Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.mft
File:                     Km9uXKXbQ3eec6znzhbs4O55R5k.mft (raw, json)
Hash identifier:          S9cgspQcK2JzDazH1OnjgDi2uxFM8wI2UP18lj5ZUqg=
Subject key identifier:   A0:3E:A0:76:C2:4F:62:B6:58:65:26:15:DC:ED:CA:16:DE:DE:1E:A9
Authority key identifier: 2A:6F:6E:5C:A5:DB:43:77:9E:73:AC:E7:CE:16:EC:E0:EE:79:47:99
Certificate issuer:       /CN=2a6f6e5ca5db43779e73ace7ce16ece0ee794799
Certificate serial:       0199FE0FDA9B39429AE9A54BB3810EBF8668
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Km9uXKXbQ3eec6znzhbs4O55R5k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.mft
Manifest number:          0565
Signing time:             Sun 19 Oct 2025 20:01:15 +0000
Manifest this update:     Sun 19 Oct 2025 20:01:15 +0000
Manifest next update:     Mon 20 Oct 2025 20:01:15 +0000
Files and hashes:         1: Km9uXKXbQ3eec6znzhbs4O55R5k.crl (hash: okElMGx4wOYKDf7c568z4OXLGpGR3i8rwJvMZ9h0MWA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Km9uXKXbQ3eec6znzhbs4O55R5k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 20:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fe:0f:da:9b:39:42:9a:e9:a5:4b:b3:81:0e:bf:86:68
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2a6f6e5ca5db43779e73ace7ce16ece0ee794799
        Validity
            Not Before: Oct 19 20:01:15 2025 GMT
            Not After : Oct 20 20:01:15 2025 GMT
        Subject: CN=a03ea076c24f62b658652615dcedca16dede1ea9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:a4:18:72:d9:a5:29:1b:32:5a:e0:74:43:8d:
                    b4:6a:e8:b5:34:76:74:18:f7:82:c4:1e:6f:eb:69:
                    93:33:ad:1e:7b:7f:3a:1c:7d:53:5f:b4:d7:63:dd:
                    fc:ec:eb:32:15:a8:f3:d9:aa:0c:6c:e6:c0:b3:34:
                    8c:6c:ca:cb:86:0f:80:26:7c:a3:3d:03:28:86:21:
                    2f:5b:82:0c:65:c2:8b:3d:cb:4a:0d:ae:8b:27:83:
                    e8:c5:fb:24:2f:b8:d3:48:16:f4:96:5e:8d:ed:55:
                    2d:3c:f6:01:78:84:12:00:32:6a:6b:89:a8:aa:41:
                    8c:0e:c1:62:36:91:15:38:5e:63:b2:d5:52:61:5e:
                    4d:14:f0:6b:bc:ea:fd:64:ae:f3:ef:12:bf:2d:7e:
                    3b:5d:22:5a:37:51:96:44:be:47:49:a2:47:f6:28:
                    af:9c:eb:6f:ad:88:37:86:1e:64:07:e3:e7:ce:46:
                    7e:21:f3:49:d6:7d:d7:20:91:d7:2e:03:93:d6:3a:
                    2e:81:18:c6:8e:b7:21:ae:f4:9c:1d:52:ca:ab:77:
                    95:3e:ee:a4:1b:3b:cd:de:93:60:90:41:af:b3:aa:
                    c2:f3:90:a7:d5:7a:7e:1e:02:ba:8a:0b:21:3b:78:
                    09:17:57:5c:74:dd:2f:b8:b5:5e:b5:b0:2c:d5:0d:
                    7e:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:3E:A0:76:C2:4F:62:B6:58:65:26:15:DC:ED:CA:16:DE:DE:1E:A9
            X509v3 Authority Key Identifier:
                keyid:2A:6F:6E:5C:A5:DB:43:77:9E:73:AC:E7:CE:16:EC:E0:EE:79:47:99

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Km9uXKXbQ3eec6znzhbs4O55R5k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/51/f0a611-f6f4-40f7-8628-72e99ee4766d/1/Km9uXKXbQ3eec6znzhbs4O55R5k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:fd:7e:d6:e9:bf:ea:2c:ad:ec:a6:07:c8:f6:00:63:0e:fa:
         5e:3a:53:6d:c9:d5:87:31:f2:64:da:7a:2b:40:54:d3:a0:e3:
         bc:b8:e1:7e:01:9b:93:de:f1:13:36:49:f0:0f:6d:a7:61:fa:
         68:10:1d:60:d2:9e:85:8f:63:cf:28:b6:e3:37:9c:f7:b0:d9:
         bc:24:55:0e:5a:8d:9f:1b:30:d6:95:ed:e6:83:41:aa:e3:48:
         ed:fd:87:94:63:96:23:87:23:28:7a:ac:ba:fd:14:92:ea:68:
         be:ab:89:ac:4d:48:92:58:52:2b:97:60:07:98:22:5e:8d:84:
         63:2b:1a:ab:99:fa:6d:41:98:03:90:df:37:87:79:06:97:9d:
         03:31:a6:51:3f:43:dc:a1:7e:ca:6e:b8:c0:60:3d:62:2e:b4:
         99:e2:3b:d0:ce:e3:02:fd:58:27:a5:da:91:ec:1e:b1:84:02:
         58:9c:1c:f7:b0:25:13:c6:95:7c:45:c6:73:f0:f1:53:16:56:
         c4:59:c5:af:c0:90:ce:fb:9c:82:f1:1a:aa:5f:15:31:49:ee:
         f9:24:04:8f:28:87:a7:49:15:40:33:a8:9a:8f:ab:7d:ec:61:
         3e:2f:47:6d:65:0c:71:5c:e0:84:b0:be:de:15:e6:dd:9b:20:
         35:02:86:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----