Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/01e232-4551-4ce8-8cd8-7d8b1c91ec7b/1/2JkZ-1GnBREdaZbuww_8RC3pei8.mft
File:                     2JkZ-1GnBREdaZbuww_8RC3pei8.mft (raw, json)
Hash identifier:          3BevCKHsF548DIUZE9D5HJ9mjpnuHt+kkzXdP/4BudI=
Subject key identifier:   C2:E2:A1:B8:72:E2:3E:5A:74:3A:54:4D:F2:EF:81:0B:CC:26:44:B9
Authority key identifier: D8:99:19:FB:51:A7:05:11:1D:69:96:EE:C3:0F:FC:44:2D:E9:7A:2F
Certificate issuer:       /CN=d89919fb51a705111d6996eec30ffc442de97a2f
Certificate serial:       0198733CF9C61D86F30E64D510ADBD7B8261
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2JkZ-1GnBREdaZbuww_8RC3pei8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6f/01e232-4551-4ce8-8cd8-7d8b1c91ec7b/1/2JkZ-1GnBREdaZbuww_8RC3pei8.mft
Manifest number:          1613
Signing time:             Mon 04 Aug 2025 04:00:32 +0000
Manifest this update:     Mon 04 Aug 2025 04:00:32 +0000
Manifest next update:     Tue 05 Aug 2025 04:00:32 +0000
Files and hashes:         1: 2JkZ-1GnBREdaZbuww_8RC3pei8.crl (hash: rjqWeXNus77Rm1q+/qIx6mV5ONGQUla/OZHiL9rhmoo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6f/01e232-4551-4ce8-8cd8-7d8b1c91ec7b/1/2JkZ-1GnBREdaZbuww_8RC3pei8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6f/01e232-4551-4ce8-8cd8-7d8b1c91ec7b/1/2JkZ-1GnBREdaZbuww_8RC3pei8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2JkZ-1GnBREdaZbuww_8RC3pei8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:3c:f9:c6:1d:86:f3:0e:64:d5:10:ad:bd:7b:82:61
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d89919fb51a705111d6996eec30ffc442de97a2f
        Validity
            Not Before: Aug  4 04:00:32 2025 GMT
            Not After : Aug  5 04:00:32 2025 GMT
        Subject: CN=c2e2a1b872e23e5a743a544df2ef810bcc2644b9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:fd:27:af:eb:da:34:a1:f9:9b:c2:37:d0:d7:
                    35:77:39:99:59:b2:33:d3:44:14:22:9c:a6:9e:f1:
                    e3:d7:2f:08:0b:a5:62:3f:c0:22:24:b7:23:5b:52:
                    b5:69:93:44:cb:f2:e3:e0:50:10:71:9b:b0:c2:85:
                    58:95:5e:ea:a7:02:62:c8:36:eb:81:25:9f:df:2a:
                    6c:ee:98:15:2e:93:8c:ac:b1:6a:c0:61:2b:d4:81:
                    21:f1:4d:06:b5:53:94:49:13:ed:07:15:93:70:ff:
                    a5:cb:bf:89:92:c9:8f:e7:12:2c:dd:c0:9c:0c:6b:
                    74:05:f0:72:78:e9:3b:de:9d:11:5a:78:85:b6:30:
                    30:e2:45:e5:4a:a4:52:d2:da:ff:15:6b:5b:62:8a:
                    e0:ed:6d:85:d6:6f:67:06:eb:2b:de:f9:34:5e:60:
                    54:af:84:b7:a4:9f:56:60:8a:aa:5c:d6:9f:35:84:
                    17:13:29:f2:70:c9:8a:0e:dc:e2:d2:82:61:81:13:
                    cf:62:3b:d2:b3:93:95:fd:19:9d:0a:67:5e:cb:82:
                    e9:91:77:5c:01:dd:ca:80:5d:6d:cb:f5:46:48:fe:
                    a4:2a:95:33:77:93:32:ed:ab:9b:f6:9b:eb:1f:1d:
                    a6:41:9b:15:70:d2:76:6d:3b:d7:39:9c:b2:83:76:
                    4f:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:E2:A1:B8:72:E2:3E:5A:74:3A:54:4D:F2:EF:81:0B:CC:26:44:B9
            X509v3 Authority Key Identifier:
                keyid:D8:99:19:FB:51:A7:05:11:1D:69:96:EE:C3:0F:FC:44:2D:E9:7A:2F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JkZ-1GnBREdaZbuww_8RC3pei8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/01e232-4551-4ce8-8cd8-7d8b1c91ec7b/1/2JkZ-1GnBREdaZbuww_8RC3pei8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/01e232-4551-4ce8-8cd8-7d8b1c91ec7b/1/2JkZ-1GnBREdaZbuww_8RC3pei8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:54:c6:0e:ea:05:c4:a4:24:11:f3:14:73:ed:38:d7:92:84:
         b0:c3:ac:14:08:d7:f5:1e:ef:4e:ce:76:a3:c8:77:6b:0c:09:
         2b:02:53:4f:ad:22:54:ab:79:36:db:7d:bd:7f:88:71:22:df:
         4f:e0:6b:52:f0:b8:f3:45:d4:e7:51:e3:e4:a5:31:90:f0:31:
         26:c5:fc:50:7f:2f:ef:f2:50:2b:fb:08:23:7b:9b:c8:88:51:
         1d:98:b9:17:ef:88:7c:87:77:c0:58:dc:00:76:27:40:3a:40:
         cb:c5:a9:cb:0d:63:3a:b0:d2:c5:d0:3a:9a:d2:8e:35:24:94:
         be:d9:10:39:c2:a0:e3:be:88:76:b0:6b:ae:8c:77:46:da:3c:
         ee:fa:b9:7c:65:24:bb:26:86:02:30:c3:01:3d:3b:78:01:0e:
         12:ea:2e:37:84:96:bd:e5:8c:e2:2b:92:01:e7:f6:0e:f6:e9:
         93:bf:ad:73:97:e5:7e:95:33:c2:54:a5:b3:83:72:26:12:8a:
         4e:10:fd:3d:7e:15:a1:42:e6:a9:14:44:79:e2:5c:0f:88:c9:
         ad:fc:29:71:c0:ba:1d:76:22:81:12:73:60:fd:12:f9:0c:7b:
         5d:fc:85:3f:cd:a1:c8:47:c3:78:5b:35:66:93:2c:eb:09:5c:
         6b:3c:0c:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----