Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft
File:                     biw-HNO4VNZu9GxWd-9y0sWjZpc.mft (raw, json)
Hash identifier:          ZVRccy8McRa5V3advG3JqlMUpbeOoAovPOYI1VP+meo=
Subject key identifier:   4B:2C:C8:59:E7:EB:EE:BF:90:FE:A4:D2:6F:96:3F:E7:19:2E:79:A6
Authority key identifier: 6E:2C:3E:1C:D3:B8:54:D6:6E:F4:6C:56:77:EF:72:D2:C5:A3:66:97
Certificate issuer:       /CN=6e2c3e1cd3b854d66ef46c5677ef72d2c5a36697
Certificate serial:       0198D583F3388E10E80AA852167D00CDFBF0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft
Manifest number:          0803
Signing time:             Sat 23 Aug 2025 06:00:51 +0000
Manifest this update:     Sat 23 Aug 2025 06:00:51 +0000
Manifest next update:     Sun 24 Aug 2025 06:00:51 +0000
Files and hashes:         1: biw-HNO4VNZu9GxWd-9y0sWjZpc.crl (hash: e1chAYaCxqJ/VmLEsyXBL2DcmUDPNZBwPwBq1qYQvCE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:83:f3:38:8e:10:e8:0a:a8:52:16:7d:00:cd:fb:f0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6e2c3e1cd3b854d66ef46c5677ef72d2c5a36697
        Validity
            Not Before: Aug 23 06:00:51 2025 GMT
            Not After : Aug 24 06:00:51 2025 GMT
        Subject: CN=4b2cc859e7ebeebf90fea4d26f963fe7192e79a6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:78:a0:42:8e:b3:4f:40:11:bb:a5:5a:0c:26:
                    59:80:9d:5b:f7:9f:95:36:6b:26:87:5b:04:81:53:
                    45:20:23:2e:eb:ea:18:58:a9:19:ff:31:eb:4e:6b:
                    64:8f:80:4d:3e:2e:bf:0a:e5:45:34:0b:95:17:cb:
                    bf:54:f9:c1:7a:0e:af:89:3e:30:86:03:72:a7:23:
                    8d:56:eb:8b:7b:ee:db:04:6e:27:94:63:73:e3:ba:
                    54:79:d3:39:eb:06:10:c7:3d:46:e4:ba:8e:a9:5b:
                    1c:7a:5a:94:13:1a:c7:8c:77:6b:8b:64:17:1e:f4:
                    2e:3f:0e:0b:76:b7:5b:d9:98:86:8a:c2:99:b6:dc:
                    f0:a6:9f:17:c9:27:44:5d:fb:19:6b:28:b3:e9:ac:
                    23:22:af:ae:de:af:41:71:86:68:bf:20:19:5c:3c:
                    3b:81:09:00:39:52:fb:29:20:b2:38:33:23:a3:c3:
                    f2:e3:47:51:df:8b:c6:88:45:0f:a2:4a:7d:e0:97:
                    8e:3f:04:a1:a1:be:d1:e1:5d:71:0c:53:3b:7d:af:
                    c0:39:91:ac:06:5b:a4:0e:59:b9:9c:9c:21:c2:05:
                    66:05:3a:8e:b7:e8:28:bc:b7:c5:70:23:48:56:cb:
                    44:02:8d:d4:16:1b:be:ef:61:7e:1e:40:8e:18:82:
                    20:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:2C:C8:59:E7:EB:EE:BF:90:FE:A4:D2:6F:96:3F:E7:19:2E:79:A6
            X509v3 Authority Key Identifier:
                keyid:6E:2C:3E:1C:D3:B8:54:D6:6E:F4:6C:56:77:EF:72:D2:C5:A3:66:97

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:d3:f3:0d:dc:38:ff:43:85:d6:e5:b7:a5:b1:b7:f6:35:96:
         77:11:03:7a:42:3c:80:67:bb:64:78:a5:84:e3:b1:ed:75:16:
         0e:7b:56:e3:ee:fb:64:1e:b6:fc:a9:79:02:26:10:9b:8b:aa:
         19:59:32:31:33:ba:34:a1:b1:3c:8f:1b:0b:3c:f7:71:1f:a3:
         d1:2e:6a:7e:2c:0f:18:0e:67:c3:ae:e8:ef:2b:18:bd:12:d7:
         99:b4:be:78:dd:ff:e1:a2:77:3e:7f:e2:83:ea:d8:65:86:fc:
         e5:f0:1b:b3:fd:13:41:7e:7d:69:71:5d:11:fc:88:79:d8:1f:
         e6:3b:c5:ac:1c:2d:93:78:97:21:f2:4f:1c:d8:f9:8a:9f:19:
         8e:cd:98:c4:2f:01:2a:88:f7:9c:5c:3a:1e:a1:c1:bb:29:b8:
         66:7b:29:b3:3a:fb:ff:bb:6a:96:ef:99:a2:d2:fe:6d:fa:d7:
         38:84:18:46:e0:8d:21:38:fe:d4:99:5a:c7:ac:51:db:ba:a2:
         60:5d:4a:6f:2b:e0:fb:c0:4d:b4:af:29:12:c2:b5:4b:bc:a7:
         c9:17:63:8c:cc:a8:d6:5c:6e:65:9c:42:78:a7:ac:c2:ca:3d:
         89:90:f6:b3:aa:de:c6:7b:46:c5:0e:ea:cc:19:3f:ba:78:ab:
         5d:08:b1:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----