Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/597975-7117-44f6-9400-e1606be92b98/1/KdIywSew2DMQPDH7UlTsuZVrDEw.mft
File:                     KdIywSew2DMQPDH7UlTsuZVrDEw.mft (raw, json)
Hash identifier:          8VK8iFRa8OR7fUoby6EVfRycX3tOJpWUFvaAx0Cc26E=
Subject key identifier:   BC:AE:B1:6C:76:58:BD:EB:EB:28:93:B2:4B:36:AC:F5:E4:FB:11:0C
Authority key identifier: 29:D2:32:C1:27:B0:D8:33:10:3C:31:FB:52:54:EC:B9:95:6B:0C:4C
Certificate issuer:       /CN=29d232c127b0d833103c31fb5254ecb9956b0c4c
Certificate serial:       0198D5158433AE0896FDB63433C67F45A68C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KdIywSew2DMQPDH7UlTsuZVrDEw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8e/597975-7117-44f6-9400-e1606be92b98/1/KdIywSew2DMQPDH7UlTsuZVrDEw.mft
Manifest number:          01F5
Signing time:             Sat 23 Aug 2025 04:00:13 +0000
Manifest this update:     Sat 23 Aug 2025 04:00:13 +0000
Manifest next update:     Sun 24 Aug 2025 04:00:13 +0000
Files and hashes:         1: KdIywSew2DMQPDH7UlTsuZVrDEw.crl (hash: iYOIZLRGhRztdZneXZnniTIHkfwOcYccBFKV+TN1tR4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8e/597975-7117-44f6-9400-e1606be92b98/1/KdIywSew2DMQPDH7UlTsuZVrDEw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8e/597975-7117-44f6-9400-e1606be92b98/1/KdIywSew2DMQPDH7UlTsuZVrDEw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KdIywSew2DMQPDH7UlTsuZVrDEw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 04:00:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:15:84:33:ae:08:96:fd:b6:34:33:c6:7f:45:a6:8c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=29d232c127b0d833103c31fb5254ecb9956b0c4c
        Validity
            Not Before: Aug 23 04:00:13 2025 GMT
            Not After : Aug 24 04:00:13 2025 GMT
        Subject: CN=bcaeb16c7658bdebeb2893b24b36acf5e4fb110c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:46:d9:65:2d:e1:03:0e:14:fd:1c:c1:92:89:
                    ea:a0:a7:45:dc:a8:66:99:cb:e5:2e:d0:f1:5d:43:
                    7c:7b:07:9d:00:3e:4a:06:ac:e8:35:1e:25:c9:6b:
                    ac:8d:dc:14:ab:6b:c3:cb:c3:90:bb:dc:ed:19:7c:
                    8e:f3:c2:12:4b:7e:c0:69:96:79:2b:14:aa:93:af:
                    25:4f:a7:c5:6c:25:2a:0b:81:a8:5b:38:b1:13:e8:
                    ce:d1:ab:7c:2c:26:82:bf:03:ff:b0:c7:01:fa:7c:
                    3a:85:66:1b:6e:d1:0f:8d:7a:3a:fb:1f:bd:ab:59:
                    ca:ed:33:a1:cc:da:3b:23:2d:fa:29:b4:82:9f:fc:
                    d0:4a:ba:03:d3:3e:19:b9:0d:8a:dc:bf:bc:da:41:
                    b4:de:78:4e:08:c8:73:4f:e4:9e:7a:1f:9f:37:2f:
                    92:35:0a:a1:f9:21:b9:e9:4a:42:ec:29:83:c0:f3:
                    18:d0:9a:7a:04:9f:52:42:06:c7:cd:69:80:02:ee:
                    ca:88:82:91:2e:1b:fc:7a:4c:52:50:d7:82:f2:1b:
                    72:30:e4:27:77:87:f5:e1:cb:40:c5:b8:b4:49:69:
                    e9:63:a4:0a:3e:47:5b:44:81:4b:14:6b:d2:72:a8:
                    d7:61:84:32:b6:e2:05:59:eb:51:ec:e9:3d:a5:4c:
                    8b:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:AE:B1:6C:76:58:BD:EB:EB:28:93:B2:4B:36:AC:F5:E4:FB:11:0C
            X509v3 Authority Key Identifier:
                keyid:29:D2:32:C1:27:B0:D8:33:10:3C:31:FB:52:54:EC:B9:95:6B:0C:4C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdIywSew2DMQPDH7UlTsuZVrDEw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/597975-7117-44f6-9400-e1606be92b98/1/KdIywSew2DMQPDH7UlTsuZVrDEw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/597975-7117-44f6-9400-e1606be92b98/1/KdIywSew2DMQPDH7UlTsuZVrDEw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         87:1d:f8:73:49:1f:76:ad:c2:62:92:f8:d3:04:9d:ab:b9:2a:
         f7:df:10:4d:8d:bb:11:29:0a:71:e5:6a:19:cd:c6:ff:ce:77:
         bd:b3:05:3d:4d:f2:0c:5b:24:f3:03:95:5e:46:b4:e5:7b:e4:
         b2:b5:80:a2:66:49:a6:59:81:16:db:79:bb:3d:90:ec:e0:d5:
         eb:b3:b9:ba:ed:89:7b:a4:ba:ac:89:c2:34:11:26:aa:bb:dc:
         72:8f:50:ca:c2:c5:de:30:52:bc:85:b4:90:3f:f5:d9:5b:67:
         60:e0:35:b5:d5:79:0f:14:3e:dd:69:6c:62:41:57:bb:64:11:
         32:a2:23:a7:a6:da:e6:36:bd:5f:cc:26:bd:7a:25:6d:4b:23:
         47:5e:dc:bf:3f:c6:41:58:1f:f7:c1:0b:6c:72:d6:ee:20:3b:
         52:52:65:0f:91:b9:ea:5a:b9:23:72:e1:7c:60:68:e0:2e:51:
         53:a8:76:3c:b9:eb:49:61:b7:59:38:e6:1d:2d:4b:07:ce:d3:
         57:de:a5:06:1f:bd:76:74:58:d1:a6:dd:8d:a6:a1:a4:76:97:
         d9:ce:14:0b:11:2e:9a:37:f2:29:fb:8a:e4:5c:7d:33:57:65:
         3e:a6:e0:08:93:01:25:fe:b6:2d:9e:ce:5a:8d:83:3b:3e:94:
         76:5a:e1:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----