Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
File:                     2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft (raw, json)
Hash identifier:          I4ituhrn8+bxXFD0p/o5Ns54ttI4rMoDkZYMpmWh4T4=
Subject key identifier:   FE:89:B6:9E:DD:0A:D4:AF:35:DB:1C:31:D9:02:23:B3:79:0E:75:00
Authority key identifier: DB:F5:BC:B9:1C:64:0A:0A:34:29:05:E5:A5:17:07:52:8F:5A:33:A1
Certificate issuer:       /CN=dbf5bcb91c640a0a342905e5a51707528f5a33a1
Certificate serial:       0198D661095230D82C8BA7C7BD90753811B3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2_W8uRxkCgo0KQXlpRcHUo9aM6E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
Manifest number:          143A
Signing time:             Sat 23 Aug 2025 10:02:20 +0000
Manifest this update:     Sat 23 Aug 2025 10:02:20 +0000
Manifest next update:     Sun 24 Aug 2025 10:02:20 +0000
Files and hashes:         1: 2_W8uRxkCgo0KQXlpRcHUo9aM6E.crl (hash: IiJtx9Zqrh0CbZrzUO8qm3CVMR1CZlBLk3WHyJffLYg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2_W8uRxkCgo0KQXlpRcHUo9aM6E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:61:09:52:30:d8:2c:8b:a7:c7:bd:90:75:38:11:b3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dbf5bcb91c640a0a342905e5a51707528f5a33a1
        Validity
            Not Before: Aug 23 10:02:20 2025 GMT
            Not After : Aug 24 10:02:20 2025 GMT
        Subject: CN=fe89b69edd0ad4af35db1c31d90223b3790e7500
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:b6:0f:bc:9b:a0:52:18:83:d4:68:db:55:59:
                    13:1c:40:6b:be:83:74:d2:1e:96:b7:a1:90:90:59:
                    7e:10:75:99:12:1c:d2:52:ce:b9:9a:c6:5b:a4:82:
                    e1:4c:aa:98:7d:4f:3d:cc:53:da:70:f4:e7:7d:e2:
                    80:85:06:25:ba:11:ad:3f:74:ff:16:47:96:6e:f3:
                    7a:f7:04:ec:d5:00:75:88:9f:dd:25:08:76:3f:db:
                    6b:b5:e7:2c:15:8d:4b:37:cc:b9:b4:0b:4e:a7:bc:
                    5a:2c:1d:74:4b:52:af:d2:8f:fd:90:a4:33:37:17:
                    9d:c1:0f:c1:15:60:e7:c9:10:2d:e4:0e:fa:fa:fa:
                    25:d2:35:d7:fe:ba:01:af:00:b6:64:c7:82:3e:db:
                    29:d6:46:1c:3f:61:a7:34:44:5c:1f:e4:35:fc:cb:
                    1e:21:5d:7c:15:3c:ec:08:d8:4d:58:35:fa:e4:7c:
                    7a:9d:b2:0a:8a:df:36:20:96:82:17:fc:b2:cd:e7:
                    13:21:de:36:99:78:71:e3:f1:7b:c4:25:4c:37:60:
                    f5:d0:50:c9:68:8d:a1:be:ef:e5:b9:fa:c0:07:92:
                    69:de:25:5b:f2:8a:d8:01:51:d6:b2:67:75:2b:84:
                    8c:03:54:fc:fd:93:fa:17:ed:42:21:1b:7f:c8:1c:
                    b7:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:89:B6:9E:DD:0A:D4:AF:35:DB:1C:31:D9:02:23:B3:79:0E:75:00
            X509v3 Authority Key Identifier:
                keyid:DB:F5:BC:B9:1C:64:0A:0A:34:29:05:E5:A5:17:07:52:8F:5A:33:A1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2_W8uRxkCgo0KQXlpRcHUo9aM6E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/27ed2d-07c7-41d8-9c24-12b4ebc41451/1/2_W8uRxkCgo0KQXlpRcHUo9aM6E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         88:31:7a:09:1c:ba:06:2d:62:6b:2e:69:85:de:13:a9:2d:2d:
         68:31:68:2d:a7:8f:cd:6f:8d:7b:08:68:3d:03:76:4d:e1:7e:
         6e:f1:07:92:f9:55:a2:cd:4d:bc:e7:b8:ce:9b:13:64:7c:63:
         f7:bc:97:3b:68:98:09:b9:a3:e6:59:cf:d6:02:f2:09:d1:34:
         f6:95:93:31:16:92:ae:5c:bf:66:7d:c5:77:32:82:d8:bd:99:
         3c:46:8e:44:c7:e8:78:9d:a0:38:e0:22:06:da:ec:96:ff:ae:
         58:51:2f:4e:b7:ac:34:91:75:4a:1a:85:32:9f:62:d2:2c:58:
         d6:23:85:34:75:2f:34:14:a6:27:31:85:65:ee:c8:7f:7b:cb:
         e2:17:fd:65:0c:cd:fc:a3:b5:32:22:65:e3:62:cc:91:e4:bf:
         21:a8:9a:45:ef:3b:3b:ad:dc:ea:37:0f:a1:f5:de:aa:b5:aa:
         c8:5e:01:25:16:74:38:23:28:90:32:58:ea:25:39:7d:b4:e5:
         a7:a8:fd:b3:8e:0a:d5:8c:58:ef:39:26:22:b8:a9:54:71:62:
         64:d7:7e:b4:51:02:f8:de:a0:ff:0a:23:3d:67:de:68:ab:c1:
         da:0b:8f:13:82:a8:da:9e:25:e6:39:b8:8d:fc:04:18:05:6b:
         f3:d6:54:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----