Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/56c8a7-562b-48c8-8a8f-5a05b91b2b8c/1/dPYRYnGtLREZYKLZYaqcFi-VgKY.mft
File:                     dPYRYnGtLREZYKLZYaqcFi-VgKY.mft (raw, json)
Hash identifier:          m+ngYavMwQXwB5VvjeojBQWGukzqJGhF0mH5TUeL33A=
Subject key identifier:   16:6D:B6:F8:A4:47:7C:85:90:FA:5B:3E:E8:E4:26:D6:62:D1:AB:78
Authority key identifier: 74:F6:11:62:71:AD:2D:11:19:60:A2:D9:61:AA:9C:16:2F:95:80:A6
Certificate issuer:       /CN=74f6116271ad2d111960a2d961aa9c162f9580a6
Certificate serial:       019873E3455A79D053EA0C73EA6D52414227
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dPYRYnGtLREZYKLZYaqcFi-VgKY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/56c8a7-562b-48c8-8a8f-5a05b91b2b8c/1/dPYRYnGtLREZYKLZYaqcFi-VgKY.mft
Manifest number:          100F
Signing time:             Mon 04 Aug 2025 07:02:10 +0000
Manifest this update:     Mon 04 Aug 2025 07:02:10 +0000
Manifest next update:     Tue 05 Aug 2025 07:02:10 +0000
Files and hashes:         1: dPYRYnGtLREZYKLZYaqcFi-VgKY.crl (hash: 8csadKgYr+l8LIESdzob26ylyXu0exigY3njIPxpNMw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/56c8a7-562b-48c8-8a8f-5a05b91b2b8c/1/dPYRYnGtLREZYKLZYaqcFi-VgKY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/56c8a7-562b-48c8-8a8f-5a05b91b2b8c/1/dPYRYnGtLREZYKLZYaqcFi-VgKY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dPYRYnGtLREZYKLZYaqcFi-VgKY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e3:45:5a:79:d0:53:ea:0c:73:ea:6d:52:41:42:27
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74f6116271ad2d111960a2d961aa9c162f9580a6
        Validity
            Not Before: Aug  4 07:02:10 2025 GMT
            Not After : Aug  5 07:02:10 2025 GMT
        Subject: CN=166db6f8a4477c8590fa5b3ee8e426d662d1ab78
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:85:77:8b:fa:91:39:4a:ea:39:a9:6e:da:6b:db:
                    ee:fb:d8:a4:15:16:d7:de:86:b4:e0:3e:71:35:df:
                    83:95:ed:11:83:79:f3:6e:9a:7c:df:4c:06:12:64:
                    ac:e8:5f:b8:7b:b2:b7:e9:f4:0d:25:28:cd:6b:5d:
                    8a:0e:ff:a3:32:1a:c4:bb:7a:15:f5:3d:7a:b6:8e:
                    79:fd:e5:92:e1:b0:8e:f6:2c:d7:89:e5:db:ab:0c:
                    ff:69:d3:3b:61:93:83:bf:98:d8:fd:ab:6f:99:37:
                    7c:70:d6:7b:db:1d:d5:41:f1:a7:ce:fd:4e:bf:6a:
                    e2:7d:34:4b:46:a0:f2:c1:f7:da:b0:e2:48:4d:d8:
                    0f:80:99:7a:bc:ce:46:e2:c6:3d:11:8e:f3:b5:c2:
                    d9:6f:8b:ca:c8:a0:44:40:a4:21:55:be:55:5e:aa:
                    2b:51:cb:ae:4b:e0:66:b7:27:4d:78:a3:a3:f9:2b:
                    58:37:20:1b:d4:94:a9:27:fd:f9:11:bd:3a:d2:2d:
                    41:ee:69:12:7a:ae:83:f7:33:5e:21:8f:db:63:4c:
                    e1:34:fa:3b:e8:bc:8b:5b:6f:13:ef:e8:8f:10:d5:
                    03:4e:e8:0a:e4:e9:61:e7:26:3e:bd:94:f7:f5:01:
                    e1:e7:b1:6f:74:44:7d:5c:27:64:4b:71:a2:77:2f:
                    84:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:6D:B6:F8:A4:47:7C:85:90:FA:5B:3E:E8:E4:26:D6:62:D1:AB:78
            X509v3 Authority Key Identifier:
                keyid:74:F6:11:62:71:AD:2D:11:19:60:A2:D9:61:AA:9C:16:2F:95:80:A6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dPYRYnGtLREZYKLZYaqcFi-VgKY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/56c8a7-562b-48c8-8a8f-5a05b91b2b8c/1/dPYRYnGtLREZYKLZYaqcFi-VgKY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/56c8a7-562b-48c8-8a8f-5a05b91b2b8c/1/dPYRYnGtLREZYKLZYaqcFi-VgKY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:d2:a4:1e:2d:88:0f:c3:63:06:f0:6b:16:35:56:3c:a3:01:
         46:19:e1:12:7d:3c:b5:b8:f9:69:96:3a:17:1a:54:26:e1:83:
         32:fa:5d:49:34:fc:c8:63:aa:45:9a:7d:46:26:f0:b1:5d:7c:
         96:4a:d2:b5:66:2e:6e:a9:8c:7c:ef:74:81:0d:2a:b9:13:c9:
         c3:c0:ef:f8:ad:1e:67:03:a1:e4:8a:b6:18:c5:33:25:c6:be:
         d7:3c:53:39:4b:90:2a:c2:2e:66:45:dc:41:a2:8c:17:7a:ee:
         d3:00:f6:5b:59:dd:83:91:b8:17:df:af:8b:2e:ea:ac:4a:ad:
         8b:99:87:ea:6e:5e:b8:63:c3:f4:77:46:bd:2e:25:c3:2a:88:
         3c:bc:80:70:d3:0b:fe:3e:30:7f:12:2f:f4:4a:e8:5d:9c:bc:
         57:eb:7d:aa:a4:ba:b6:5e:1f:0c:35:f4:50:46:91:58:e7:07:
         9d:e7:a5:c6:48:21:76:d5:61:e2:e0:1f:ec:ea:16:28:cc:7f:
         8f:1e:5f:3e:a4:f1:63:3a:7e:44:08:65:8e:76:ef:90:c3:bc:
         c4:ff:cb:de:be:85:86:f0:82:a0:0c:93:2d:92:1c:f0:13:a0:
         69:cc:8f:ab:a6:eb:36:83:10:ea:be:30:a5:e8:8b:d7:03:4d:
         cc:3d:35:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----