Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
File:                     HwGmewzRspUViU7OlrUurL4EG9Q.mft (raw, json)
Hash identifier:          gY1asGwZ6xwr1VFQazfCefdL1wlvpPg0g5A8V/9rZto=
Subject key identifier:   C7:97:93:EC:EB:32:D9:C5:19:88:6E:7E:D6:C4:BE:1B:24:2E:EB:BC
Authority key identifier: 1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4
Certificate issuer:       /CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
Certificate serial:       01988B0E550F2431D01436D28268DCC38BA2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
Manifest number:          0955
Signing time:             Fri 08 Aug 2025 19:00:28 +0000
Manifest this update:     Fri 08 Aug 2025 19:00:28 +0000
Manifest next update:     Sat 09 Aug 2025 19:00:28 +0000
Files and hashes:         1: HwGmewzRspUViU7OlrUurL4EG9Q.crl (hash: 79xE5saq4oWHpOmn4EAz4hNoIp96noUGDicU3pQFBEY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 19:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:0e:55:0f:24:31:d0:14:36:d2:82:68:dc:c3:8b:a2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1f01a67b0cd1b29515894ece96b52eacbe041bd4
        Validity
            Not Before: Aug  8 19:00:28 2025 GMT
            Not After : Aug  9 19:00:28 2025 GMT
        Subject: CN=c79793eceb32d9c519886e7ed6c4be1b242eebbc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:7e:d4:73:b8:97:f3:09:45:fd:54:14:5b:4c:
                    79:2f:e7:e1:41:bc:b0:73:bd:ee:c4:6a:3a:5e:c0:
                    86:9e:ff:4d:41:75:bf:42:b6:90:83:f0:8e:ee:bf:
                    6a:17:9d:44:d2:88:67:17:bb:5f:b0:63:3e:28:c4:
                    25:12:ca:b4:d1:4d:6e:3c:d3:4f:49:e4:c5:f2:12:
                    da:0e:bc:1b:e1:cb:da:ce:76:3c:11:98:d2:b4:b3:
                    06:d2:22:dd:9c:4f:50:3e:bb:79:8a:b7:e3:0a:d8:
                    97:7f:72:60:55:17:3a:04:24:bb:e8:04:c9:a1:3b:
                    fe:b7:d5:fa:a1:c3:b2:99:bc:23:13:55:91:81:a4:
                    5b:10:35:0b:64:b6:9d:60:00:a5:b5:39:df:fe:1e:
                    68:6d:e3:6f:d4:68:20:cc:65:44:1d:61:99:46:58:
                    1b:1e:83:a4:79:bf:59:2b:6e:4a:33:f6:0e:d1:57:
                    96:69:ce:57:98:c0:c5:86:5c:99:6b:99:f5:81:61:
                    03:37:11:61:47:56:2d:6c:c9:2f:c9:c7:5d:f0:c1:
                    65:e2:a8:e8:79:4b:52:ae:ff:4c:1e:2d:4c:e5:41:
                    bc:4b:fb:5d:c0:24:4e:77:c0:de:37:78:fc:f1:d4:
                    17:6c:ab:d7:ee:54:6d:ad:7f:17:53:2e:8f:a0:d4:
                    b9:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C7:97:93:EC:EB:32:D9:C5:19:88:6E:7E:D6:C4:BE:1B:24:2E:EB:BC
            X509v3 Authority Key Identifier:
                keyid:1F:01:A6:7B:0C:D1:B2:95:15:89:4E:CE:96:B5:2E:AC:BE:04:1B:D4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HwGmewzRspUViU7OlrUurL4EG9Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ea2e93-31d0-48ad-87ec-bdc117122efb/1/HwGmewzRspUViU7OlrUurL4EG9Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:8d:a5:3c:32:51:f3:74:b2:13:3c:82:31:e2:15:f0:d3:ba:
         d4:7f:17:aa:31:f2:32:fc:17:3e:e3:e3:0b:21:e3:35:9d:d2:
         86:66:b0:7b:72:3c:d3:39:62:b6:b9:62:e0:62:40:a3:94:39:
         1e:ce:9e:25:08:5a:ed:73:c0:a3:fc:21:d0:9b:cc:93:62:71:
         4b:cb:8b:de:a5:a3:bc:55:a8:82:cc:75:d0:69:da:f8:73:da:
         15:81:80:ec:bf:0e:f0:49:03:b2:30:5e:d9:5f:31:57:55:ff:
         e6:d6:0d:63:fd:18:05:4f:e8:4f:dd:d4:c8:b5:3e:4c:ab:99:
         36:d2:c7:b6:da:0b:8e:a3:32:e6:db:90:37:06:58:d7:eb:5c:
         93:6b:a2:c5:b9:69:0f:bf:0d:e5:0d:8d:a3:7c:da:f4:6c:ea:
         15:68:80:2c:4e:e4:93:68:4a:89:43:7d:eb:26:0f:c7:10:a8:
         54:fd:2d:e0:f6:b9:5a:a9:45:25:95:bb:de:1a:24:de:fb:a2:
         6c:4d:16:39:ce:c6:81:7c:58:52:f8:ca:d2:04:a9:31:4a:15:
         a4:b0:48:36:81:a3:91:ff:bb:fb:7b:6c:83:de:d3:1a:a8:c9:
         be:64:d8:2e:61:a7:e0:c2:1c:dd:30:74:08:87:e3:3c:6f:f8:
         6f:db:04:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----