Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/17e999-e53d-48ca-980a-95ae64bd56ec/1/LKw-jWOxw6_HxsC_2p1ayBe27m0.mft
File:                     LKw-jWOxw6_HxsC_2p1ayBe27m0.mft (raw, json)
Hash identifier:          zYxSgiuLVCNTrbkrh1Xpzu19RFlBPZYN6iQlwc+DxPw=
Subject key identifier:   00:2D:E9:70:94:13:76:25:DF:E6:EC:F9:E2:67:48:DE:9E:E2:02:D0
Authority key identifier: 2C:AC:3E:8D:63:B1:C3:AF:C7:C6:C0:BF:DA:9D:5A:C8:17:B6:EE:6D
Certificate issuer:       /CN=2cac3e8d63b1c3afc7c6c0bfda9d5ac817b6ee6d
Certificate serial:       0198922348CEC14B76C3AD9278572C237247
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/LKw-jWOxw6_HxsC_2p1ayBe27m0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/29/17e999-e53d-48ca-980a-95ae64bd56ec/1/LKw-jWOxw6_HxsC_2p1ayBe27m0.mft
Manifest number:          1003
Signing time:             Sun 10 Aug 2025 04:00:42 +0000
Manifest this update:     Sun 10 Aug 2025 04:00:42 +0000
Manifest next update:     Mon 11 Aug 2025 04:00:42 +0000
Files and hashes:         1: LKw-jWOxw6_HxsC_2p1ayBe27m0.crl (hash: SC4tbHhdHmgbelSGiDLLDgkvcBMcaPTdZT5s3RVYfB8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/29/17e999-e53d-48ca-980a-95ae64bd56ec/1/LKw-jWOxw6_HxsC_2p1ayBe27m0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/29/17e999-e53d-48ca-980a-95ae64bd56ec/1/LKw-jWOxw6_HxsC_2p1ayBe27m0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/LKw-jWOxw6_HxsC_2p1ayBe27m0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 04:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:92:23:48:ce:c1:4b:76:c3:ad:92:78:57:2c:23:72:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2cac3e8d63b1c3afc7c6c0bfda9d5ac817b6ee6d
        Validity
            Not Before: Aug 10 04:00:42 2025 GMT
            Not After : Aug 11 04:00:42 2025 GMT
        Subject: CN=002de97094137625dfe6ecf9e26748de9ee202d0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:b9:62:e2:a2:12:3c:1e:f6:46:77:36:da:7f:
                    2c:57:3c:da:6e:5c:11:f1:c2:b3:1f:35:6a:01:87:
                    6a:6a:f9:11:f8:d7:04:3a:eb:7d:88:83:d2:ba:cb:
                    65:46:da:bb:08:3f:d2:76:e0:a5:55:3b:b1:4d:16:
                    fc:ec:02:84:5b:e2:57:fd:e1:38:62:4d:87:6b:5d:
                    43:95:05:fd:77:81:3a:68:2c:6d:b9:2b:84:cd:8e:
                    c8:35:d5:06:cd:de:d1:b1:c3:1a:58:a0:cc:a6:b7:
                    ac:36:52:17:27:77:2d:77:c8:da:ad:78:9d:bd:a2:
                    f8:a4:ea:de:01:25:c2:af:6b:67:cf:46:94:a7:5d:
                    05:2b:c5:c9:e0:3d:fe:d1:25:57:e2:07:c4:aa:0a:
                    fa:95:e1:3e:f6:4f:23:20:84:12:8e:78:98:e9:34:
                    d8:3b:2d:33:43:36:a2:f6:57:14:76:93:79:03:bb:
                    1b:db:01:cc:36:08:96:2d:b7:34:9e:e5:c4:a7:b0:
                    53:b7:fe:8c:c7:05:fb:14:d4:b8:c3:60:c2:cb:2a:
                    db:0a:dc:1e:9c:92:bd:66:59:22:25:c9:54:16:d3:
                    1c:e5:56:f7:4e:3e:6d:48:20:a0:72:29:25:27:ae:
                    e6:3a:e8:01:df:81:19:27:78:bb:2a:8b:30:9b:2e:
                    0c:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:2D:E9:70:94:13:76:25:DF:E6:EC:F9:E2:67:48:DE:9E:E2:02:D0
            X509v3 Authority Key Identifier:
                keyid:2C:AC:3E:8D:63:B1:C3:AF:C7:C6:C0:BF:DA:9D:5A:C8:17:B6:EE:6D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKw-jWOxw6_HxsC_2p1ayBe27m0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/17e999-e53d-48ca-980a-95ae64bd56ec/1/LKw-jWOxw6_HxsC_2p1ayBe27m0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/29/17e999-e53d-48ca-980a-95ae64bd56ec/1/LKw-jWOxw6_HxsC_2p1ayBe27m0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ae:24:a3:ed:72:75:da:f7:ec:e1:08:ca:04:45:87:8a:68:ce:
         9b:c3:35:4c:e9:d7:0b:95:67:83:ef:ce:a0:c6:7b:52:6b:2c:
         54:0c:98:29:0f:e3:1b:8e:3a:7e:af:3a:a9:60:23:2a:a4:c6:
         bf:19:64:bc:12:1d:c4:25:87:60:23:d8:dc:13:43:9d:ef:be:
         12:c3:fe:d5:ed:25:3f:2e:72:54:a3:f2:5e:7b:8a:06:45:62:
         43:27:42:5e:91:82:cc:05:07:74:29:da:cf:b5:74:37:39:67:
         47:a7:89:95:08:e3:45:26:02:b6:b6:44:3d:c6:57:66:a1:8f:
         b8:88:c4:53:90:20:2a:a2:ff:6c:f8:7a:af:25:c0:df:a5:81:
         5a:1a:43:4b:2c:dd:92:72:bb:86:ea:52:d5:1b:5a:a7:ff:1b:
         0e:7f:66:93:fe:1c:b2:ec:f0:52:74:46:ab:74:ac:6b:f9:e8:
         fb:50:8c:e4:48:ed:80:6c:51:7b:d9:25:09:2d:74:bd:38:07:
         19:90:5c:83:67:b1:55:0b:8c:10:f9:95:af:6d:73:a5:10:ed:
         46:33:ff:0e:50:e4:d4:61:ea:8c:af:72:e4:d4:86:70:a4:2e:
         e2:53:a7:af:2c:e0:42:08:ee:4d:4a:43:5c:8c:5b:40:21:1a:
         81:09:1a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----