Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/ac3b4f-4fe9-442f-8bcd-926a0b2d57ad/1/hUYNJS18tlxJNM6stG-pbctrVws.mft
File:                     hUYNJS18tlxJNM6stG-pbctrVws.mft (raw, json)
Hash identifier:          AZZSyu/e/mXFaIca4WPThVOFtyqf5vI1mpVhhuY8XyQ=
Subject key identifier:   80:0F:91:9F:1F:54:35:F0:86:B1:53:CD:8C:69:51:94:85:7A:31:C7
Authority key identifier: 85:46:0D:25:2D:7C:B6:5C:49:34:CE:AC:B4:6F:A9:6D:CB:6B:57:0B
Certificate issuer:       /CN=85460d252d7cb65c4934ceacb46fa96dcb6b570b
Certificate serial:       01987E9CA66E2759C5DD4DC22C294310B997
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hUYNJS18tlxJNM6stG-pbctrVws.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/58/ac3b4f-4fe9-442f-8bcd-926a0b2d57ad/1/hUYNJS18tlxJNM6stG-pbctrVws.mft
Manifest number:          074B
Signing time:             Wed 06 Aug 2025 09:00:52 +0000
Manifest this update:     Wed 06 Aug 2025 09:00:52 +0000
Manifest next update:     Thu 07 Aug 2025 09:00:52 +0000
Files and hashes:         1: hUYNJS18tlxJNM6stG-pbctrVws.crl (hash: aSGgOoWrjdV4rUVk5W2S5NgEtnxF+UFTFok86R5Q7HY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/58/ac3b4f-4fe9-442f-8bcd-926a0b2d57ad/1/hUYNJS18tlxJNM6stG-pbctrVws.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/58/ac3b4f-4fe9-442f-8bcd-926a0b2d57ad/1/hUYNJS18tlxJNM6stG-pbctrVws.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hUYNJS18tlxJNM6stG-pbctrVws.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 09:00:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7e:9c:a6:6e:27:59:c5:dd:4d:c2:2c:29:43:10:b9:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85460d252d7cb65c4934ceacb46fa96dcb6b570b
        Validity
            Not Before: Aug  6 09:00:52 2025 GMT
            Not After : Aug  7 09:00:52 2025 GMT
        Subject: CN=800f919f1f5435f086b153cd8c695194857a31c7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:d2:f6:e9:d2:dd:17:ab:06:e6:cf:70:3f:aa:
                    91:5d:40:97:e2:dd:55:bb:aa:b4:38:f8:b4:17:07:
                    6f:dc:d8:f0:d9:2d:44:ad:19:42:61:06:79:a1:78:
                    08:f5:bd:24:61:38:72:b0:88:0d:e7:b1:e9:26:51:
                    5b:9a:8f:06:72:5c:1c:b2:ae:3f:6c:74:0c:5d:a6:
                    d2:34:91:df:66:49:87:54:01:3d:2d:da:4e:6a:2a:
                    e6:6d:f0:5a:31:d3:3b:c7:2f:7b:47:cc:47:10:38:
                    41:15:96:03:9f:a2:29:ff:b8:e5:f2:cc:d6:fe:85:
                    9b:b6:b3:03:50:17:5d:4b:f4:3f:34:a6:51:ba:1d:
                    88:ec:01:62:04:d3:0f:c0:07:1c:55:7a:13:95:68:
                    27:6c:b3:1e:e4:13:48:cc:5c:34:d5:65:ef:23:8b:
                    8e:04:8b:cd:5b:88:93:fd:24:9d:a6:d9:1b:83:d9:
                    83:23:c3:28:54:75:af:c3:e9:18:67:f9:a3:21:3e:
                    c0:d6:c3:5a:d9:62:f9:cd:d1:89:22:e8:72:04:f4:
                    55:ad:6c:fa:8f:81:8b:b5:ae:ad:bf:16:08:6a:4e:
                    2c:51:d1:47:bd:ea:4d:b6:68:d3:c6:17:b0:aa:01:
                    5c:04:8f:af:61:e6:92:ec:a3:ee:d5:d5:16:dc:88:
                    04:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:0F:91:9F:1F:54:35:F0:86:B1:53:CD:8C:69:51:94:85:7A:31:C7
            X509v3 Authority Key Identifier:
                keyid:85:46:0D:25:2D:7C:B6:5C:49:34:CE:AC:B4:6F:A9:6D:CB:6B:57:0B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUYNJS18tlxJNM6stG-pbctrVws.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ac3b4f-4fe9-442f-8bcd-926a0b2d57ad/1/hUYNJS18tlxJNM6stG-pbctrVws.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ac3b4f-4fe9-442f-8bcd-926a0b2d57ad/1/hUYNJS18tlxJNM6stG-pbctrVws.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:68:9b:b5:35:27:29:2a:f3:91:c1:69:73:06:de:97:9b:31:
         13:6b:63:92:f6:60:f2:cb:63:1a:6c:5f:52:39:d1:0f:e9:cb:
         f1:e3:91:a1:ea:4b:ae:fd:2d:07:20:30:92:18:2f:65:43:30:
         eb:75:51:c9:49:9c:d6:82:7d:40:fc:c6:38:56:78:b7:d8:a9:
         ac:ca:9f:a4:89:78:9e:30:1d:ad:98:ca:4b:53:c1:69:04:6a:
         28:21:46:88:15:65:fa:92:44:39:8e:86:2b:d2:b1:a4:42:e9:
         99:17:99:f5:37:91:d8:ac:d3:40:61:70:9b:b9:3a:6d:ff:70:
         ba:f9:45:19:77:22:06:f4:91:7c:2a:d1:99:70:fa:82:1d:94:
         71:9c:c6:88:36:4e:e9:c2:ed:90:b4:40:8f:5a:ea:a7:12:b0:
         56:b8:c9:6b:a8:48:1d:77:e1:72:fb:1c:5d:ba:e9:38:c2:1a:
         82:86:d0:a2:25:04:34:54:bc:e1:82:0f:1a:44:5c:14:ee:a2:
         c0:5b:81:84:95:e1:68:fc:29:b8:3f:d3:2b:03:c8:cd:b8:fe:
         44:84:cc:39:6d:33:8c:d1:b8:d8:24:33:79:a5:65:8c:a3:ca:
         dd:b5:80:c5:d0:83:e9:f6:8d:8f:f8:6d:60:7c:bf:4d:55:b3:
         23:ee:27:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 18:24:28 2025 by rpki-client