifest this update:     Sun 19 Oct 2025 14:01:06 +0000
Manifest next update:     Mon 20 Oct 2025 14:01:06 +0000
Files and hashes:         1: xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl (hash: Ax4mjOMmYhD8bvmLX3vLbK/yGtEQ4NbYBSyXzQImCHk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:18:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:c6:1e:22:d3:6c:25:6f:4f:43:db:90:c9:af:24:05
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c596785476efbae77f961d23057057fa036fb27f
        Validity
            Not Before: Oct 19 14:01:06 2025 GMT
            Not After : Oct 20 14:01:06 2025 GMT
        Subject: CN=122d3e104d8a2e72496ca4a047f9784a9ddf2cf1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:83:ea:45:a2:5d:b6:3c:7e:3d:5f:bd:1d:54:b0:
                    b3:d2:08:0d:0e:b9:ac:b0:29:2a:49:a1:22:23:ac:
                    79:2f:1a:43:d3:d9:67:bb:32:88:c2:b5:b1:3d:fb:
                    77:d8:bc:b6:5f:36:98:f5:bc:db:5b:7f:bf:ff:91:
                    37:51:7c:2d:6e:13:6f:df:76:39:f0:b9:5e:45:e6:
                    f2:8b:ca:86:02:7c:f5:32:8c:d7:27:b6:9f:74:fc:
                    8a:cd:8d:b8:e3:66:3c:48:5e:12:27:54:a1:54:b2:
                    e5:a5:da:e0:33:85:6e:92:51:6c:0f:c4:f8:27:38:
                    84:0b:e3:44:e9:16:c4:d9:51:94:94:d6:77:40:49:
                    f4:f9:78:58:1d:82:61:eb:83:d5:75:55:94:59:42:
                    55:fa:76:35:37:e6:c7:ed:01:7e:07:6f:fa:d7:0a:
                    b5:4b:e2:35:4f:67:da:8a:8c:13:ac:75:cb:fb:6d:
                    99:2b:ba:4c:bb:f3:da:c7:a4:14:07:7c:b5:b8:4c:
                    3c:62:57:0c:04:16:77:67:12:c5:90:04:66:24:4c:
                    55:87:12:8f:f9:b2:22:64:d0:58:c6:bd:cd:f0:c8:
                    32:d3:d8:11:ef:41:1e:67:1c:9a:d3:42:e0:c4:c6:
                    11:f8:70:2b:0b:bb:ee:d4:f4:74:d9:45:66:a6:0a:
                    b7:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:2D:3E:10:4D:8A:2E:72:49:6C:A4:A0:47:F9:78:4A:9D:DF:2C:F1
            X509v3 Authority Key Identifier:
                keyid:C5:96:78:54:76:EF:BA:E7:7F:96:1D:23:05:70:57:FA:03:6F:B2:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZZ4VHbvuud_lh0jBXBX-gNvsn8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/4ae99d-f552-476c-8177-ebf5f0433772/1/xZZ4VHbvuud_lh0jBXBX-gNvsn8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         73:03:ec:8a:c4:35:37:c7:04:6a:f7:4e:f1:82:3e:b7:a5:cd:
         34:61:42:6c:e9:ef:9f:1f:95:8d:0f:76:c1:07:fb:44:13:fc:
         b8:07:ff:26:74:62:df:d6:7e:a2:50:b7:47:23:87:da:2e:9a:
         89:e9:eb:3b:aa:fa:3a:58:33:86:4e:c4:e2:9a:17:b7:d9:9f:
         26:bf:dc:71:cd:66:17:d1:f5:0f:fb:ca:d7:84:a6:05:54:48:
         74:0f:a1:d6:cc:7e:7d:fa:ea:70:59:36:7b:60:28:15:d7:c9:
         03:b1:7e:06:d8:0c:36:41:a8:14:e2:31:a8:01:a8:03:2d:ec:
         61:81:36:d3:d3:49:37:8c:38:8d:23:6a:2d:ac:2f:c4:7f:d1:
         9d:e1:c5:f9:24:77:21:85:b8:d7:14:fd:02:bc:bb:5d:ed:ef:
         67:91:6b:6b:c1:4e:29:01:a5:93:2c:8e:5e:e0:82:13:ac:3b:
         52:2a:37:b7:6b:e6:72:01:9a:32:47:b3:5f:a1:c9:b1:e1:8c:
         e3:08:c3:24:fe:11:9b:4f:38:9e:b8:75:89:25:52:8c:b6:2f:
         da:75:28:9e:55:c6:a6:48:5b:3d:b2:e5:48:d5:37:d1:67:93:
         d7:38:e0:cb:88:4b:90:4d:30:b8:d7:ed:c3:b6:ba:4d:26:42:
         33:65:d3:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----