Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
File:                     Igmk3BOlMEp6okvhwXi6QuF5L4U.mft (raw, json)
Hash identifier:          VPQWxeT8JZ4SFtbJd+4AjmDs6Zm77lac6SFKTljcpi0=
Subject key identifier:   69:26:03:EA:D4:B2:2D:12:B4:5F:58:00:C0:22:33:5B:44:02:D0:9D
Authority key identifier: 22:09:A4:DC:13:A5:30:4A:7A:A2:4B:E1:C1:78:BA:42:E1:79:2F:85
Certificate issuer:       /CN=2209a4dc13a5304a7aa24be1c178ba42e1792f85
Certificate serial:       0198808B03BD57DDBD84B7C942A25D3DA731
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
Manifest number:          0202
Signing time:             Wed 06 Aug 2025 18:00:50 +0000
Manifest this update:     Wed 06 Aug 2025 18:00:50 +0000
Manifest next update:     Thu 07 Aug 2025 18:00:50 +0000
Files and hashes:         1: Igmk3BOlMEp6okvhwXi6QuF5L4U.crl (hash: CLhlxTWGDyQFAGHT2jd7WPH0aIBU5Wf9QAJoQG+9pvU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 18:00:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:80:8b:03:bd:57:dd:bd:84:b7:c9:42:a2:5d:3d:a7:31
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2209a4dc13a5304a7aa24be1c178ba42e1792f85
        Validity
            Not Before: Aug  6 18:00:50 2025 GMT
            Not After : Aug  7 18:00:50 2025 GMT
        Subject: CN=692603ead4b22d12b45f5800c022335b4402d09d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:e9:bf:c9:e6:d1:76:dd:79:d4:23:eb:39:b9:
                    42:6a:47:0e:01:eb:6c:35:bb:e9:f1:26:b0:4e:e2:
                    31:1d:a4:ea:ba:a5:84:61:00:c9:dc:f7:6a:05:d4:
                    9e:ea:7e:16:02:95:ce:9d:89:d0:04:e4:ab:0a:9d:
                    1d:8b:65:e6:66:7d:a6:b6:26:bb:77:c0:57:50:8e:
                    da:f3:19:af:52:90:dc:3f:42:6b:9b:d3:3b:ef:a9:
                    57:84:fe:85:72:3e:c2:54:30:3b:c2:7a:35:81:ce:
                    4f:6d:81:41:a8:24:61:5e:85:7d:43:24:16:d5:87:
                    45:69:15:aa:e6:71:7b:0d:50:fd:94:6f:24:5f:d4:
                    b2:57:84:1b:3b:04:50:cf:1b:59:44:a5:4a:fd:e9:
                    39:72:d8:cf:d6:45:1f:62:6c:1e:ab:1a:d6:0e:d4:
                    9d:e3:a0:8b:6e:b3:de:8f:c6:92:d8:ec:96:54:60:
                    e2:7b:03:35:9a:92:61:6d:46:bd:13:58:f8:cd:4b:
                    9a:34:73:4a:95:9d:96:d0:87:84:b4:6c:30:ea:79:
                    0e:5a:1f:f6:02:90:48:e0:fc:3c:55:76:44:ee:61:
                    54:75:56:59:ea:15:d8:10:77:bc:62:36:bd:b3:2d:
                    ed:24:76:5d:60:0c:78:72:ac:7b:c9:f5:ab:bd:ea:
                    06:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:26:03:EA:D4:B2:2D:12:B4:5F:58:00:C0:22:33:5B:44:02:D0:9D
            X509v3 Authority Key Identifier:
                keyid:22:09:A4:DC:13:A5:30:4A:7A:A2:4B:E1:C1:78:BA:42:E1:79:2F:85

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Igmk3BOlMEp6okvhwXi6QuF5L4U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e4862a-511e-4c0c-951f-68afd4745149/1/Igmk3BOlMEp6okvhwXi6QuF5L4U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:d7:f5:d4:fc:44:c2:01:68:bf:ce:f9:a8:05:2b:0a:6b:b3:
         52:1a:e8:34:33:65:ce:f4:a6:44:56:16:42:41:80:79:78:15:
         69:73:ac:78:9b:9a:88:7d:63:23:9f:93:73:e8:4a:71:d6:2a:
         9c:95:e3:76:08:38:7a:e3:c7:a5:8b:55:c1:fe:5e:a6:e0:6a:
         4d:dc:df:5a:d3:b4:2a:63:3e:c2:15:08:6a:c8:46:79:06:6a:
         b5:00:03:46:3e:42:7c:28:c3:08:cb:69:cc:a2:16:12:2c:ac:
         51:84:9f:1b:80:a4:35:17:e4:23:d3:ff:30:75:c0:60:e4:fa:
         be:7e:76:bb:29:ac:c5:aa:47:7f:a4:ec:b5:20:2b:5f:c4:4f:
         2a:f3:ae:f9:97:e9:ef:51:b1:db:d0:ed:9c:0c:92:f4:2b:f7:
         d7:55:b7:2c:1c:00:9f:35:5f:9f:82:4b:f9:6e:40:33:6b:82:
         19:61:29:ca:9b:2c:87:60:07:06:89:37:09:72:54:7a:1f:a4:
         97:5f:66:f1:49:ed:d5:60:49:d2:1f:60:3c:b3:ee:67:fe:c1:
         52:67:d7:47:ae:b2:84:1a:a4:f3:cf:76:6b:df:3c:49:f4:c4:
         2f:24:23:35:e9:74:a0:fd:c9:98:c0:4b:67:b4:ea:f7:57:f7:
         18:41:32:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----