Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/cd41ba-2ea7-474f-8941-5fdb3228fe1f/1/L5FDTuFsYTNOwnDfVox3oLXeBSo.mft
File:                     L5FDTuFsYTNOwnDfVox3oLXeBSo.mft (raw, json)
Hash identifier:          VkrupOkfmCaypKv52GKJgdO//BzIZeT0Abxsm0YYjN8=
Subject key identifier:   7C:21:02:3E:D4:AD:E2:81:F9:95:C8:3C:92:DD:D4:7A:F6:E6:A6:79
Authority key identifier: 2F:91:43:4E:E1:6C:61:33:4E:C2:70:DF:56:8C:77:A0:B5:DE:05:2A
Certificate issuer:       /CN=2f91434ee16c61334ec270df568c77a0b5de052a
Certificate serial:       0198D4E02C1B90CB26A1C1B5E029B03BC2F4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/L5FDTuFsYTNOwnDfVox3oLXeBSo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b6/cd41ba-2ea7-474f-8941-5fdb3228fe1f/1/L5FDTuFsYTNOwnDfVox3oLXeBSo.mft
Manifest number:          0D2E
Signing time:             Sat 23 Aug 2025 03:01:57 +0000
Manifest this update:     Sat 23 Aug 2025 03:01:57 +0000
Manifest next update:     Sun 24 Aug 2025 03:01:57 +0000
Files and hashes:         1: L5FDTuFsYTNOwnDfVox3oLXeBSo.crl (hash: Al9wEXGlL9yCRWvjuzSt2U0hDdd2Tj7LQaWg1/H6GiU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b6/cd41ba-2ea7-474f-8941-5fdb3228fe1f/1/L5FDTuFsYTNOwnDfVox3oLXeBSo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b6/cd41ba-2ea7-474f-8941-5fdb3228fe1f/1/L5FDTuFsYTNOwnDfVox3oLXeBSo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/L5FDTuFsYTNOwnDfVox3oLXeBSo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:01:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:e0:2c:1b:90:cb:26:a1:c1:b5:e0:29:b0:3b:c2:f4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2f91434ee16c61334ec270df568c77a0b5de052a
        Validity
            Not Before: Aug 23 03:01:57 2025 GMT
            Not After : Aug 24 03:01:57 2025 GMT
        Subject: CN=7c21023ed4ade281f995c83c92ddd47af6e6a679
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:da:01:cb:c7:f1:8e:20:d9:67:7d:f6:bd:d5:
                    75:8c:bb:b5:81:61:ef:4c:c5:7e:bb:9f:c5:45:36:
                    b0:86:83:f9:96:da:92:32:19:76:3d:6b:5f:a6:82:
                    e8:50:8c:39:ab:55:a7:de:e8:d2:11:38:fb:22:21:
                    13:ed:83:ba:ae:38:31:0f:32:ac:44:bc:fb:0a:f6:
                    45:51:f1:31:7f:f1:f0:22:5b:b6:2b:82:b2:0e:28:
                    c8:a0:8e:30:15:b5:7c:08:c1:ad:bc:e7:57:49:19:
                    c9:a9:44:cd:ae:b8:69:9c:34:13:8a:46:9b:a1:5c:
                    c3:ab:d0:06:b5:60:73:fb:9f:20:64:a2:42:d9:24:
                    79:85:c3:c7:26:ad:f1:2b:2b:a2:69:b1:d8:65:eb:
                    05:5a:a2:88:c8:73:e5:d2:e0:69:8a:35:a0:a7:fc:
                    8a:ee:b4:c7:bb:1c:1c:f4:f0:9b:eb:6b:a4:2c:7d:
                    9f:5d:98:04:43:96:b2:9d:79:f5:00:11:07:cc:30:
                    42:e9:a7:df:7d:c3:47:42:6f:db:bf:70:35:7c:6f:
                    52:66:15:9e:e3:dc:d2:05:c6:d4:bb:aa:61:c0:e0:
                    1d:6d:bd:71:25:37:bc:87:ad:d2:91:bd:fe:87:fa:
                    2c:4c:54:c2:5b:1e:53:f9:a7:8b:0d:21:ad:b6:d3:
                    f2:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:21:02:3E:D4:AD:E2:81:F9:95:C8:3C:92:DD:D4:7A:F6:E6:A6:79
            X509v3 Authority Key Identifier:
                keyid:2F:91:43:4E:E1:6C:61:33:4E:C2:70:DF:56:8C:77:A0:B5:DE:05:2A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5FDTuFsYTNOwnDfVox3oLXeBSo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/cd41ba-2ea7-474f-8941-5fdb3228fe1f/1/L5FDTuFsYTNOwnDfVox3oLXeBSo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/cd41ba-2ea7-474f-8941-5fdb3228fe1f/1/L5FDTuFsYTNOwnDfVox3oLXeBSo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:af:2a:0f:8d:29:6a:4f:2a:5e:dc:10:cd:67:7f:a9:7d:2b:
         cb:0b:36:2e:bc:08:ae:77:8b:fb:86:c9:6d:92:97:be:a6:ff:
         22:f6:af:f7:9e:80:bb:b2:ba:02:90:9c:c5:97:84:52:62:3d:
         13:90:4f:a2:6f:5e:dc:ba:86:16:0a:68:77:ac:1d:2a:0c:8d:
         2b:7f:2b:58:7c:a4:b9:b4:c8:30:12:e1:83:f3:b0:4a:ff:08:
         e1:b8:15:d0:e7:e4:df:0b:ba:fe:a0:04:4b:f2:19:65:22:76:
         2f:67:6c:44:dc:21:7c:dd:32:66:89:93:56:28:d2:a0:9b:c3:
         0a:74:1a:e6:33:b1:b4:9d:0d:e8:33:a1:c3:2f:6c:c3:3a:54:
         78:cb:a6:36:d2:3f:df:02:56:07:9a:e0:ea:18:e7:b4:c3:a4:
         34:45:3a:7d:01:96:fc:00:a5:33:8d:04:9f:76:73:66:69:3d:
         aa:09:a5:3b:78:e6:9f:0d:73:99:6c:41:16:6e:95:ff:ac:24:
         13:67:f3:95:dc:17:30:0f:e5:1f:fe:6a:29:98:08:a2:fd:49:
         e6:6a:64:9e:2e:d1:42:f7:ce:20:cc:75:f9:b0:0f:9c:cf:63:
         62:b3:53:c7:32:8d:73:66:60:35:dc:52:b5:dd:da:58:3e:25:
         ac:b5:2f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----