Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
File:                     tRm7YH6Ot267nMsgIsxkbDzOC2A.mft (raw, json)
Hash identifier:          auepCiwFjvzrPNt7mxLRo5jQKpkfQFoRw57Kxm0yUro=
Subject key identifier:   98:F5:84:B9:B7:CC:C0:80:03:C7:F6:8A:D3:2B:C3:3C:FE:5E:1A:91
Authority key identifier: B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60
Certificate issuer:       /CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60
Certificate serial:       019A03A3F15534167AA465DB7790DABEC69A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
Manifest number:          16E2
Signing time:             Mon 20 Oct 2025 22:01:07 +0000
Manifest this update:     Mon 20 Oct 2025 22:01:07 +0000
Manifest next update:     Tue 21 Oct 2025 22:01:07 +0000
Files and hashes:         1: tRm7YH6Ot267nMsgIsxkbDzOC2A.crl (hash: s6Exyrjrtkhjv7hIFBnELiyWTQ9y+mFq/dd8u2G8H1A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 21 Oct 2025 22:00:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:03:a3:f1:55:34:16:7a:a4:65:db:77:90:da:be:c6:9a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b519bb607e8eb76ebb9ccb2022cc646c3cce0b60
        Validity
            Not Before: Oct 20 22:01:07 2025 GMT
            Not After : Oct 21 22:01:07 2025 GMT
        Subject: CN=98f584b9b7ccc08003c7f68ad32bc33cfe5e1a91
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:2c:8b:a6:24:d2:a9:d5:85:f5:7d:fb:9b:39:
                    3f:6e:89:ca:bc:1f:2c:a9:24:97:05:ca:44:03:54:
                    85:69:61:85:61:8b:40:35:13:01:66:1b:13:6b:0d:
                    bb:3f:3e:ae:c9:08:53:14:ab:77:b6:ea:cb:00:ca:
                    4a:d8:b8:73:ec:9f:15:ab:8e:ee:b2:7c:3f:22:43:
                    8c:65:9f:8d:65:60:28:db:8f:99:df:a8:0e:23:34:
                    98:04:a0:92:86:83:1d:43:02:77:e9:e4:a9:c3:bc:
                    f2:1e:7a:01:da:6f:13:fe:b5:6b:0a:15:dd:96:26:
                    c8:c3:d5:6d:d3:ee:f7:ae:8f:7b:7b:27:6b:34:ea:
                    54:0f:c0:de:27:c3:b7:b4:91:85:2e:0c:83:e7:5a:
                    68:0c:94:79:a0:2a:35:51:96:4b:9e:8d:9c:22:69:
                    f7:70:10:6a:8c:37:9b:54:5e:dc:78:7e:bd:02:7c:
                    d8:df:d4:4f:0c:2e:4f:94:81:1b:14:47:ca:0b:9d:
                    c1:8b:a7:cb:a1:65:04:9c:57:48:9c:f9:d6:15:73:
                    15:ec:c9:69:90:53:6f:20:40:6d:8e:14:fc:9a:1e:
                    af:79:8e:6a:e8:34:b2:d7:bc:b8:2c:fa:71:4a:b3:
                    ca:57:d8:a7:85:df:f2:cf:7e:12:61:22:2a:5b:92:
                    4f:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                98:F5:84:B9:B7:CC:C0:80:03:C7:F6:8A:D3:2B:C3:3C:FE:5E:1A:91
            X509v3 Authority Key Identifier:
                keyid:B5:19:BB:60:7E:8E:B7:6E:BB:9C:CB:20:22:CC:64:6C:3C:CE:0B:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tRm7YH6Ot267nMsgIsxkbDzOC2A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4e5049-856d-4c07-8556-e18184e80258/1/tRm7YH6Ot267nMsgIsxkbDzOC2A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:56:1f:c3:13:7f:2c:d3:74:62:18:51:68:3a:0d:3a:1d:6a:
         4b:fd:25:4a:5e:32:3c:53:9d:d3:f1:51:01:9e:46:bc:e7:46:
         87:ae:6a:09:f1:a7:46:cd:93:2e:5d:81:fa:83:fa:be:25:7a:
         66:ce:fd:a4:8d:06:1b:6c:7b:d5:bb:69:78:be:f7:6a:77:1f:
         82:db:6c:9d:31:27:02:b3:53:c3:a5:65:28:32:fa:19:fd:fc:
         2d:fa:36:93:fe:62:93:e6:08:84:31:c5:d2:2d:a3:7c:7f:85:
         a9:c5:96:b5:37:98:9d:dd:26:9b:c5:8a:59:be:a8:fb:b8:c4:
         89:53:d6:4d:12:4a:a4:91:31:a7:ac:19:da:44:7d:23:9f:27:
         17:17:76:15:2c:e5:47:30:b0:40:1a:91:1b:69:25:28:7d:0b:
         1b:b8:65:cf:a1:e1:23:3e:cc:6f:b3:c4:2c:e0:fb:e0:3c:17:
         5c:2e:20:ed:a8:b3:84:8d:da:66:7b:03:41:9d:cf:b5:25:0c:
         21:7a:ae:08:32:ab:73:77:54:87:86:3e:e0:42:96:f5:63:51:
         4a:bf:f1:18:db:60:04:64:80:10:25:ce:69:ca:c7:50:9b:64:
         2a:f0:76:cd:d4:86:f8:46:27:8d:0b:e0:8e:ed:1a:32:24:6a:
         42:30:18:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----