Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft
File:                     BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft (raw, json)
Hash identifier:          2IB8c7QpL8wAizpUqUmZUXh83LgPmOTSTcHXS1DxMHw=
Subject key identifier:   EE:B4:F1:7D:77:82:7A:2B:09:58:8F:8F:82:0F:C7:D1:E0:93:A2:B7
Authority key identifier: 05:6C:66:D4:5F:E7:E2:F3:55:99:57:2A:77:6B:12:76:4D:C6:9A:01
Certificate issuer:       /CN=056c66d45fe7e2f35599572a776b12764dc69a01
Certificate serial:       0198D516199BEDBCAC0333005FE6AAF6A734
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BWxm1F_n4vNVmVcqd2sSdk3GmgE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft
Manifest number:          4F
Signing time:             Sat 23 Aug 2025 04:00:51 +0000
Manifest this update:     Sat 23 Aug 2025 04:00:51 +0000
Manifest next update:     Sun 24 Aug 2025 04:00:51 +0000
Files and hashes:         1: BWxm1F_n4vNVmVcqd2sSdk3GmgE.crl (hash: lmdb86FGqoqbvBHIQKox3jKJBhj4Uq9x+LXvaHkKpZE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BWxm1F_n4vNVmVcqd2sSdk3GmgE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 04:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:16:19:9b:ed:bc:ac:03:33:00:5f:e6:aa:f6:a7:34
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=056c66d45fe7e2f35599572a776b12764dc69a01
        Validity
            Not Before: Aug 23 04:00:51 2025 GMT
            Not After : Aug 24 04:00:51 2025 GMT
        Subject: CN=eeb4f17d77827a2b09588f8f820fc7d1e093a2b7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:6a:3d:d3:e1:91:41:56:15:b4:b5:16:e2:5f:
                    17:1c:be:02:a6:6a:48:e6:35:1e:de:ba:a5:07:c7:
                    79:3a:38:31:a6:8a:1a:6b:93:d0:fa:43:5e:e3:8a:
                    84:ae:93:8e:be:31:02:6a:25:9e:ae:1c:c3:1a:28:
                    4c:78:ee:71:ad:dc:24:78:83:3a:e7:74:37:54:c8:
                    a6:e5:8a:a3:4d:43:5c:08:53:35:ca:b6:f4:55:a1:
                    d2:ff:d6:85:d2:e9:5e:9c:f1:c0:88:d0:58:86:33:
                    ba:1f:4a:8b:e1:a5:e3:1a:eb:db:7f:44:13:17:f3:
                    ed:6d:d4:58:dc:67:84:fc:d7:99:cd:d0:3f:0d:34:
                    8e:86:68:a2:70:60:1f:b4:f1:d2:2c:83:43:13:f7:
                    1e:b5:3b:96:f1:b4:9b:ab:de:58:59:27:ad:2d:f2:
                    6b:71:0c:4c:14:48:a2:65:28:fa:72:90:22:77:cb:
                    04:a6:e6:6c:6c:2e:55:05:86:aa:a5:d6:7d:cc:aa:
                    52:1c:a6:46:de:c4:cc:1a:5a:da:1a:4b:47:ca:bb:
                    ad:d4:c2:56:3b:9d:45:0c:a3:80:3b:16:1b:c6:60:
                    78:94:b9:1f:fa:10:72:a8:5c:b8:96:ac:4d:75:aa:
                    3a:9d:c2:5d:2e:87:35:da:93:b7:de:58:d2:3a:9e:
                    8d:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:B4:F1:7D:77:82:7A:2B:09:58:8F:8F:82:0F:C7:D1:E0:93:A2:B7
            X509v3 Authority Key Identifier:
                keyid:05:6C:66:D4:5F:E7:E2:F3:55:99:57:2A:77:6B:12:76:4D:C6:9A:01

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWxm1F_n4vNVmVcqd2sSdk3GmgE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c02c5c-ea17-4893-85e0-0205460e8990/1/BWxm1F_n4vNVmVcqd2sSdk3GmgE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:c8:e7:6d:57:f3:09:3a:f7:69:41:87:d7:06:fb:35:83:ce:
         5d:81:69:c1:ca:54:60:ac:ee:a1:7c:0d:5a:0d:97:9f:22:5f:
         1e:6a:c9:4e:87:00:10:38:43:7d:00:f2:b1:92:3d:93:45:8b:
         2f:23:fd:a3:9a:e8:4c:ab:b5:ee:e9:11:23:3e:3e:54:62:99:
         46:94:4c:be:a9:30:16:83:b3:1d:3b:63:dc:97:6a:6c:5e:06:
         20:77:4c:c8:c2:dd:3e:e3:41:19:60:49:d8:d9:7e:8c:fd:c6:
         a6:cc:6b:f4:c3:1f:69:7e:fd:47:53:7b:23:a1:fd:20:f9:3b:
         bb:52:16:28:f4:d1:c8:0b:b4:c5:84:b6:cc:49:8d:6a:d2:a6:
         7f:67:9b:5d:64:1b:32:89:1e:1f:e4:49:19:b1:c8:e8:1b:6c:
         02:01:c3:60:5a:8e:cc:2a:8e:d4:6f:8e:83:6f:f8:46:43:5e:
         53:43:83:18:b1:6f:5f:30:86:b9:78:3d:14:bd:ba:1b:31:ef:
         d8:5d:03:2b:e4:0d:24:4a:d0:fc:fe:22:26:52:91:bd:de:03:
         8d:a1:ce:65:48:3c:ca:fa:3f:9c:f6:61:24:29:33:5a:2a:f1:
         fc:c7:72:27:38:4a:4b:a9:7c:73:56:df:de:a6:69:81:cc:72:
         4e:3f:65:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----