Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/fb00ec-babd-4172-8d4d-2a64f99baf5f/1/UJw4zD6qNVb6OaIvMNwbpINv6J8.mft
File:                     UJw4zD6qNVb6OaIvMNwbpINv6J8.mft (raw, json)
Hash identifier:          pu9n2wzCSXwsjhabPTX5Wm/o0SoIdOEscA6LqAj9pZY=
Subject key identifier:   A0:D6:FC:6F:AC:CF:68:40:6B:69:26:2A:5B:36:D9:7F:E1:0E:C3:2E
Authority key identifier: 50:9C:38:CC:3E:AA:35:56:FA:39:A2:2F:30:DC:1B:A4:83:6F:E8:9F
Certificate issuer:       /CN=509c38cc3eaa3556fa39a22f30dc1ba4836fe89f
Certificate serial:       019873E2F3F9E39BDFC921E26FD7DB78D8F3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UJw4zD6qNVb6OaIvMNwbpINv6J8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/fb00ec-babd-4172-8d4d-2a64f99baf5f/1/UJw4zD6qNVb6OaIvMNwbpINv6J8.mft
Manifest number:          1613
Signing time:             Mon 04 Aug 2025 07:01:50 +0000
Manifest this update:     Mon 04 Aug 2025 07:01:50 +0000
Manifest next update:     Tue 05 Aug 2025 07:01:50 +0000
Files and hashes:         1: UJw4zD6qNVb6OaIvMNwbpINv6J8.crl (hash: Nh4oYV32mxiYcu+yUWtOE8Wu7tI89bgS9X34LPMV+Aw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/fb00ec-babd-4172-8d4d-2a64f99baf5f/1/UJw4zD6qNVb6OaIvMNwbpINv6J8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/fb00ec-babd-4172-8d4d-2a64f99baf5f/1/UJw4zD6qNVb6OaIvMNwbpINv6J8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UJw4zD6qNVb6OaIvMNwbpINv6J8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e2:f3:f9:e3:9b:df:c9:21:e2:6f:d7:db:78:d8:f3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=509c38cc3eaa3556fa39a22f30dc1ba4836fe89f
        Validity
            Not Before: Aug  4 07:01:50 2025 GMT
            Not After : Aug  5 07:01:50 2025 GMT
        Subject: CN=a0d6fc6faccf68406b69262a5b36d97fe10ec32e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:33:b8:f7:f9:64:70:02:5c:18:3c:b1:92:a5:
                    3b:d3:7e:16:c1:c7:8e:16:aa:72:27:c5:06:25:7e:
                    05:8a:70:76:46:e5:69:a6:35:a9:2d:ea:7a:22:d9:
                    8e:bb:68:ce:e2:8a:d4:bb:2f:ec:ed:f2:43:06:86:
                    c6:21:da:7a:04:4d:71:10:8a:96:d7:65:4b:3e:ea:
                    e9:66:82:08:d7:b1:09:df:c9:00:a1:ae:05:8e:3f:
                    7f:bf:1f:80:da:2a:78:4a:9d:72:87:9e:de:b6:94:
                    eb:d3:f5:66:83:49:c5:50:90:2e:06:05:b4:4a:25:
                    9a:b2:a3:f2:1e:d5:18:63:ff:64:88:6e:4c:4a:59:
                    20:29:a5:04:7c:6a:23:94:ae:b0:c0:e7:67:ed:44:
                    91:35:af:3e:db:fc:b1:e9:57:0b:4e:a8:d3:d3:2a:
                    bf:99:3d:22:49:b2:eb:77:b7:17:27:25:73:6d:15:
                    ee:3e:17:c8:41:1a:00:b0:b0:06:8a:4d:cb:9e:13:
                    c9:dc:ad:cc:50:cb:8e:9e:c3:2c:8f:4f:24:d9:d4:
                    7e:13:e2:3c:51:e0:43:61:9e:4c:cb:43:a3:96:70:
                    84:9c:f5:07:36:b4:65:0a:e2:f4:b8:22:35:17:2f:
                    95:2f:62:ee:e3:61:e0:11:16:c8:10:89:68:32:04:
                    f8:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:D6:FC:6F:AC:CF:68:40:6B:69:26:2A:5B:36:D9:7F:E1:0E:C3:2E
            X509v3 Authority Key Identifier:
                keyid:50:9C:38:CC:3E:AA:35:56:FA:39:A2:2F:30:DC:1B:A4:83:6F:E8:9F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJw4zD6qNVb6OaIvMNwbpINv6J8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/fb00ec-babd-4172-8d4d-2a64f99baf5f/1/UJw4zD6qNVb6OaIvMNwbpINv6J8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/fb00ec-babd-4172-8d4d-2a64f99baf5f/1/UJw4zD6qNVb6OaIvMNwbpINv6J8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:ae:c7:f5:e0:fd:bf:51:0e:e8:fe:39:8d:b6:a8:6c:e4:35:
         c1:3e:a7:a9:29:2c:ea:16:74:03:fd:89:3a:9f:39:8f:51:93:
         d1:cb:be:2d:d7:eb:0d:73:6d:e4:7c:97:76:94:03:f6:2f:e0:
         f8:38:9e:96:c9:62:9b:a9:7b:1c:0e:00:88:36:10:12:87:ed:
         24:d2:64:aa:d8:86:63:e4:eb:d8:c0:12:68:e5:9e:d5:87:18:
         a4:ba:17:9f:da:f9:b0:15:de:44:b4:a2:71:d0:7d:4a:7a:ba:
         dd:c6:8d:8f:2f:2b:07:55:62:5d:c8:d6:7f:16:b0:99:d8:66:
         bb:41:08:e1:b9:36:c8:fa:22:75:e1:b9:4a:e9:d5:a8:22:8e:
         40:da:6f:c7:08:ac:43:18:89:ac:43:09:5e:b0:09:94:bc:40:
         e5:48:59:e4:ff:48:39:2a:c1:ab:f8:b3:9f:7c:a3:69:8d:9b:
         1a:46:bd:f2:4a:25:1d:e6:96:22:aa:d9:98:10:91:aa:cd:12:
         a6:81:06:4f:75:05:07:34:c7:be:b6:c9:40:20:48:c4:07:85:
         a9:0f:53:6f:47:91:ec:68:bf:be:72:6b:47:58:e2:d9:2c:0a:
         1c:30:d5:9f:3f:f5:c3:82:8a:d2:17:cc:92:50:6a:f5:ad:80:
         66:72:81:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----