Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5813e4-4861-4630-bfdb-37f999cece23/1/ZFOB6enwr6NsKmagd8odV50ikr8.mft
File:                     ZFOB6enwr6NsKmagd8odV50ikr8.mft (raw, json)
Hash identifier:          dlfglKvHM0JUhQdn8h/7Zy0oDFTXa3aPVJF1H8GWXq8=
Subject key identifier:   C6:D5:40:BD:BB:F5:B3:B5:A9:D7:9C:FE:BD:AF:79:50:31:EE:50:FC
Authority key identifier: 64:53:81:E9:E9:F0:AF:A3:6C:2A:66:A0:77:CA:1D:57:9D:22:92:BF
Certificate issuer:       /CN=645381e9e9f0afa36c2a66a077ca1d579d2292bf
Certificate serial:       0198D6613C511FD5ECCE16E7F4DB458872A9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ZFOB6enwr6NsKmagd8odV50ikr8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/5813e4-4861-4630-bfdb-37f999cece23/1/ZFOB6enwr6NsKmagd8odV50ikr8.mft
Manifest number:          1465
Signing time:             Sat 23 Aug 2025 10:02:33 +0000
Manifest this update:     Sat 23 Aug 2025 10:02:33 +0000
Manifest next update:     Sun 24 Aug 2025 10:02:33 +0000
Files and hashes:         1: ZFOB6enwr6NsKmagd8odV50ikr8.crl (hash: rvgPp2AoBa3gN1jDFiVTQUvfGlfc2Mv3fitq23u3ir0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/5813e4-4861-4630-bfdb-37f999cece23/1/ZFOB6enwr6NsKmagd8odV50ikr8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/5813e4-4861-4630-bfdb-37f999cece23/1/ZFOB6enwr6NsKmagd8odV50ikr8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ZFOB6enwr6NsKmagd8odV50ikr8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:61:3c:51:1f:d5:ec:ce:16:e7:f4:db:45:88:72:a9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=645381e9e9f0afa36c2a66a077ca1d579d2292bf
        Validity
            Not Before: Aug 23 10:02:33 2025 GMT
            Not After : Aug 24 10:02:33 2025 GMT
        Subject: CN=c6d540bdbbf5b3b5a9d79cfebdaf795031ee50fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:83:fa:d5:ed:8a:18:8e:3e:6b:b5:d8:81:98:
                    f3:46:a8:ba:b8:fc:40:bf:31:72:c2:3a:68:68:c0:
                    40:e8:50:86:9d:09:6b:13:09:9d:42:5e:91:c8:7a:
                    3c:c7:78:1c:c1:cf:29:82:d4:e8:98:f6:ab:b6:f3:
                    6d:58:65:89:22:23:d5:30:a0:77:5a:f1:cd:34:03:
                    e4:e3:c6:60:a6:2f:a2:29:6d:69:c0:ea:2d:5c:d3:
                    9a:2a:e9:bc:ab:06:12:5d:ce:99:2d:7b:a1:0e:6a:
                    5c:cf:16:f1:a0:3c:9e:44:45:1a:2f:52:5d:8a:8f:
                    17:a2:1a:ae:55:2a:ac:61:27:f4:41:91:ef:b7:8b:
                    d5:9d:46:e5:12:1d:a8:76:44:a4:a1:57:0f:6c:82:
                    c9:ee:7f:91:19:50:18:d8:e9:8a:5d:66:94:58:d9:
                    16:46:b0:23:f3:ff:9a:10:75:1d:ca:bb:ad:4b:ff:
                    85:57:45:57:58:2e:e9:2a:60:72:d4:ab:b3:18:5e:
                    11:4e:3c:64:fa:9a:d5:e5:d1:42:c2:44:99:93:de:
                    c4:f7:72:f7:f4:86:25:a1:da:bb:f4:75:8d:ae:86:
                    3e:e5:4c:00:5d:e6:e9:52:6f:0a:18:62:58:6e:74:
                    d8:82:e5:20:b3:8a:21:63:52:34:27:a3:fd:86:f6:
                    03:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:D5:40:BD:BB:F5:B3:B5:A9:D7:9C:FE:BD:AF:79:50:31:EE:50:FC
            X509v3 Authority Key Identifier:
                keyid:64:53:81:E9:E9:F0:AF:A3:6C:2A:66:A0:77:CA:1D:57:9D:22:92:BF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZFOB6enwr6NsKmagd8odV50ikr8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5813e4-4861-4630-bfdb-37f999cece23/1/ZFOB6enwr6NsKmagd8odV50ikr8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5813e4-4861-4630-bfdb-37f999cece23/1/ZFOB6enwr6NsKmagd8odV50ikr8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6e:39:03:f1:7e:75:ab:41:62:d5:d1:f1:b4:ad:f0:a8:50:a8:
         db:95:74:4a:7a:6e:c7:16:72:40:61:a8:c3:82:e2:6a:4d:9b:
         c5:3c:fa:f2:c5:d9:f1:e6:fb:db:d0:dc:27:e4:b3:00:43:a0:
         40:3b:0f:2e:bb:a0:1d:ef:76:6c:c2:b9:88:b0:30:57:96:2f:
         89:ea:51:7c:46:07:a6:8b:eb:3c:2e:52:f8:e8:fc:8a:98:b1:
         ff:da:47:d0:f0:33:e6:59:92:b2:2b:38:b6:73:6a:8c:f0:6e:
         0f:56:28:89:a3:87:17:b9:c5:38:d7:68:d5:21:26:a0:9b:9a:
         62:2d:1c:c4:f8:19:e9:03:cd:0a:84:59:2a:41:98:67:af:77:
         63:3c:26:cb:99:f3:a2:53:51:71:57:9f:79:43:3a:3f:ec:23:
         e1:9d:6e:aa:a4:b1:6a:e6:74:2c:e8:61:24:e7:85:22:42:92:
         57:51:c6:35:30:b8:73:91:b1:c4:a2:43:c7:5b:0a:43:fc:f4:
         6c:37:5a:54:a9:61:a9:ae:c3:0f:d6:4e:2c:6c:d2:95:56:0b:
         5c:ad:dd:44:88:54:5a:94:27:51:30:ac:07:2a:56:0d:2d:a8:
         48:09:45:dd:df:ba:78:9e:11:b1:7b:4f:58:0d:49:2d:08:da:
         bc:1b:e0:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----