Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.mft
File:                     4UYAGfiAaeNhThUQkhzH5E0cq-I.mft (raw, json)
Hash identifier:          yB2/SFyADuNXn7LULgYIO4/c9D7EHadUuVa4tXUedew=
Subject key identifier:   8C:46:6D:A2:7F:9C:FE:61:C5:4F:59:BB:B4:F3:CC:DA:91:64:3A:40
Authority key identifier: E1:46:00:19:F8:80:69:E3:61:4E:15:10:92:1C:C7:E4:4D:1C:AB:E2
Certificate issuer:       /CN=e1460019f88069e3614e1510921cc7e44d1cabe2
Certificate serial:       0199FC8F9FB0A46284DD9B3A1DD82A069F88
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4UYAGfiAaeNhThUQkhzH5E0cq-I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.mft
Manifest number:          16E0
Signing time:             Sun 19 Oct 2025 13:01:34 +0000
Manifest this update:     Sun 19 Oct 2025 13:01:34 +0000
Manifest next update:     Mon 20 Oct 2025 13:01:34 +0000
Files and hashes:         1: 4UYAGfiAaeNhThUQkhzH5E0cq-I.crl (hash: Ch9lck7fY3nzL+jUJlPEX6q13NN2Is2UnEdIiC51VP8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4UYAGfiAaeNhThUQkhzH5E0cq-I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 11:18:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fc:8f:9f:b0:a4:62:84:dd:9b:3a:1d:d8:2a:06:9f:88
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e1460019f88069e3614e1510921cc7e44d1cabe2
        Validity
            Not Before: Oct 19 13:01:34 2025 GMT
            Not After : Oct 20 13:01:34 2025 GMT
        Subject: CN=8c466da27f9cfe61c54f59bbb4f3ccda91643a40
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:45:ad:3a:32:a8:c3:4f:03:86:53:20:87:9c:
                    d8:ea:09:da:b5:bc:06:03:dd:6b:fb:9b:91:7c:2d:
                    22:48:09:94:a0:9b:7e:06:1a:bd:16:74:30:4a:5a:
                    f6:cb:61:c1:16:ff:8e:c4:3a:37:c1:b7:14:31:69:
                    47:67:c7:57:f6:84:e9:1e:00:9a:03:ec:39:eb:81:
                    8c:78:4a:aa:a0:cc:22:24:4b:b1:0d:c8:ca:5a:f1:
                    82:9e:d1:de:59:32:a8:4f:8f:e0:f1:5e:81:3a:94:
                    4c:56:77:54:64:b1:d1:d1:26:3b:b0:9e:25:c6:7e:
                    a0:24:dd:33:74:c5:09:aa:85:57:eb:36:a7:de:96:
                    a1:40:40:fd:a5:02:cb:1c:2b:94:f3:78:1e:a0:84:
                    3a:0c:b3:e0:24:e6:d9:26:0c:5f:61:6e:89:14:9e:
                    50:f7:9a:d4:7b:79:f7:dd:18:ef:23:73:39:cd:14:
                    35:e4:61:ee:31:03:67:76:5b:2f:b4:38:d4:b9:a2:
                    e7:31:93:83:e8:67:52:ac:b6:96:83:ee:54:74:d5:
                    42:db:21:16:e9:af:59:71:8a:d4:0f:88:58:56:3e:
                    19:bf:91:ab:8f:5e:66:a5:4d:c3:cd:1c:94:40:a5:
                    62:f1:07:d3:9d:6c:2b:ee:e7:21:de:9a:1b:04:b2:
                    dc:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8C:46:6D:A2:7F:9C:FE:61:C5:4F:59:BB:B4:F3:CC:DA:91:64:3A:40
            X509v3 Authority Key Identifier:
                keyid:E1:46:00:19:F8:80:69:E3:61:4E:15:10:92:1C:C7:E4:4D:1C:AB:E2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UYAGfiAaeNhThUQkhzH5E0cq-I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/3e444d-6720-444a-ae54-fcd1a63c5c45/1/4UYAGfiAaeNhThUQkhzH5E0cq-I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:fd:07:f4:ac:58:ff:ba:ca:8a:21:da:68:4f:d8:36:a8:e1:
         45:4e:36:38:58:0c:5d:aa:12:ea:cf:82:f9:75:5a:2a:c5:a6:
         9c:2a:7d:f8:a1:d8:c8:7a:21:ff:39:e3:d9:00:b3:fe:11:df:
         b1:4e:b8:af:89:0a:94:a0:a1:d7:7f:bf:0d:84:63:e3:8e:e6:
         fe:5d:38:a0:c0:58:99:20:6f:60:dc:4b:43:2b:81:20:cf:95:
         03:2a:a7:59:29:f9:cb:3e:22:cf:7a:cc:30:06:f3:be:9c:9a:
         ca:63:bb:49:7d:0d:e4:31:98:20:86:e3:00:a3:99:df:0e:b5:
         06:d2:f9:44:c4:0c:cb:8a:d2:54:ab:b2:9c:d7:0e:d9:2b:03:
         c8:af:d2:6f:f9:96:0d:0d:1d:ed:54:07:4b:d9:a0:90:c9:75:
         c7:31:a8:f9:7e:d5:2f:c9:2b:7d:25:81:c0:53:48:8c:fe:ee:
         95:d2:85:d2:7b:0b:58:40:f2:0c:ea:ba:26:85:b8:be:4d:a9:
         89:26:a4:ff:b3:0d:e8:86:7b:4a:79:ac:1f:1d:aa:f8:6f:75:
         2b:76:02:d4:3c:18:14:45:9b:b7:53:27:84:4e:08:23:80:ca:
         82:ff:4e:1c:0b:89:ef:e4:9b:9b:78:5d:8d:de:c5:8e:50:61:
         e5:8c:9b:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----