Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
File:                     YDM81vG1nAtoLh2jiSN-2j6dqRg.mft (raw, json)
Hash identifier:          nVV7HP88E3ctT5y8WcvfYPm3wYW8m9t8fwUrhFNyfzA=
Subject key identifier:   22:6D:2D:7C:1E:D4:0E:C8:B4:F6:AB:FD:1C:14:37:34:56:34:7D:90
Authority key identifier: 60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18
Certificate issuer:       /CN=60333cd6f1b59c0b682e1da389237eda3e9da918
Certificate serial:       01987F7872393FDD2CEBC8595A7389AD7B6E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
Manifest number:          0CFF
Signing time:             Wed 06 Aug 2025 13:00:56 +0000
Manifest this update:     Wed 06 Aug 2025 13:00:56 +0000
Manifest next update:     Thu 07 Aug 2025 13:00:56 +0000
Files and hashes:         1: YDM81vG1nAtoLh2jiSN-2j6dqRg.crl (hash: z0u3/Kij08rRhzCYDszEfe7uDYAWDg/6hd6BVIzXRWk=)
                          2: YvGTICIQPtclpMrYwq9cvhdFKOI.roa (hash: VRRExLjeFp73/0IARjKER20GFoe2YDaIzWUGvE6p51I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 13:00:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7f:78:72:39:3f:dd:2c:eb:c8:59:5a:73:89:ad:7b:6e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=60333cd6f1b59c0b682e1da389237eda3e9da918
        Validity
            Not Before: Aug  6 13:00:56 2025 GMT
            Not After : Aug  7 13:00:56 2025 GMT
        Subject: CN=226d2d7c1ed40ec8b4f6abfd1c14373456347d90
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:26:e0:ae:21:6c:c9:ce:33:ff:12:4c:dd:aa:
                    9c:0a:c2:6e:de:50:be:79:c1:be:73:7c:94:46:42:
                    52:76:f0:29:3a:4a:eb:98:24:39:c3:26:9d:94:90:
                    4f:00:9c:59:cb:7c:a2:3e:4b:39:8f:c0:57:2d:06:
                    d8:af:9d:4b:32:74:10:26:96:8f:10:a4:7d:d8:01:
                    2e:18:87:56:56:3a:8d:c4:d7:ad:ff:e4:50:48:31:
                    3b:f5:62:3c:fa:9c:a2:3d:6c:cd:07:85:89:97:5e:
                    22:c8:97:67:18:d3:b3:02:2a:47:3f:ba:02:7b:58:
                    d6:5c:6d:a3:ec:af:96:00:15:89:3d:2f:02:cf:e5:
                    b1:e6:10:15:49:0c:1c:c6:42:19:0b:53:41:fc:cf:
                    66:60:1b:ae:09:26:8e:5c:78:ad:91:51:e8:48:1f:
                    c8:df:61:dd:58:21:3b:70:0d:d1:a9:d5:3a:bd:97:
                    5e:ab:ac:87:e7:7d:df:98:bb:74:ea:f7:b9:65:82:
                    ee:d5:5b:7c:85:2d:6b:a8:9c:4b:31:32:8c:4a:68:
                    28:a0:45:27:9c:80:89:36:4c:0e:66:ab:75:4e:f0:
                    d3:99:5e:f0:df:0f:4b:68:e9:99:6a:f2:1a:75:f4:
                    de:79:bd:2b:17:b1:c8:e6:45:99:5f:e9:fe:b8:6d:
                    91:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                22:6D:2D:7C:1E:D4:0E:C8:B4:F6:AB:FD:1C:14:37:34:56:34:7D:90
            X509v3 Authority Key Identifier:
                keyid:60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:7d:57:5d:bd:86:f9:ad:a0:c2:0b:e1:5c:86:e1:44:52:05:
         dd:60:7b:44:de:e8:82:b3:2f:b2:a5:7c:ab:37:9d:fa:a4:13:
         9d:63:be:a7:6b:ed:7b:60:2d:9f:59:75:5b:77:c4:f8:5e:5f:
         af:b8:f9:e0:99:70:12:56:66:e0:25:f9:c9:79:40:32:d1:87:
         18:75:28:90:6b:43:2f:61:72:56:cb:23:1e:40:e7:d3:d1:24:
         10:1b:b4:e0:ef:e4:1f:a1:7e:e3:47:ac:6c:a9:11:2d:75:97:
         23:58:38:cd:e6:74:12:67:67:d5:18:06:9f:26:3f:65:83:94:
         d1:d7:02:3e:fb:6a:20:cc:07:bf:1a:d9:15:9d:5f:12:93:18:
         fa:2b:11:e0:8b:d8:a1:97:b2:cb:2d:e7:ea:29:8a:a2:c9:eb:
         95:3f:93:6c:8a:20:36:ad:d4:53:03:27:8a:23:d9:b8:6b:1e:
         3b:f7:5a:59:47:70:4f:91:98:9e:aa:a5:07:95:bc:81:51:13:
         2e:46:52:67:48:97:d5:db:ec:1d:50:07:f9:08:01:2f:85:4b:
         e8:8e:e8:6d:d5:bd:ab:14:e6:7a:38:e1:81:94:97:b4:59:b2:
         84:58:fb:18:94:67:96:d4:d0:7c:75:13:3e:89:dc:00:cd:1a:
         52:fa:24:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 18:25:38 2025 by rpki-client