Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/47d692-dd40-4bf2-893f-d38dd0b78909/1/0NxXC8HJZLq37VbGc6pAUY-FRXg.mft
File:                     0NxXC8HJZLq37VbGc6pAUY-FRXg.mft (raw, json)
Hash identifier:          CE8Oq7aE3n88eVXToPRHtDxucvBvjOAg4scsuH+nKjU=
Subject key identifier:   18:C6:EC:29:3B:EE:08:94:3F:80:DC:83:0C:96:7F:52:96:DD:B2:2F
Authority key identifier: D0:DC:57:0B:C1:C9:64:BA:B7:ED:56:C6:73:AA:40:51:8F:85:45:78
Certificate issuer:       /CN=d0dc570bc1c964bab7ed56c673aa40518f854578
Certificate serial:       019873E2824B465FFC57D784D352520F8C10
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0NxXC8HJZLq37VbGc6pAUY-FRXg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4f/47d692-dd40-4bf2-893f-d38dd0b78909/1/0NxXC8HJZLq37VbGc6pAUY-FRXg.mft
Manifest number:          1615
Signing time:             Mon 04 Aug 2025 07:01:21 +0000
Manifest this update:     Mon 04 Aug 2025 07:01:21 +0000
Manifest next update:     Tue 05 Aug 2025 07:01:21 +0000
Files and hashes:         1: 0NxXC8HJZLq37VbGc6pAUY-FRXg.crl (hash: j1sZb6xUVz9wM7rlEnPt8/60svF1UXq+UwsZIcC7HLY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4f/47d692-dd40-4bf2-893f-d38dd0b78909/1/0NxXC8HJZLq37VbGc6pAUY-FRXg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4f/47d692-dd40-4bf2-893f-d38dd0b78909/1/0NxXC8HJZLq37VbGc6pAUY-FRXg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0NxXC8HJZLq37VbGc6pAUY-FRXg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 07:01:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e2:82:4b:46:5f:fc:57:d7:84:d3:52:52:0f:8c:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d0dc570bc1c964bab7ed56c673aa40518f854578
        Validity
            Not Before: Aug  4 07:01:21 2025 GMT
            Not After : Aug  5 07:01:21 2025 GMT
        Subject: CN=18c6ec293bee08943f80dc830c967f5296ddb22f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:1d:8e:bb:2b:97:0e:9a:8e:b6:35:27:0d:00:
                    1b:eb:74:62:20:4e:15:15:b5:89:4d:ff:93:30:ed:
                    c0:b6:77:89:32:a4:a6:0f:56:42:2a:e5:54:ac:53:
                    a6:4f:7c:50:bf:7a:e0:87:62:ae:87:51:67:1d:6d:
                    12:2d:9a:37:da:7c:69:47:28:42:44:86:16:92:81:
                    ef:b3:fe:7a:7e:32:3d:8e:02:8d:f2:f9:28:bb:28:
                    2e:d8:df:22:23:39:2b:71:fd:c3:99:7c:b5:0d:9c:
                    8a:27:22:f9:f8:f3:52:20:15:8c:56:17:09:77:e2:
                    ec:38:85:62:72:c1:88:ea:52:a1:5a:74:6f:1f:c8:
                    a9:a2:98:92:5a:e9:a7:f3:14:05:5c:39:5c:fd:cb:
                    be:7d:b5:0a:aa:10:dc:3f:4e:f7:1c:90:15:73:9a:
                    1b:bd:5f:a5:14:69:14:cf:b3:f7:55:13:e7:8d:7f:
                    f5:eb:44:18:35:f3:3a:79:ff:78:93:f5:32:2f:e2:
                    d0:55:b6:cf:1e:ee:29:ad:af:fb:80:77:50:c8:04:
                    e8:9e:01:76:30:f0:e0:11:d2:94:fb:ac:c6:5b:7f:
                    fe:6d:fb:4a:cc:35:4b:73:88:08:d2:8b:f6:7a:d9:
                    80:42:fc:a9:db:57:b5:44:10:19:2b:d9:d7:66:73:
                    df:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:C6:EC:29:3B:EE:08:94:3F:80:DC:83:0C:96:7F:52:96:DD:B2:2F
            X509v3 Authority Key Identifier:
                keyid:D0:DC:57:0B:C1:C9:64:BA:B7:ED:56:C6:73:AA:40:51:8F:85:45:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0NxXC8HJZLq37VbGc6pAUY-FRXg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/47d692-dd40-4bf2-893f-d38dd0b78909/1/0NxXC8HJZLq37VbGc6pAUY-FRXg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/47d692-dd40-4bf2-893f-d38dd0b78909/1/0NxXC8HJZLq37VbGc6pAUY-FRXg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b1:8e:e4:bc:4c:2f:7c:25:5c:a0:51:db:0b:24:79:10:53:b0:
         68:00:d5:f3:2d:52:5a:53:12:2c:65:68:1b:d0:9b:ac:5a:ba:
         b1:07:b4:b4:0b:52:9e:85:d1:1c:4d:90:48:63:b4:e6:82:0c:
         32:a4:82:7f:2e:79:ac:99:0f:a4:07:e3:79:d1:39:67:f3:42:
         95:54:46:21:11:21:4a:4f:ff:4f:9a:ad:74:60:24:a2:85:38:
         f0:56:d3:04:93:36:93:8b:d9:d0:52:b9:b0:38:1c:1e:9e:02:
         4a:71:0b:f6:71:8f:02:2d:cc:aa:5c:56:0c:ae:25:e2:2c:3f:
         bc:86:fd:ce:d9:68:58:a8:ea:e0:99:31:e0:f7:25:35:2d:05:
         c0:5f:64:66:87:9e:f8:d6:f3:1b:b7:a2:6e:3c:7c:d1:bd:b9:
         4d:c0:fe:6d:88:30:37:e0:bc:13:eb:eb:49:14:82:f9:a8:49:
         35:b0:27:0c:d7:4f:98:86:3a:36:6e:c2:57:77:4c:e8:0e:49:
         20:3f:37:aa:3e:44:d7:aa:60:d9:1e:cc:b8:c3:e5:58:ee:35:
         a4:b1:63:fa:6d:50:50:13:91:d2:a0:24:55:f0:bb:61:e3:fc:
         80:e8:a6:11:97:53:bb:7e:93:49:ba:60:6b:42:dc:90:21:92:
         fe:4f:5a:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----