Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/3ef846-f84d-455f-8ee8-f9613da09eeb/1/I3Q_4xfDJL95Q-pzp9S3hs_cHp8.mft
File:                     I3Q_4xfDJL95Q-pzp9S3hs_cHp8.mft (raw, json)
Hash identifier:          tdIilBFOPJ/uKQLwIYcKCF07NsW+geO550RpmcUhbr8=
Subject key identifier:   93:61:78:92:87:4A:B9:17:D1:83:E7:A8:0E:50:24:AA:3A:E0:F1:53
Authority key identifier: 23:74:3F:E3:17:C3:24:BF:79:43:EA:73:A7:D4:B7:86:CF:DC:1E:9F
Certificate issuer:       /CN=23743fe317c324bf7943ea73a7d4b786cfdc1e9f
Certificate serial:       019883566C17233EA8D10FD54BE954B4A065
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/I3Q_4xfDJL95Q-pzp9S3hs_cHp8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9b/3ef846-f84d-455f-8ee8-f9613da09eeb/1/I3Q_4xfDJL95Q-pzp9S3hs_cHp8.mft
Manifest number:          161B
Signing time:             Thu 07 Aug 2025 07:02:15 +0000
Manifest this update:     Thu 07 Aug 2025 07:02:15 +0000
Manifest next update:     Fri 08 Aug 2025 07:02:15 +0000
Files and hashes:         1: I3Q_4xfDJL95Q-pzp9S3hs_cHp8.crl (hash: lz0X5AgmjjZbnzu484bUqIuvSrDXgG+4EdYHk1V1I3A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9b/3ef846-f84d-455f-8ee8-f9613da09eeb/1/I3Q_4xfDJL95Q-pzp9S3hs_cHp8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9b/3ef846-f84d-455f-8ee8-f9613da09eeb/1/I3Q_4xfDJL95Q-pzp9S3hs_cHp8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/I3Q_4xfDJL95Q-pzp9S3hs_cHp8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 08 Aug 2025 07:02:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:83:56:6c:17:23:3e:a8:d1:0f:d5:4b:e9:54:b4:a0:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=23743fe317c324bf7943ea73a7d4b786cfdc1e9f
        Validity
            Not Before: Aug  7 07:02:15 2025 GMT
            Not After : Aug  8 07:02:15 2025 GMT
        Subject: CN=93617892874ab917d183e7a80e5024aa3ae0f153
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:2f:dc:82:dc:70:6a:dc:1f:d4:df:bd:93:2d:
                    4b:00:65:8e:c5:8c:a8:70:13:a2:fd:f3:8a:9f:52:
                    2f:26:a8:d7:be:8b:da:37:63:64:bc:bb:ab:e0:0e:
                    13:59:25:2b:b0:51:2f:68:79:a8:3e:2b:a3:f9:5f:
                    0e:f7:72:8b:6a:d2:96:25:24:f6:fd:3f:46:d6:c1:
                    c6:a4:15:7c:f9:33:a8:d9:24:99:02:3a:1b:d0:0c:
                    e4:d0:05:2e:c9:4f:f1:fb:1d:09:b1:44:b0:c3:a0:
                    e3:90:00:f8:28:e5:38:df:de:ce:dd:99:e0:60:d9:
                    e3:46:fa:7a:e4:11:b4:11:35:7b:61:99:8b:3e:17:
                    a9:9a:f4:e3:c7:3a:ed:c5:61:f2:43:df:87:9d:97:
                    3c:9a:c0:af:b6:cc:ba:bd:29:be:16:8b:e2:45:31:
                    3f:9c:6a:45:8d:dc:cf:d0:30:ae:79:2e:b3:85:96:
                    18:b4:cb:70:e0:dd:ec:e7:81:f2:2c:ba:e5:3f:6e:
                    40:f2:88:d9:ac:d0:b2:e8:25:9f:e0:e1:e4:d1:1f:
                    29:15:17:11:ed:5c:ad:3c:39:cf:4d:5e:c9:71:09:
                    32:85:13:2e:c7:cd:19:bb:80:96:8b:92:22:63:2c:
                    1f:f4:58:c3:9c:13:ca:53:e8:fe:13:80:5e:80:ac:
                    08:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:61:78:92:87:4A:B9:17:D1:83:E7:A8:0E:50:24:AA:3A:E0:F1:53
            X509v3 Authority Key Identifier:
                keyid:23:74:3F:E3:17:C3:24:BF:79:43:EA:73:A7:D4:B7:86:CF:DC:1E:9F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3Q_4xfDJL95Q-pzp9S3hs_cHp8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3ef846-f84d-455f-8ee8-f9613da09eeb/1/I3Q_4xfDJL95Q-pzp9S3hs_cHp8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/3ef846-f84d-455f-8ee8-f9613da09eeb/1/I3Q_4xfDJL95Q-pzp9S3hs_cHp8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:10:02:87:a9:e6:9b:d4:3c:28:a9:ad:7c:69:b4:34:e6:71:
         17:a7:76:bc:0f:cf:af:1a:95:b1:ec:21:18:b9:00:03:de:62:
         d7:ad:67:f0:b7:20:d2:d2:aa:f7:13:4f:90:ee:1f:59:70:3e:
         ab:f2:e0:bd:2d:42:d2:38:46:b1:b1:0b:a1:29:c5:1b:06:b1:
         d1:4d:ef:87:d8:8f:ed:16:59:17:75:1f:ef:1c:50:f9:28:f5:
         d5:9e:aa:d6:9b:95:9e:ea:cb:e5:e0:06:51:b5:d3:4c:b6:b7:
         d2:fd:5f:64:7d:c6:46:1c:65:f5:df:17:a4:a6:ef:b7:7c:2d:
         97:64:25:1c:1d:f2:b3:5b:4c:7c:64:02:d2:e4:80:09:01:85:
         fa:cc:27:37:4a:85:f7:ed:c1:f5:5e:43:8f:bd:ea:4b:bd:11:
         54:f4:b0:19:32:84:38:ca:94:5e:b0:84:9f:95:cb:c9:6e:18:
         a7:97:e2:6f:79:4a:80:40:c6:cd:be:3d:17:bc:ee:d3:c6:ef:
         d0:36:1d:96:55:e6:d3:f0:3d:b7:f3:5a:f6:45:ca:e2:96:0a:
         1a:a8:77:3c:23:03:99:64:37:09:32:f0:b6:66:b1:82:60:47:
         49:d8:34:da:1e:31:de:dd:2d:70:75:7f:64:fe:d8:2a:65:2b:
         f4:0d:29:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----