Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/122d89-8e43-40c3-9cef-b33916b9f839/1/obeZgyScHV-GGfE1xtbn43379WI.mft
File:                     obeZgyScHV-GGfE1xtbn43379WI.mft (raw, json)
Hash identifier:          w824wPQBixiU3JfYf25VLbtt4bwszDfHMDW8QS/Wrgk=
Subject key identifier:   48:46:ED:7A:64:E3:2B:D5:99:73:63:8E:91:D0:5D:19:EE:8B:40:7D
Authority key identifier: A1:B7:99:83:24:9C:1D:5F:86:19:F1:35:C6:D6:E7:E3:7D:FB:F5:62
Certificate issuer:       /CN=a1b79983249c1d5f8619f135c6d6e7e37dfbf562
Certificate serial:       0198D6613F6E1B7028E289C46768AAC97CDF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/obeZgyScHV-GGfE1xtbn43379WI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fe/122d89-8e43-40c3-9cef-b33916b9f839/1/obeZgyScHV-GGfE1xtbn43379WI.mft
Manifest number:          0E4E
Signing time:             Sat 23 Aug 2025 10:02:34 +0000
Manifest this update:     Sat 23 Aug 2025 10:02:34 +0000
Manifest next update:     Sun 24 Aug 2025 10:02:34 +0000
Files and hashes:         1: obeZgyScHV-GGfE1xtbn43379WI.crl (hash: lOZmqc5CwpCtIOnXJkF6kf7/YA9yD5lGKO3SULLRgiE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fe/122d89-8e43-40c3-9cef-b33916b9f839/1/obeZgyScHV-GGfE1xtbn43379WI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fe/122d89-8e43-40c3-9cef-b33916b9f839/1/obeZgyScHV-GGfE1xtbn43379WI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/obeZgyScHV-GGfE1xtbn43379WI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:02:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:61:3f:6e:1b:70:28:e2:89:c4:67:68:aa:c9:7c:df
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1b79983249c1d5f8619f135c6d6e7e37dfbf562
        Validity
            Not Before: Aug 23 10:02:34 2025 GMT
            Not After : Aug 24 10:02:34 2025 GMT
        Subject: CN=4846ed7a64e32bd59973638e91d05d19ee8b407d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:d0:07:62:dd:1c:12:9a:a3:f0:21:e2:ca:e8:
                    83:87:44:49:b2:c8:ee:c6:70:8a:ba:46:2e:12:9c:
                    5a:db:33:13:0d:5a:36:e4:43:72:19:1b:15:19:52:
                    f9:a4:2a:f4:e9:ef:5b:3c:ca:8e:68:db:14:67:77:
                    7f:6b:5c:cb:7e:37:c1:2f:32:73:74:bd:79:51:02:
                    7e:9b:83:97:27:db:48:c5:3e:58:4c:fc:8e:35:62:
                    b1:c7:d8:b5:de:ee:65:25:6c:bb:ae:b6:bb:78:f0:
                    cb:ed:4f:9c:45:de:2a:07:c8:9a:b0:68:9c:70:87:
                    00:1e:3f:ad:38:ae:3c:f2:cb:54:e5:83:ac:2e:94:
                    51:8d:4b:44:c6:a8:e2:78:4a:18:db:81:bc:96:df:
                    00:f7:3e:a7:dc:90:d3:0f:d4:94:f4:cf:d6:96:02:
                    ea:f4:8e:5b:1e:f2:8a:2f:86:3e:7d:b4:6f:be:de:
                    bd:b2:8d:85:35:73:4d:75:bd:5c:60:9c:ef:69:69:
                    69:f8:26:69:95:2f:1f:3c:60:fc:f4:6d:86:4e:b7:
                    65:e1:05:8e:81:04:d2:f4:f5:d4:f7:44:57:7e:c1:
                    27:57:47:e7:af:23:29:a5:0e:c5:c7:4e:0c:92:eb:
                    c3:82:20:27:af:69:2a:8b:99:0e:92:ad:b1:f7:88:
                    1b:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:46:ED:7A:64:E3:2B:D5:99:73:63:8E:91:D0:5D:19:EE:8B:40:7D
            X509v3 Authority Key Identifier:
                keyid:A1:B7:99:83:24:9C:1D:5F:86:19:F1:35:C6:D6:E7:E3:7D:FB:F5:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obeZgyScHV-GGfE1xtbn43379WI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/122d89-8e43-40c3-9cef-b33916b9f839/1/obeZgyScHV-GGfE1xtbn43379WI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/122d89-8e43-40c3-9cef-b33916b9f839/1/obeZgyScHV-GGfE1xtbn43379WI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:9d:85:2c:25:9f:e5:f7:cb:9d:27:41:31:ad:41:82:cd:9f:
         f7:68:57:7e:6f:92:4e:fc:53:18:89:39:b7:35:8a:d4:0b:ae:
         97:9a:e8:ef:ad:c6:16:13:cb:f6:b7:f8:26:af:fd:82:8f:1f:
         d4:c5:9d:1c:f9:63:ad:d5:2e:a9:3c:e4:3e:2b:da:4f:e1:f9:
         94:d0:c9:a9:f3:6b:03:3c:17:75:29:d3:43:74:ee:a3:1d:cc:
         bb:ef:95:9c:51:23:e4:4e:57:e7:6e:02:36:13:bd:5a:ef:36:
         7d:c5:54:42:d4:fa:06:6c:85:8a:73:eb:b9:31:0e:98:0d:e7:
         21:f8:18:46:3d:4a:9f:0e:08:3e:4a:f2:df:5d:6e:3a:57:26:
         87:53:26:3d:5f:1e:99:98:f8:1e:5f:e3:8d:50:b2:43:9a:fa:
         e4:98:7e:ad:5b:c3:48:54:f4:03:3a:2f:93:b0:a0:11:b9:af:
         49:93:bb:6c:73:8a:b4:8d:57:60:90:d1:a1:28:0d:bd:be:cb:
         ce:82:a7:b6:c4:a7:2c:59:6c:5b:9e:78:30:82:f7:58:9a:37:
         75:22:0b:05:b4:31:fc:1e:64:e2:e8:06:a6:ee:db:ab:af:6b:
         e6:fb:fe:2e:df:a1:84:91:42:03:b1:54:f2:03:8b:00:ae:89:
         02:f0:37:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----