Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft
File:                     4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft (raw, json)
Hash identifier:          Fmk7EDbLLFVI5BmdTLFIkYLnac7+q+KI+7sUqb6WJZ8=
Subject key identifier:   4B:E3:ED:47:48:5F:6A:48:C8:09:AA:2C:F4:99:14:23:85:F6:B8:1E
Authority key identifier: E3:37:79:B8:38:8D:00:1F:DC:BD:DC:48:AC:E2:27:F0:09:85:06:60
Certificate issuer:       /CN=e33779b8388d001fdcbddc48ace227f009850660
Certificate serial:       019873E35E6766F9E6A65C88B365182DD20E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft
Manifest number:          1612
Signing time:             Mon 04 Aug 2025 07:02:17 +0000
Manifest this update:     Mon 04 Aug 2025 07:02:17 +0000
Manifest next update:     Tue 05 Aug 2025 07:02:17 +0000
Files and hashes:         1: 4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl (hash: 5ROiTN3Q5s1/gJUPoekC4kkMV2uVi9pTEU5Cy6VJ4aU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e3:5e:67:66:f9:e6:a6:5c:88:b3:65:18:2d:d2:0e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e33779b8388d001fdcbddc48ace227f009850660
        Validity
            Not Before: Aug  4 07:02:17 2025 GMT
            Not After : Aug  5 07:02:17 2025 GMT
        Subject: CN=4be3ed47485f6a48c809aa2cf499142385f6b81e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:c6:12:c2:59:73:e6:9d:7c:8a:a1:55:e2:e9:
                    95:2a:c9:6e:a3:2e:4a:71:20:53:7e:9d:15:cd:76:
                    03:cb:3b:64:44:f5:f5:82:a8:c0:5c:ca:bb:19:e1:
                    3f:c4:c7:47:27:48:42:e0:33:d3:17:ea:35:e1:e0:
                    4a:fa:c9:d6:a1:84:91:ba:e5:3d:be:b3:27:59:1b:
                    99:98:16:c1:fa:b8:6c:f2:75:53:ea:5f:19:af:38:
                    fb:47:27:07:be:0e:08:f7:ab:31:7c:89:70:28:4c:
                    c9:94:97:ad:4a:14:55:d2:74:9a:f6:e4:52:7d:49:
                    e7:e3:f5:e8:b7:9c:17:ef:dc:62:54:41:de:f3:11:
                    d3:50:67:b5:fa:2a:7b:24:76:58:4f:25:86:60:1b:
                    2e:e0:28:f3:5a:c6:7d:80:e5:e4:10:d2:db:b3:8d:
                    ea:b9:26:27:f7:c2:35:75:80:21:2c:d0:6c:d3:7c:
                    d1:8f:7a:ac:57:5a:72:23:17:60:9c:4e:7c:93:8e:
                    c1:4d:1f:08:a4:e9:d0:0d:8d:69:42:71:a6:de:40:
                    79:5d:5d:10:b6:6c:16:42:fd:db:c3:10:96:69:0f:
                    04:ab:e3:83:60:38:9a:c3:43:e6:9c:9f:95:b5:3c:
                    4e:17:1f:ba:9a:48:16:29:19:4d:b9:2a:f7:1a:60:
                    2a:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:E3:ED:47:48:5F:6A:48:C8:09:AA:2C:F4:99:14:23:85:F6:B8:1E
            X509v3 Authority Key Identifier:
                keyid:E3:37:79:B8:38:8D:00:1F:DC:BD:DC:48:AC:E2:27:F0:09:85:06:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4zd5uDiNAB_cvdxIrOIn8AmFBmA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/22/9db326-1189-4ac9-b412-f294d3b12cfd/1/4zd5uDiNAB_cvdxIrOIn8AmFBmA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:3b:c1:3f:0b:78:f2:f9:ff:ed:e4:2f:8e:92:47:76:a8:9c:
         72:5e:1e:73:58:3f:46:a0:06:1e:2b:a5:f6:dd:94:92:96:64:
         45:10:81:03:8c:c5:63:cb:c6:5d:b5:df:ae:f3:7e:d7:81:fd:
         08:eb:a1:cd:88:cb:f0:ea:36:df:ad:ea:9c:75:f4:d2:1d:ca:
         8a:1d:f3:bf:d4:b8:0f:95:87:07:e2:3d:ce:17:ee:35:c9:2e:
         e0:4b:b1:11:4a:2e:5e:70:69:6f:27:19:fc:03:b5:8a:51:7b:
         0e:29:6a:40:bb:24:60:68:10:9b:6a:8a:99:53:a6:75:41:e1:
         49:b8:67:64:85:75:48:fd:fe:89:92:e0:0a:4e:90:8e:26:c5:
         1e:55:a4:59:f2:7e:2f:83:25:2f:1f:28:c8:45:fb:4e:c5:c9:
         7a:1f:1c:10:b0:64:8a:33:20:37:d2:45:bc:0b:32:57:9d:6a:
         73:fc:87:c5:26:36:03:f7:d3:35:90:6f:e4:36:b9:06:c2:4e:
         eb:67:9e:48:8f:4e:66:0a:d7:18:ac:f0:28:d1:ca:bc:06:30:
         53:72:ec:02:80:37:b1:5b:fd:e2:cd:85:f8:35:1e:00:8d:36:
         35:c0:75:9c:42:3e:86:f8:ce:41:f9:54:13:48:99:ff:5e:14:
         d9:46:f4:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----