Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
File:                     Y31k1HJWO36HP1t5-RydP__D2_k.mft (raw, json)
Hash identifier:          n1SuEcIG8MALUpJZRVpxXN81eQBjeoVp1U8XqAtprUE=
Subject key identifier:   E1:92:EC:3D:C9:07:24:F0:D4:EE:06:65:15:1D:3E:60:28:33:E3:21
Authority key identifier: 63:7D:64:D4:72:56:3B:7E:87:3F:5B:79:F9:1C:9D:3F:FF:C3:DB:F9
Certificate issuer:       /CN=637d64d472563b7e873f5b79f91c9d3fffc3dbf9
Certificate serial:       0198D4E036C47DF76D26536CF8D8F340845F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Y31k1HJWO36HP1t5-RydP__D2_k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
Manifest number:          0F04
Signing time:             Sat 23 Aug 2025 03:02:00 +0000
Manifest this update:     Sat 23 Aug 2025 03:02:00 +0000
Manifest next update:     Sun 24 Aug 2025 03:02:00 +0000
Files and hashes:         1: Y31k1HJWO36HP1t5-RydP__D2_k.crl (hash: pdXVrsVtBjG5SFMCSl0n+/UP7O3bfJhmnfJkUua6u70=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Y31k1HJWO36HP1t5-RydP__D2_k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:02:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:e0:36:c4:7d:f7:6d:26:53:6c:f8:d8:f3:40:84:5f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=637d64d472563b7e873f5b79f91c9d3fffc3dbf9
        Validity
            Not Before: Aug 23 03:02:00 2025 GMT
            Not After : Aug 24 03:02:00 2025 GMT
        Subject: CN=e192ec3dc90724f0d4ee0665151d3e602833e321
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:e0:59:ed:99:b5:41:fc:b0:d2:aa:61:ca:2a:
                    1c:6d:88:f7:d1:37:69:0d:65:cb:6d:8d:76:27:51:
                    ca:70:c0:ec:41:0d:e6:ea:8e:56:e6:f0:62:4f:34:
                    16:a7:30:06:f2:5c:00:1e:92:61:96:17:ec:af:6e:
                    fc:89:5a:db:2f:0c:d0:9b:28:97:11:3a:9a:93:7d:
                    5c:53:ae:3a:a1:b4:f0:e1:34:75:8e:ce:1e:e6:d6:
                    a7:39:6f:70:df:d2:ab:9e:fb:6c:56:b0:91:bc:86:
                    fa:2e:ba:87:70:8b:d0:9d:8d:fc:71:71:ea:8b:d1:
                    2d:19:d8:99:36:c9:29:2a:d3:ee:58:b1:5b:1f:aa:
                    b4:95:51:12:6f:83:79:0c:4a:82:32:54:05:b5:8a:
                    43:79:be:49:93:9f:76:fc:b2:f7:22:d9:35:57:a6:
                    85:46:af:aa:80:58:6a:22:ad:0d:c3:57:20:92:e8:
                    39:41:1e:88:3b:64:96:ab:81:64:4e:3e:1a:d3:b6:
                    ad:c2:d9:7b:cd:44:ba:1e:f6:09:d1:be:97:f4:68:
                    44:71:d0:59:55:ed:eb:c0:16:57:87:eb:b5:bd:41:
                    2c:fd:87:81:62:ef:85:df:08:fd:48:6c:cc:43:a0:
                    3f:dd:2e:90:c3:b5:93:1c:f1:03:4f:c8:49:24:89:
                    88:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:92:EC:3D:C9:07:24:F0:D4:EE:06:65:15:1D:3E:60:28:33:E3:21
            X509v3 Authority Key Identifier:
                keyid:63:7D:64:D4:72:56:3B:7E:87:3F:5B:79:F9:1C:9D:3F:FF:C3:DB:F9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y31k1HJWO36HP1t5-RydP__D2_k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/2bd6b4-eeb2-4f1b-8aaf-817af8a76250/1/Y31k1HJWO36HP1t5-RydP__D2_k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:d8:92:b9:54:f9:03:b1:84:bf:ba:9d:ac:a4:90:8a:68:ad:
         33:37:fa:81:5d:7f:75:08:e0:b4:7c:16:1f:dd:5c:e3:40:d3:
         35:bd:ee:64:18:38:08:41:7c:d7:db:49:cc:8a:12:a8:f4:16:
         4b:22:d7:b0:36:03:a9:2a:7f:56:f5:76:f4:7b:6b:72:c3:b8:
         b5:12:82:7d:b7:af:fd:12:95:36:35:a1:fd:bd:72:11:be:97:
         98:c8:fe:39:93:3e:21:0f:7b:18:9f:e2:21:10:bc:50:60:7a:
         b3:70:5e:8e:4b:b8:ab:7a:b2:18:2f:ad:aa:dc:a6:bd:59:9c:
         ac:a6:f7:97:de:26:36:eb:c0:78:a1:c7:2c:08:12:7f:8b:87:
         42:b8:25:86:ce:72:76:2d:3f:9c:49:6d:b5:c2:d5:19:79:4a:
         6d:2a:74:5c:ba:4d:20:8c:81:6d:c0:a8:e2:58:a4:85:10:e1:
         76:78:13:97:5d:f0:36:db:68:67:af:e4:44:a3:cf:a1:76:c1:
         5f:9c:28:02:55:9d:84:46:4d:41:3a:d5:12:1e:bb:9d:88:2b:
         e8:c5:01:fe:b4:58:66:3e:1e:ce:2a:57:17:76:56:55:9f:9b:
         94:c0:06:3e:3c:59:f6:b8:26:25:9d:d8:af:ea:3b:2d:86:03:
         13:75:08:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----