Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
File:                     xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft (raw, json)
Hash identifier:          GXSwRpS+J4qMWlbglWN68c/u3MXA6ZBOUUhrdPi1rcM=
Subject key identifier:   0B:52:6D:4D:C1:61:FD:46:42:AB:A1:59:32:94:DD:88:D1:22:BD:EE
Authority key identifier: C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B
Certificate issuer:       /CN=c6c00c553a54da05b93635a654cada03c6d9df2b
Certificate serial:       0198D7A8EDD02F81000D7E72E63B0A89505A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
Manifest number:          071C
Signing time:             Sat 23 Aug 2025 16:00:28 +0000
Manifest this update:     Sat 23 Aug 2025 16:00:28 +0000
Manifest next update:     Sun 24 Aug 2025 16:00:28 +0000
Files and hashes:         1: xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl (hash: +bzrBAP98CUe0WWWIHVVFPQyq1HZwWzkgriq/pmiorg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 12:50:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d7:a8:ed:d0:2f:81:00:0d:7e:72:e6:3b:0a:89:50:5a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c6c00c553a54da05b93635a654cada03c6d9df2b
        Validity
            Not Before: Aug 23 16:00:28 2025 GMT
            Not After : Aug 24 16:00:28 2025 GMT
        Subject: CN=0b526d4dc161fd4642aba1593294dd88d122bdee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:81:c7:17:66:92:fc:42:d2:f0:14:d4:9f:24:
                    25:e5:87:a6:49:69:9a:30:79:d5:e3:9c:69:5b:0b:
                    e8:5e:e5:ec:8b:3d:9d:63:b4:ae:2b:f7:96:1d:d9:
                    b3:65:d8:74:2f:21:6d:51:9e:06:a8:b2:ef:50:59:
                    ee:7f:ea:9e:a9:fe:c4:d3:3e:8f:d4:1f:46:38:4d:
                    95:9f:1f:83:9b:9c:0e:9a:42:57:34:d8:7c:d2:fc:
                    45:cb:b7:d9:8f:46:17:51:da:41:6a:bf:9f:3d:3d:
                    9b:51:1f:a2:ce:86:d4:bb:42:e2:5b:c3:79:55:70:
                    48:e4:f1:0e:58:6d:dd:ce:b9:e1:64:66:dd:eb:de:
                    c9:d0:ba:38:01:6c:1a:16:31:7b:65:49:50:55:1f:
                    ea:b0:04:df:54:94:28:08:4e:af:0e:0c:4a:ec:12:
                    31:58:12:11:2e:74:17:8b:58:63:48:45:d6:c3:bb:
                    0e:4c:e2:02:4e:bf:35:1e:62:04:21:0a:09:d2:b7:
                    19:58:d3:f6:de:61:e3:23:53:bf:d1:b8:b1:aa:ac:
                    16:b6:8d:3d:5d:f7:6c:06:c3:01:52:d2:6c:49:44:
                    d9:d7:b1:a9:72:6e:08:58:56:44:f1:ed:64:cd:7d:
                    ca:ff:92:8d:65:a9:9f:41:9a:1f:18:89:08:e0:cb:
                    dc:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:52:6D:4D:C1:61:FD:46:42:AB:A1:59:32:94:DD:88:D1:22:BD:EE
            X509v3 Authority Key Identifier:
                keyid:C6:C0:0C:55:3A:54:DA:05:B9:36:35:A6:54:CA:DA:03:C6:D9:DF:2B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsAMVTpU2gW5NjWmVMraA8bZ3ys.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6fda1d-b96b-4cf9-bb68-3fbdd9dbbd92/1/xsAMVTpU2gW5NjWmVMraA8bZ3ys.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:a9:e6:e4:4d:3e:76:cb:e9:02:c5:bc:24:81:47:b7:93:17:
         a4:a2:2d:4a:3e:94:96:ed:4b:cb:fc:6a:91:ef:d2:ab:6c:c1:
         f8:5b:3f:77:fb:10:43:3c:2a:4e:63:7c:64:e6:95:91:ae:73:
         46:f7:24:98:c2:e4:30:b8:f1:1e:5e:6e:69:cc:e0:0a:17:5b:
         f8:e6:cd:0b:47:4b:14:16:52:ec:ba:2c:b2:fc:6d:2d:a2:f8:
         ca:33:3b:f4:a4:5d:7f:64:a9:61:33:d1:5d:5a:6e:a8:07:5e:
         a1:8e:5a:e7:c4:b4:86:d5:25:d4:88:24:33:1e:31:a3:60:8c:
         fa:f1:10:53:17:d4:24:94:12:e7:52:fb:6a:b0:09:39:5c:1f:
         d4:77:13:e3:e9:f6:af:72:7d:6f:83:ea:31:f3:aa:7a:7a:d9:
         38:51:f4:a3:17:a1:f0:5e:82:a4:2c:ce:a2:4a:ae:30:ee:98:
         ab:a5:58:01:13:9f:d5:97:52:c5:99:72:c7:4f:31:d7:72:b9:
         a4:5f:a9:7a:93:09:47:ce:04:ca:ee:00:a9:e7:31:87:ed:59:
         53:f9:d5:97:a6:fa:00:31:c1:66:4c:99:63:30:a4:a9:3a:dd:
         e8:f8:39:d4:a0:9b:22:04:f1:e7:e4:70:17:8a:1f:54:ed:b2:
         e1:39:3a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----