Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.mft
File:                     ZpDQciFADjewHnSnEvrnxtcDFZU.mft (raw, json)
Hash identifier:          zFilnyJgoAgHXqCmuMF3Je28dp+tkoyN2S8iP/oVvMk=
Subject key identifier:   ED:B0:81:02:15:27:62:82:2F:32:53:2B:83:9C:DE:38:85:7A:DA:5D
Authority key identifier: 66:90:D0:72:21:40:0E:37:B0:1E:74:A7:12:FA:E7:C6:D7:03:15:95
Certificate issuer:       /CN=6690d07221400e37b01e74a712fae7c6d7031595
Certificate serial:       01988A69E6A4A436197EFAB0659F2558144E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ZpDQciFADjewHnSnEvrnxtcDFZU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.mft
Manifest number:          10D0
Signing time:             Fri 08 Aug 2025 16:00:52 +0000
Manifest this update:     Fri 08 Aug 2025 16:00:52 +0000
Manifest next update:     Sat 09 Aug 2025 16:00:52 +0000
Files and hashes:         1: ZpDQciFADjewHnSnEvrnxtcDFZU.crl (hash: 3TNk3jwcphOsN313HAiZFJcymPJCLIOCOe6JgRe8lRQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ZpDQciFADjewHnSnEvrnxtcDFZU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 16:00:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8a:69:e6:a4:a4:36:19:7e:fa:b0:65:9f:25:58:14:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6690d07221400e37b01e74a712fae7c6d7031595
        Validity
            Not Before: Aug  8 16:00:52 2025 GMT
            Not After : Aug  9 16:00:52 2025 GMT
        Subject: CN=edb08102152762822f32532b839cde38857ada5d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:c5:cc:4f:25:93:61:9b:b4:eb:bd:9f:ea:94:
                    7c:aa:c4:8a:2b:2f:3c:fd:c1:33:96:60:de:cb:78:
                    95:9c:3f:e2:da:69:9b:c9:74:4f:9e:e1:60:ec:65:
                    40:81:ee:78:f8:33:3e:87:77:70:b1:48:c0:3e:7b:
                    56:c4:49:82:83:e1:25:ff:8c:6b:d6:86:b3:4f:38:
                    1e:0f:bf:bf:bf:80:d5:60:be:26:8c:87:30:e8:9a:
                    f1:43:95:ab:be:a4:6c:0a:9b:13:dd:c8:25:b5:30:
                    6d:fe:7c:cc:05:6f:59:44:09:89:c5:f9:46:c2:18:
                    95:52:c3:e2:5c:be:79:36:fd:9a:9b:f9:75:b6:7a:
                    4c:75:1b:68:4e:20:e0:4c:b5:48:24:6d:0f:e7:70:
                    3d:19:f1:b9:0e:1a:cf:c8:1d:66:7a:20:94:c2:52:
                    ed:63:d0:68:db:1e:05:cf:6a:5e:62:6a:bc:da:61:
                    23:4a:40:17:94:24:9e:30:ae:76:40:7e:3f:9b:35:
                    87:3d:01:60:13:e7:3f:af:bf:4c:f9:ca:cf:7e:da:
                    14:ea:93:bc:1c:57:cd:44:b1:59:c7:dc:38:79:71:
                    04:02:74:8e:b3:33:5c:29:b3:50:da:69:ec:f3:4a:
                    ad:d3:d4:a8:4c:fc:b7:36:21:15:3a:05:57:02:62:
                    ea:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:B0:81:02:15:27:62:82:2F:32:53:2B:83:9C:DE:38:85:7A:DA:5D
            X509v3 Authority Key Identifier:
                keyid:66:90:D0:72:21:40:0E:37:B0:1E:74:A7:12:FA:E7:C6:D7:03:15:95

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpDQciFADjewHnSnEvrnxtcDFZU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/58/d565b2-dc18-4460-bf02-461acb8a1c9f/1/ZpDQciFADjewHnSnEvrnxtcDFZU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:69:00:64:0e:5f:96:b7:c1:bd:72:75:03:73:e1:b2:ec:f5:
         9f:2e:fe:c4:8e:96:6a:1d:7b:fe:3c:0a:91:db:5b:98:f6:57:
         36:90:e4:9d:26:2f:5d:f9:5a:57:57:2f:47:c1:f9:ad:1e:66:
         ac:5e:53:11:46:cb:62:e7:bc:bf:5f:92:b3:8d:22:66:da:3c:
         39:ec:45:16:de:f1:b6:31:81:83:ab:3d:42:44:44:93:aa:75:
         da:be:46:df:b4:8b:c6:eb:a0:e1:d5:13:a2:63:44:1f:26:81:
         a4:d4:74:4f:32:d0:7c:55:f8:e0:a8:1b:29:83:50:40:93:05:
         fb:be:8c:de:d9:97:37:57:a7:d7:e2:ed:69:d9:3d:62:0c:22:
         1e:0c:8e:37:06:a2:a4:58:70:d9:01:71:ab:22:2a:62:3b:2f:
         8f:e5:66:08:d7:8e:8d:1c:e5:f5:f1:f4:6f:7c:f1:84:18:ca:
         b1:28:2b:29:9b:ae:46:22:e9:a4:2f:bd:cb:01:7a:cc:49:d5:
         df:6f:e7:e2:51:cb:a9:fa:5f:56:02:1f:70:e6:9c:f9:6a:34:
         7c:47:5e:0b:10:36:d8:bf:72:1d:51:0c:70:68:41:df:98:eb:
         36:17:b5:75:4b:cf:3d:c0:29:c3:7f:60:d7:da:e7:0f:ab:75:
         44:e5:0d:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----