Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft
File:                     yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft (raw, json)
Hash identifier:          7fIvJ3fq3JDzUf4As9Ajg7rUqfMdZbqjwqofJQ4POyI=
Subject key identifier:   A5:DF:48:5E:2E:C8:A6:EF:80:CF:9C:E7:E3:B2:EA:4C:6B:38:00:A5
Authority key identifier: CA:1A:1A:62:C8:0B:0F:33:34:C5:DC:18:DC:64:B7:BF:97:88:90:13
Certificate issuer:       /CN=ca1a1a62c80b0f3334c5dc18dc64b7bf97889013
Certificate serial:       01988242886383D2A31A518056BEAD8502E0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yhoaYsgLDzM0xdwY3GS3v5eIkBM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft
Manifest number:          0936
Signing time:             Thu 07 Aug 2025 02:00:54 +0000
Manifest this update:     Thu 07 Aug 2025 02:00:54 +0000
Manifest next update:     Fri 08 Aug 2025 02:00:54 +0000
Files and hashes:         1: yhoaYsgLDzM0xdwY3GS3v5eIkBM.crl (hash: T9lK/Rf6fiuHD35s5R1ZKsjrbaAJh2qAXvL18vf5Cv0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yhoaYsgLDzM0xdwY3GS3v5eIkBM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 08 Aug 2025 02:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:82:42:88:63:83:d2:a3:1a:51:80:56:be:ad:85:02:e0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ca1a1a62c80b0f3334c5dc18dc64b7bf97889013
        Validity
            Not Before: Aug  7 02:00:54 2025 GMT
            Not After : Aug  8 02:00:54 2025 GMT
        Subject: CN=a5df485e2ec8a6ef80cf9ce7e3b2ea4c6b3800a5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:43:af:84:53:9c:99:e6:83:72:a9:f7:8c:7d:
                    13:ca:47:e7:ec:66:f8:fc:63:ec:0a:03:85:61:de:
                    ff:fa:df:08:14:1a:0e:75:11:6b:b9:6c:bc:1e:98:
                    ef:7c:f6:56:af:5a:dc:5d:08:4c:0a:4f:46:22:f1:
                    1b:f3:a8:d9:e9:87:d0:ab:0b:b4:67:79:c8:a9:32:
                    a5:a9:16:84:c6:5c:4f:1f:05:49:0e:6c:ff:50:e4:
                    d7:48:be:4e:68:25:c6:fb:5c:ea:e0:0e:ca:83:49:
                    2f:ce:0c:ff:5b:19:2a:6f:24:24:cf:b6:d9:ff:09:
                    59:75:65:38:7e:1e:46:c9:27:99:b2:42:38:26:29:
                    ba:e1:78:66:b1:ab:17:ee:ca:c8:6b:7d:99:e3:b1:
                    2e:ef:8b:c0:e8:a5:a0:a1:60:34:11:5b:6d:62:30:
                    50:2c:07:02:b1:da:22:99:60:f9:4d:85:01:18:1e:
                    74:3f:da:65:39:b1:54:c5:66:8d:37:8c:4e:15:d5:
                    8d:4b:92:2d:1b:ab:49:47:9e:66:a4:a3:3e:66:c5:
                    4a:0f:81:40:74:9d:16:d8:0f:ee:b4:20:50:d6:db:
                    2c:52:ec:d7:98:88:f5:ac:2d:14:ee:ba:49:f9:e4:
                    c1:58:90:71:f3:30:55:5c:a2:32:11:86:6f:55:8b:
                    f2:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A5:DF:48:5E:2E:C8:A6:EF:80:CF:9C:E7:E3:B2:EA:4C:6B:38:00:A5
            X509v3 Authority Key Identifier:
                keyid:CA:1A:1A:62:C8:0B:0F:33:34:C5:DC:18:DC:64:B7:BF:97:88:90:13

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yhoaYsgLDzM0xdwY3GS3v5eIkBM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:53:97:51:57:e4:84:3a:33:91:64:5d:47:7c:52:bb:12:1a:
         a5:a4:66:37:ca:2f:dd:92:a9:7a:cb:79:3e:9e:4d:3f:8f:07:
         fb:16:a1:d1:68:86:85:d8:d3:21:57:88:93:bd:0b:ea:f0:ea:
         3e:87:66:0f:e2:70:8c:5d:e9:95:ab:4d:e8:99:10:93:22:de:
         19:fb:a2:c2:e1:e5:b9:b9:39:7f:62:e0:0a:34:cf:f2:f1:d1:
         ab:8c:a2:20:e1:16:62:60:41:23:d1:05:6f:0d:89:aa:53:4f:
         50:65:af:af:50:30:34:59:ef:13:72:84:f4:f2:5a:7d:8a:21:
         ef:ec:e2:c3:90:c7:d5:25:ab:df:1c:13:d5:a3:f6:83:01:61:
         dd:bf:4c:96:ff:73:05:40:1d:ec:2e:a5:dd:10:ba:4f:14:30:
         45:37:b5:8d:2b:d8:59:df:65:d4:47:98:df:be:36:1c:f5:05:
         25:c3:44:c1:0b:a8:02:16:37:9e:03:e8:12:38:ae:17:8b:b1:
         46:2b:a4:07:b4:d6:98:d7:4e:09:f2:41:79:f1:cf:0b:2e:20:
         6e:f2:7c:9c:81:73:af:16:81:65:fd:a3:72:6a:0e:fc:20:7e:
         64:16:8b:29:9b:5b:24:1d:81:a0:53:51:11:b7:84:bc:b3:94:
         de:9e:ee:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----