Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
File:                     zfDoJMYqWSimUCFO8z6Md-fB_40.mft (raw, json)
Hash identifier:          xWoV82m3t08rW8NhpUpiApKOwUBZoIeriX8AEPlzRd4=
Subject key identifier:   15:B0:94:E3:5B:06:25:F5:87:7B:2C:70:A3:F6:33:1E:0F:16:64:62
Authority key identifier: CD:F0:E8:24:C6:2A:59:28:A6:50:21:4E:F3:3E:8C:77:E7:C1:FF:8D
Certificate issuer:       /CN=cdf0e824c62a5928a650214ef33e8c77e7c1ff8d
Certificate serial:       0199FFC8D3B377A12C87DF862B890031E5B2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
Manifest number:          1085
Signing time:             Mon 20 Oct 2025 04:02:55 +0000
Manifest this update:     Mon 20 Oct 2025 04:02:55 +0000
Manifest next update:     Tue 21 Oct 2025 04:02:55 +0000
Files and hashes:         1: zfDoJMYqWSimUCFO8z6Md-fB_40.crl (hash: sbm61ToYb4H95MfaSHcnD3M5q5ZxK/w3/WkuzA1Hdqc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 21 Oct 2025 04:02:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:ff:c8:d3:b3:77:a1:2c:87:df:86:2b:89:00:31:e5:b2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cdf0e824c62a5928a650214ef33e8c77e7c1ff8d
        Validity
            Not Before: Oct 20 04:02:55 2025 GMT
            Not After : Oct 21 04:02:55 2025 GMT
        Subject: CN=15b094e35b0625f5877b2c70a3f6331e0f166462
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:6b:ad:1b:34:0d:6a:b0:d9:a6:1d:1e:d3:b5:
                    2c:38:2e:48:68:fd:16:de:d7:45:a7:72:11:e6:43:
                    8b:20:57:6b:5a:90:0a:8a:58:eb:1a:c4:da:7f:71:
                    93:d8:7d:2f:76:4e:08:5f:56:0d:92:4a:22:c8:c8:
                    5d:65:e1:94:68:9d:c5:1b:e2:7e:3e:f0:fe:46:40:
                    07:f1:54:a9:8c:c4:6b:33:52:5a:53:c7:fc:aa:28:
                    fc:82:1e:21:d8:9b:3e:13:ce:6d:7a:54:41:69:3a:
                    bd:f5:06:05:73:0f:49:68:46:a0:b6:ed:4a:56:ea:
                    b7:2e:01:e1:19:ac:03:b6:64:0e:95:e2:cf:d2:f8:
                    93:4f:3d:0b:d1:3e:14:cb:60:bf:b5:18:50:ee:cd:
                    f2:25:60:60:de:46:d8:2e:14:e4:be:0f:47:ff:ca:
                    77:94:a2:94:83:78:fa:1a:20:4a:b7:77:39:08:cb:
                    88:c2:05:a2:bb:20:36:34:f4:74:ae:e5:bd:5c:73:
                    87:50:15:72:85:a7:4e:b8:ca:e7:85:a9:ca:cb:33:
                    33:cd:bf:b7:d8:1f:9a:03:80:b2:6a:ee:29:0d:51:
                    4b:39:70:22:a1:2d:7a:21:7e:de:e5:0d:52:a8:1c:
                    ed:b4:3d:52:96:21:c4:81:88:7e:2f:5e:05:c0:bc:
                    f8:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:B0:94:E3:5B:06:25:F5:87:7B:2C:70:A3:F6:33:1E:0F:16:64:62
            X509v3 Authority Key Identifier:
                keyid:CD:F0:E8:24:C6:2A:59:28:A6:50:21:4E:F3:3E:8C:77:E7:C1:FF:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:41:f0:fa:59:62:2c:08:19:ed:98:8a:ed:af:5b:e9:7c:38:
         96:8e:cb:ec:23:95:51:df:f7:dc:7d:70:5a:f4:02:81:63:17:
         6a:39:a7:bc:03:5c:64:93:7d:e5:a8:d2:47:70:dd:98:6b:6b:
         e4:74:4e:90:9a:42:b9:cc:06:aa:dc:f3:85:81:54:43:d5:2b:
         8a:f8:d6:d9:bf:d1:33:a8:26:b7:c6:8d:33:e1:d7:40:dc:13:
         2e:65:d6:e0:62:e0:ae:76:85:e7:c2:6a:a4:4e:44:be:e3:a8:
         0d:21:dc:c4:f8:5e:70:df:9c:8d:ee:5e:6e:c5:2b:8d:18:b5:
         5b:d4:ca:8e:78:ec:74:f8:78:59:ec:58:c7:dc:45:37:de:16:
         2f:ae:4a:1a:6d:ec:05:96:33:d2:c3:d8:1d:ad:93:1b:1c:64:
         af:73:61:16:95:70:f5:cf:88:e9:9e:19:dd:91:71:1b:8a:31:
         aa:0b:7f:aa:47:09:08:28:fd:b9:26:34:bf:31:1e:e9:53:8d:
         86:e8:90:56:fe:da:18:0b:c5:15:a8:22:5e:d5:ff:d7:42:e9:
         75:85:15:8b:be:24:41:61:bd:bc:20:21:5a:51:23:6e:87:62:
         42:00:56:a2:5f:7a:78:86:29:c5:39:4b:01:be:47:46:8e:d9:
         3f:3b:d2:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----