Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft
File:                     cVYaucXzkpItp8rhgMMwc2XwI4Y.mft (raw, json)
Hash identifier:          C3rhLXR0FrEooHyj2d/Ift3NQZZvyLCqtoYoJzfX39E=
Subject key identifier:   A9:0C:81:1C:5B:3F:F2:C7:32:78:7C:C4:99:44:1E:F4:F3:FF:D8:55
Authority key identifier: 71:56:1A:B9:C5:F3:92:92:2D:A7:CA:E1:80:C3:30:73:65:F0:23:86
Certificate issuer:       /CN=71561ab9c5f392922da7cae180c3307365f02386
Certificate serial:       0198D473E84B9FFDBB98DCC91871309B0258
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cVYaucXzkpItp8rhgMMwc2XwI4Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft
Manifest number:          0F7A
Signing time:             Sat 23 Aug 2025 01:03:42 +0000
Manifest this update:     Sat 23 Aug 2025 01:03:42 +0000
Manifest next update:     Sun 24 Aug 2025 01:03:42 +0000
Files and hashes:         1: cVYaucXzkpItp8rhgMMwc2XwI4Y.crl (hash: 7eoK+bW8n+Gj2Q0y6exxzYxLQt7q2sXUoXyGPYF92wc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cVYaucXzkpItp8rhgMMwc2XwI4Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:73:e8:4b:9f:fd:bb:98:dc:c9:18:71:30:9b:02:58
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=71561ab9c5f392922da7cae180c3307365f02386
        Validity
            Not Before: Aug 23 01:03:42 2025 GMT
            Not After : Aug 24 01:03:42 2025 GMT
        Subject: CN=a90c811c5b3ff2c732787cc499441ef4f3ffd855
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8c:c2:d9:37:21:88:e1:a9:01:b3:3a:a8:aa:f5:
                    bd:6f:dc:95:bc:6e:92:bd:b6:31:83:fb:b9:8f:63:
                    08:0a:7c:a8:d4:a0:03:41:4e:ff:10:28:8a:1f:f1:
                    fb:83:da:fe:ce:e5:1a:d8:52:96:ce:95:a7:73:6a:
                    f5:06:a0:58:a8:ca:2b:51:22:9a:90:d3:00:58:fd:
                    9e:b5:08:48:75:4d:e4:eb:38:6b:cd:0c:d8:75:f7:
                    d0:b9:d8:ec:49:14:59:fe:44:6d:c0:fd:5c:a9:75:
                    48:5d:ab:9d:8a:e8:91:13:66:11:c6:3a:7a:24:82:
                    98:f3:eb:5a:0f:11:b5:d9:7b:77:24:77:1b:0a:47:
                    74:5f:38:e3:83:26:73:ac:8d:eb:07:5f:10:0a:a1:
                    15:b2:b9:f5:a6:10:66:78:aa:3a:5d:ba:1b:dd:43:
                    56:61:91:91:9e:73:8c:ab:2b:8e:e0:d4:2a:a6:83:
                    9e:40:8e:4e:11:2e:52:4e:99:75:a6:49:50:81:8a:
                    9e:79:42:72:de:f0:d6:0c:ec:e2:85:a0:fb:aa:84:
                    3f:8d:62:14:1b:28:92:10:3b:4a:68:64:fe:61:97:
                    c6:fb:4f:11:a6:0b:4b:d5:f7:ba:9c:05:0f:33:8b:
                    cc:6d:37:ac:d1:06:31:c8:b4:7c:d8:f3:37:9c:72:
                    7f:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A9:0C:81:1C:5B:3F:F2:C7:32:78:7C:C4:99:44:1E:F4:F3:FF:D8:55
            X509v3 Authority Key Identifier:
                keyid:71:56:1A:B9:C5:F3:92:92:2D:A7:CA:E1:80:C3:30:73:65:F0:23:86

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cVYaucXzkpItp8rhgMMwc2XwI4Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2135e3-593f-4cdb-af55-c6f4ee872364/1/cVYaucXzkpItp8rhgMMwc2XwI4Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:c0:c9:d3:b7:21:88:41:f3:3c:a9:e0:af:ea:c2:d3:a4:4e:
         9d:53:62:9b:98:e3:5b:56:26:26:13:4b:7f:a4:5a:f2:1f:aa:
         86:06:b8:1f:2d:cd:29:6e:c5:9a:3d:e6:9d:48:e7:1f:00:82:
         e8:90:7e:3f:5a:24:dc:ff:1b:b5:13:f0:0c:7c:93:a3:0d:5b:
         65:c3:10:c2:3d:d9:00:30:9a:ba:56:65:d7:41:51:51:d2:de:
         39:5d:42:32:4c:f0:59:5c:80:0b:ec:41:1d:6b:3d:f8:60:b5:
         c5:d2:33:7e:91:f4:f0:72:c7:4f:19:b0:4b:e4:b3:e6:bf:15:
         15:33:84:b4:71:8c:f4:16:62:a8:76:64:ed:01:f1:c6:0e:14:
         1f:eb:26:d6:c3:c4:6a:d9:2c:04:ee:ef:5b:2e:2f:f5:d3:c6:
         96:71:0e:01:e6:d1:c0:fb:65:3c:24:da:04:27:28:d0:7c:a0:
         af:40:af:7e:9f:58:b1:26:19:02:7b:18:ae:95:75:e5:6b:b2:
         c9:5a:1b:b3:3d:47:10:ca:ab:72:98:ab:21:e6:77:d6:00:4b:
         9b:46:e6:b5:16:ad:c1:5b:4c:1a:75:fd:f7:62:b9:55:f0:57:
         f7:e1:6b:48:61:84:1f:f5:ae:bc:56:49:09:ed:c8:84:cd:e1:
         e5:38:3e:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----