Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.mft
File:                     xRvfUzN6yxiydpUsNX6RmAvMWww.mft (raw, json)
Hash identifier:          DgHGVVkT42/2HHfF7RTzlILpXEf1xUNTpowBrpDw2ow=
Subject key identifier:   AB:9F:D4:E7:4C:95:23:94:7E:0E:83:5D:11:43:69:9D:87:0F:6C:24
Authority key identifier: C5:1B:DF:53:33:7A:CB:18:B2:76:95:2C:35:7E:91:98:0B:CC:5B:0C
Certificate issuer:       /CN=c51bdf53337acb18b276952c357e91980bcc5b0c
Certificate serial:       0199FBEBEA2AE5C0072FB3CADD5601804F56
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xRvfUzN6yxiydpUsNX6RmAvMWww.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.mft
Manifest number:          0AF1
Signing time:             Sun 19 Oct 2025 10:02:46 +0000
Manifest this update:     Sun 19 Oct 2025 10:02:46 +0000
Manifest next update:     Mon 20 Oct 2025 10:02:46 +0000
Files and hashes:         1: xRvfUzN6yxiydpUsNX6RmAvMWww.crl (hash: GeSV4AEDEysbVPkgcmSWT2I2JhYLym9GwOHRSrWBMQw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xRvfUzN6yxiydpUsNX6RmAvMWww.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:eb:ea:2a:e5:c0:07:2f:b3:ca:dd:56:01:80:4f:56
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c51bdf53337acb18b276952c357e91980bcc5b0c
        Validity
            Not Before: Oct 19 10:02:46 2025 GMT
            Not After : Oct 20 10:02:46 2025 GMT
        Subject: CN=ab9fd4e74c9523947e0e835d1143699d870f6c24
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:60:88:fa:2d:0c:fc:ea:b8:f6:d2:b1:dc:58:
                    3c:24:4d:e4:9d:04:1c:da:38:4b:05:d0:fb:9c:a3:
                    e5:17:db:dd:06:bd:b8:dc:c0:69:75:a3:36:85:74:
                    bd:ff:c0:24:ba:e6:9d:2f:ca:d3:4b:87:05:a3:c7:
                    1e:98:3c:74:f4:17:7f:7b:b0:cd:26:12:e5:72:01:
                    d6:81:aa:63:17:2a:d4:ad:95:ac:a7:06:b5:50:b3:
                    0e:3e:88:ad:5c:8c:42:1c:89:09:bc:19:3f:75:77:
                    d7:fd:d6:c3:24:57:f2:90:f3:f7:a7:11:ee:c5:89:
                    9a:42:3e:6d:1b:3f:70:17:a5:b9:97:60:e6:b5:ea:
                    79:fb:56:ec:6e:d7:1a:a3:c7:dc:86:94:a2:d9:d1:
                    90:24:28:ba:03:0f:32:58:72:a8:bf:e0:15:63:4c:
                    40:34:bc:fb:23:c8:0c:d9:41:22:eb:1f:29:8d:06:
                    ff:15:fc:af:57:d0:d0:74:d3:fa:1e:9b:f1:a2:a1:
                    93:1c:fe:c7:8a:98:59:2e:b2:ac:a2:43:74:f7:56:
                    37:ab:0a:21:4e:b6:b0:a5:73:a1:06:58:39:f1:da:
                    34:a8:f2:a7:29:8b:82:7d:ad:d1:ab:ac:2d:ed:2c:
                    9b:ca:16:0c:11:8e:dd:06:3e:f4:3f:af:14:eb:42:
                    f1:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AB:9F:D4:E7:4C:95:23:94:7E:0E:83:5D:11:43:69:9D:87:0F:6C:24
            X509v3 Authority Key Identifier:
                keyid:C5:1B:DF:53:33:7A:CB:18:B2:76:95:2C:35:7E:91:98:0B:CC:5B:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xRvfUzN6yxiydpUsNX6RmAvMWww.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/83e5ea-9fe4-4814-83c6-1bb430606535/1/xRvfUzN6yxiydpUsNX6RmAvMWww.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:51:84:62:50:2e:dd:e9:fa:5e:55:3d:68:ae:8a:51:1b:f6:
         26:50:5f:8a:61:2e:4e:8f:ce:38:e6:94:43:0f:52:8c:f8:f4:
         73:72:a2:e8:af:b4:3c:e9:ea:50:d7:08:3c:cb:ca:2c:f7:26:
         f9:b0:33:97:09:58:66:df:c4:83:ab:ba:78:29:7a:1f:93:c1:
         c1:36:cd:19:fd:14:db:ed:7e:bb:ec:58:d0:61:9e:0e:f7:82:
         7e:7c:ed:3c:aa:86:28:ae:f4:e2:59:8f:a0:23:94:fb:7b:32:
         d4:ba:69:7a:3b:73:d7:81:d1:88:34:d5:6a:78:a5:eb:dd:b5:
         67:82:7f:80:b8:88:04:80:6b:4e:29:38:e3:5e:9d:f6:ac:f4:
         d3:ab:fb:f5:cf:e7:f1:ae:2f:54:df:a1:55:49:c8:09:b5:c1:
         3c:c0:1d:af:85:6b:ae:e1:a0:a3:c7:54:a9:67:fd:26:b6:9b:
         d1:25:e1:ed:6c:e4:96:58:ea:b3:27:e2:eb:5e:1f:16:62:68:
         a8:26:cd:b3:6d:98:bc:9b:66:3c:2a:a6:be:41:44:05:24:62:
         66:35:79:c0:9f:b1:45:d3:d9:72:c0:f3:3d:2e:8a:05:ae:44:
         65:fd:6a:8e:34:91:8d:34:51:c1:84:82:c6:2a:ed:15:4e:74:
         1f:07:45:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----