Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/6bc0f1-d1ea-4900-98ca-f16f994ecf43/1/CIAqhiH4eCf9WXI85my1nDj5HyE.mft
File:                     CIAqhiH4eCf9WXI85my1nDj5HyE.mft (raw, json)
Hash identifier:          dZxgSw/jlPPhGlyYOMCsiYFwS25FGyEI0CyUBdG/WHA=
Subject key identifier:   EC:C4:59:34:13:BD:27:96:26:F0:E8:CA:65:5F:89:4E:11:7C:17:7C
Authority key identifier: 08:80:2A:86:21:F8:78:27:FD:59:72:3C:E6:6C:B5:9C:38:F9:1F:21
Certificate issuer:       /CN=08802a8621f87827fd59723ce66cb59c38f91f21
Certificate serial:       01988D6AD2F14B69503AC491A40275A56CC9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CIAqhiH4eCf9WXI85my1nDj5HyE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a0/6bc0f1-d1ea-4900-98ca-f16f994ecf43/1/CIAqhiH4eCf9WXI85my1nDj5HyE.mft
Manifest number:          097C
Signing time:             Sat 09 Aug 2025 06:00:44 +0000
Manifest this update:     Sat 09 Aug 2025 06:00:44 +0000
Manifest next update:     Sun 10 Aug 2025 06:00:44 +0000
Files and hashes:         1: CIAqhiH4eCf9WXI85my1nDj5HyE.crl (hash: SAP78zqpiSsknrSf+vmpcTrPhm4OE2w6/wgQOEfSZzI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a0/6bc0f1-d1ea-4900-98ca-f16f994ecf43/1/CIAqhiH4eCf9WXI85my1nDj5HyE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a0/6bc0f1-d1ea-4900-98ca-f16f994ecf43/1/CIAqhiH4eCf9WXI85my1nDj5HyE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CIAqhiH4eCf9WXI85my1nDj5HyE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 10 Aug 2025 05:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8d:6a:d2:f1:4b:69:50:3a:c4:91:a4:02:75:a5:6c:c9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08802a8621f87827fd59723ce66cb59c38f91f21
        Validity
            Not Before: Aug  9 06:00:44 2025 GMT
            Not After : Aug 10 06:00:44 2025 GMT
        Subject: CN=ecc4593413bd279626f0e8ca655f894e117c177c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:1c:8a:f4:c7:47:14:c6:c1:6c:cb:a9:34:9d:
                    62:0a:f4:39:64:f0:3b:cb:aa:4b:ac:08:ab:d5:a6:
                    1f:61:d5:16:e4:7d:f9:e0:d7:e0:c8:81:8b:d7:4e:
                    b5:e3:05:90:f7:4d:51:a9:f3:5a:95:f8:88:f7:69:
                    d8:15:7a:53:9c:6a:67:16:90:64:54:50:29:92:7b:
                    bd:31:c6:05:fd:ea:30:48:2b:d9:70:fe:9e:94:c6:
                    0a:65:dd:28:3a:8a:35:28:de:14:f9:8c:b7:f5:e0:
                    af:47:37:b8:81:34:c5:8c:db:64:0d:76:82:3c:28:
                    c3:39:61:db:8b:8c:12:69:72:da:19:e4:43:42:c3:
                    b4:1d:27:3e:51:43:2b:a0:7a:d3:e1:33:b4:36:7e:
                    68:d7:49:6b:c3:8d:97:db:47:24:0a:46:61:f3:c4:
                    dc:7c:a0:0d:e4:35:48:ef:f0:6b:b4:49:8a:5d:ea:
                    f8:e1:23:b8:43:24:a6:ca:63:c4:25:23:f7:5a:55:
                    cc:b3:5d:47:18:9e:7e:a6:0e:4e:23:de:53:74:b8:
                    0d:9b:b3:76:5c:00:cc:2d:4b:9e:98:91:ac:0f:09:
                    7e:c6:a3:e8:e4:27:34:ac:c7:2f:94:e1:da:ef:a8:
                    d0:95:c9:88:ce:b9:cb:3f:fc:14:c5:98:f8:e9:dd:
                    18:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:C4:59:34:13:BD:27:96:26:F0:E8:CA:65:5F:89:4E:11:7C:17:7C
            X509v3 Authority Key Identifier:
                keyid:08:80:2A:86:21:F8:78:27:FD:59:72:3C:E6:6C:B5:9C:38:F9:1F:21

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIAqhiH4eCf9WXI85my1nDj5HyE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6bc0f1-d1ea-4900-98ca-f16f994ecf43/1/CIAqhiH4eCf9WXI85my1nDj5HyE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6bc0f1-d1ea-4900-98ca-f16f994ecf43/1/CIAqhiH4eCf9WXI85my1nDj5HyE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         43:95:c0:fd:3c:a5:8f:4f:a3:63:93:2f:ba:d5:eb:4c:50:1e:
         8a:37:b9:fb:60:78:e9:2d:a8:64:3c:2b:87:38:b5:29:1d:e4:
         f3:14:a7:7f:d6:80:3f:2b:c3:cb:4b:26:df:22:08:86:cb:d5:
         95:f0:85:71:ff:fb:85:ce:fa:c9:30:65:ea:d4:d0:9f:03:69:
         59:a7:08:42:2d:49:67:a3:d3:e3:2a:86:c9:81:1d:a5:4f:f8:
         03:f6:2a:f6:1d:23:e4:6a:ee:6f:2e:04:1a:42:69:b6:d4:f9:
         df:c8:d8:87:e9:b3:6a:23:6b:d0:35:0f:65:35:8b:37:5f:03:
         a3:bb:39:f5:cc:b3:fa:6c:85:23:26:e1:00:89:13:94:57:43:
         38:d9:dd:99:6d:a2:86:3b:8c:ac:ad:52:4c:76:8b:84:c7:b2:
         46:16:cd:8e:c2:6d:ed:33:80:c2:02:8b:fe:7b:f0:4a:ed:c7:
         f9:0a:74:cf:0d:d9:a8:69:ce:fa:ac:b0:34:60:0a:b8:5b:56:
         db:d7:06:de:2f:b5:31:21:ff:98:3c:e4:73:2d:2e:a1:3d:5c:
         1f:37:69:e2:48:df:ee:09:f9:8e:cf:6b:46:89:cb:76:20:1c:
         bb:ce:f3:a1:4c:08:5d:b3:e9:1c:76:2a:fc:f4:f3:ac:b0:1f:
         a0:49:07:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----