Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft
File:                     8cgdjkJn0tRetlJQoqSCULX7Uls.mft (raw, json)
Hash identifier:          kF/zqEdYuaANz3YYv9sFzApAojUAobX3xTnWHHifUvE=
Subject key identifier:   09:BC:EC:15:75:DF:E3:E6:B6:08:4C:11:DD:9B:2C:0D:D4:28:1B:2C
Authority key identifier: F1:C8:1D:8E:42:67:D2:D4:5E:B6:52:50:A2:A4:82:50:B5:FB:52:5B
Certificate issuer:       /CN=f1c81d8e4267d2d45eb65250a2a48250b5fb525b
Certificate serial:       0199FBEB2754C4F52FB29F9172D021A5E3C8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8cgdjkJn0tRetlJQoqSCULX7Uls.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft
Manifest number:          0B06
Signing time:             Sun 19 Oct 2025 10:01:56 +0000
Manifest this update:     Sun 19 Oct 2025 10:01:56 +0000
Manifest next update:     Mon 20 Oct 2025 10:01:56 +0000
Files and hashes:         1: 8cgdjkJn0tRetlJQoqSCULX7Uls.crl (hash: Xloe9DM4i1HoCzwFm29NnS6AMuli1XPZogK79Y4LMrc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8cgdjkJn0tRetlJQoqSCULX7Uls.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 06:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fb:eb:27:54:c4:f5:2f:b2:9f:91:72:d0:21:a5:e3:c8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f1c81d8e4267d2d45eb65250a2a48250b5fb525b
        Validity
            Not Before: Oct 19 10:01:56 2025 GMT
            Not After : Oct 20 10:01:56 2025 GMT
        Subject: CN=09bcec1575dfe3e6b6084c11dd9b2c0dd4281b2c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:70:63:71:e1:20:c1:93:22:a4:e9:c2:44:65:
                    37:48:32:ad:67:3e:b1:c2:62:38:35:bd:72:7f:55:
                    28:fa:e9:76:6f:a6:38:b4:85:88:4b:ea:82:85:0d:
                    12:b1:0e:69:bb:f7:b0:ff:4a:89:3e:03:3f:8c:a0:
                    27:96:ae:92:0a:12:e2:40:95:33:50:00:9f:6a:43:
                    98:59:25:ae:9a:a8:ac:39:dd:4f:a1:8d:8b:10:24:
                    df:c3:a6:7f:87:5b:0e:a6:63:12:b8:c9:ab:6b:2d:
                    6b:ff:1c:41:da:6c:9a:2d:10:d5:5c:6d:ef:9d:44:
                    24:f2:c7:52:2b:3b:e4:96:a2:81:95:28:d6:bb:07:
                    53:9e:b4:fa:f1:96:9a:cd:aa:d1:65:51:26:68:f3:
                    18:71:cd:1d:af:c4:77:70:32:a0:b6:94:a5:12:f2:
                    8c:81:dc:f5:a8:85:d4:2e:13:83:cd:78:39:5f:0e:
                    68:b0:7a:d2:fe:28:12:d1:91:54:2e:71:51:d5:bc:
                    5f:83:fd:be:ad:d6:e1:a5:27:44:d6:b2:90:e6:81:
                    85:70:2d:6c:01:09:ef:60:36:2c:7a:77:ab:17:4a:
                    20:c3:f1:a8:ff:4d:b8:e4:bb:ce:5f:93:5b:36:ca:
                    95:8b:f4:4e:5d:18:64:cb:69:40:32:eb:68:12:2a:
                    ac:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:BC:EC:15:75:DF:E3:E6:B6:08:4C:11:DD:9B:2C:0D:D4:28:1B:2C
            X509v3 Authority Key Identifier:
                keyid:F1:C8:1D:8E:42:67:D2:D4:5E:B6:52:50:A2:A4:82:50:B5:FB:52:5B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8cgdjkJn0tRetlJQoqSCULX7Uls.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/97/ebab47-6091-4b14-8008-362bb5446085/1/8cgdjkJn0tRetlJQoqSCULX7Uls.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         71:6b:5a:26:ef:d7:eb:47:88:c1:de:52:e9:1b:77:f7:71:70:
         e6:e9:8c:0d:0f:8f:73:97:21:37:e7:8d:bd:d6:2e:3b:67:35:
         85:5a:8f:b9:cd:5c:ae:cb:8d:a6:13:ca:9f:57:a9:4b:f4:88:
         c3:8b:32:46:08:5c:f7:7b:0e:0c:65:ae:d8:84:48:25:c7:b8:
         3d:38:8d:91:8c:d9:ec:18:a9:23:bc:7f:64:bc:cf:1d:42:0e:
         50:64:70:79:50:91:61:e9:14:7e:86:12:30:ab:0d:f8:92:d8:
         8b:7b:e7:98:8c:f6:5c:c6:87:9b:56:32:8b:c2:f5:a2:2d:87:
         84:16:a1:e3:01:a6:21:2d:7a:c1:c9:ca:45:5d:ad:91:e0:a5:
         d2:b4:29:c8:e6:b8:64:0d:47:95:ca:b7:cc:bb:62:77:bb:2b:
         c1:2a:8f:47:87:4f:9c:c6:72:71:0d:e2:42:85:0e:3a:2a:19:
         ca:c0:15:6c:48:63:23:28:46:a9:4e:65:c5:87:1b:d3:46:32:
         a0:96:33:e3:0b:2b:5a:22:b4:27:5b:7e:27:54:d6:82:02:14:
         6c:1c:50:dc:5c:58:a0:9a:f6:c6:60:53:80:8e:ac:57:fa:47:
         94:d5:89:6f:92:69:5b:20:3f:a9:a2:cf:bc:50:67:4d:c6:b4:
         31:e1:91:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----