Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft
File:                     F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft (raw, json)
Hash identifier:          SIm7ocpFoBG7ps6vhY2SPFHJJc5QP0SbgQs1pbcOfpQ=
Subject key identifier:   FF:D5:21:A1:46:A5:FD:C2:BF:C4:80:15:FB:52:74:90:64:FD:78:D2
Authority key identifier: 17:4D:54:5B:29:3C:16:DC:EF:DC:41:D1:56:F4:91:9B:B1:54:C0:D9
Certificate issuer:       /CN=174d545b293c16dcefdc41d156f4919bb154c0d9
Certificate serial:       0199FE473F7A30586E89F5539DDFEB36C253
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/F01UWyk8Ftzv3EHRVvSRm7FUwNk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft
Manifest number:          0B71
Signing time:             Sun 19 Oct 2025 21:01:46 +0000
Manifest this update:     Sun 19 Oct 2025 21:01:46 +0000
Manifest next update:     Mon 20 Oct 2025 21:01:46 +0000
Files and hashes:         1: F01UWyk8Ftzv3EHRVvSRm7FUwNk.crl (hash: Zqrvq7uVj6TOXr45OAp/YXpEUGfa4qsUXXwLiZTjAX0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/F01UWyk8Ftzv3EHRVvSRm7FUwNk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Oct 2025 15:00:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:fe:47:3f:7a:30:58:6e:89:f5:53:9d:df:eb:36:c2:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=174d545b293c16dcefdc41d156f4919bb154c0d9
        Validity
            Not Before: Oct 19 21:01:46 2025 GMT
            Not After : Oct 20 21:01:46 2025 GMT
        Subject: CN=ffd521a146a5fdc2bfc48015fb52749064fd78d2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:af:fa:05:42:05:0f:19:05:54:e5:31:0e:59:
                    f2:86:04:35:c0:20:cc:90:b1:a9:a4:ba:16:a8:86:
                    10:82:d0:71:d1:b0:b7:dc:46:bb:69:8e:2c:93:c1:
                    ab:33:52:75:87:6f:1a:9e:07:11:1c:79:b3:26:b7:
                    3b:8e:4d:18:74:ab:83:92:90:cf:f0:46:34:58:70:
                    3e:62:79:47:f3:4d:a4:7a:39:6b:4b:7f:d4:ff:ed:
                    d8:a7:fe:52:f3:3a:7e:6b:d2:06:c8:f7:4f:07:34:
                    5e:4e:23:01:e7:9b:af:dd:99:ed:34:6b:36:bb:f7:
                    cb:37:ac:9e:7f:fb:96:a1:01:f1:5c:b0:bc:c7:f7:
                    f8:59:5d:c1:fc:40:b0:b8:98:d8:ef:6e:0a:26:6b:
                    19:4f:f1:34:53:b6:be:a0:4f:6f:c0:65:8c:4c:6b:
                    ec:02:b4:20:2a:1b:b6:10:21:b2:58:54:99:31:8f:
                    e3:c2:d6:aa:9f:7f:a2:fa:0e:32:b7:ab:28:09:ef:
                    75:c7:1c:5b:95:b0:27:11:8e:c0:e5:ad:6f:ce:8e:
                    e6:f9:d6:fc:a3:e0:e3:7d:d7:ae:63:9c:54:26:fa:
                    5f:fc:c5:10:08:36:88:9d:f1:ac:9d:a9:ef:64:d8:
                    e9:27:51:e1:5b:1a:06:6e:66:8f:18:da:94:f0:f4:
                    3e:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:D5:21:A1:46:A5:FD:C2:BF:C4:80:15:FB:52:74:90:64:FD:78:D2
            X509v3 Authority Key Identifier:
                keyid:17:4D:54:5B:29:3C:16:DC:EF:DC:41:D1:56:F4:91:9B:B1:54:C0:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F01UWyk8Ftzv3EHRVvSRm7FUwNk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:99:a0:da:b1:75:2a:e9:d4:8f:16:b0:d7:ed:d8:02:21:64:
         47:38:cc:f3:75:81:c6:68:45:5f:40:35:6b:b6:bb:33:6a:71:
         3a:1f:02:1f:78:49:dd:d2:66:f5:2f:70:64:73:5b:c8:2c:c7:
         44:07:0d:4d:35:8c:bf:fe:c4:e6:19:df:13:49:b8:ef:6c:99:
         81:3f:09:6a:86:ba:f5:66:6f:7a:76:ec:bc:e8:5c:51:71:69:
         48:ee:d1:96:29:bb:fc:b9:8a:ab:88:c3:d6:91:9d:68:e1:b5:
         c2:81:37:53:88:fa:e4:28:3f:29:de:e4:6e:f4:71:ae:40:09:
         3c:24:b0:b2:c3:ba:bd:96:fe:1f:9d:60:23:06:b6:da:7d:e8:
         83:12:7c:93:4b:e6:7b:b5:a3:17:95:2f:66:32:3e:52:b4:79:
         48:9e:12:ea:0f:c9:ec:c1:58:05:fc:ff:53:2c:95:79:c0:0d:
         5f:17:6e:fd:f6:e5:1f:21:44:48:a8:a9:1f:2d:85:72:d2:7b:
         f2:7f:f3:ef:6f:2d:92:29:56:a3:53:d4:ce:86:f6:df:d3:b5:
         13:e8:4e:62:a8:1b:b7:07:16:10:5d:13:d0:3b:82:36:d5:4b:
         37:a4:c7:43:73:31:a1:47:01:a1:a5:4b:ae:52:25:0d:34:66:
         69:38:42:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----