Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft
File:                     YDRE4ZlioZHv0vIWoSji9M_io94.mft (raw, json)
Hash identifier:          MigFJE5OH+EcrkWcQF929kUfnuJzEJxtjcdjVSqpiyE=
Subject key identifier:   F5:5E:B2:AB:5F:0C:E4:02:18:D3:5F:2A:17:81:6A:05:AC:72:BA:FA
Authority key identifier: 60:34:44:E1:99:62:A1:91:EF:D2:F2:16:A1:28:E2:F4:CF:E2:A3:DE
Certificate issuer:       /CN=603444e19962a191efd2f216a128e2f4cfe2a3de
Certificate serial:       019873E4136F04A08162FC97CF194875A813
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YDRE4ZlioZHv0vIWoSji9M_io94.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft
Manifest number:          0631
Signing time:             Mon 04 Aug 2025 07:03:03 +0000
Manifest this update:     Mon 04 Aug 2025 07:03:03 +0000
Manifest next update:     Tue 05 Aug 2025 07:03:03 +0000
Files and hashes:         1: YDRE4ZlioZHv0vIWoSji9M_io94.crl (hash: UWh40QG4B1rmMy1D4Igd0zpdISD/9gCw1fvFbtVPepo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YDRE4ZlioZHv0vIWoSji9M_io94.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e4:13:6f:04:a0:81:62:fc:97:cf:19:48:75:a8:13
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=603444e19962a191efd2f216a128e2f4cfe2a3de
        Validity
            Not Before: Aug  4 07:03:03 2025 GMT
            Not After : Aug  5 07:03:03 2025 GMT
        Subject: CN=f55eb2ab5f0ce40218d35f2a17816a05ac72bafa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:97:81:3b:86:a7:48:74:80:5c:07:07:b5:51:
                    c5:3a:a5:eb:cf:70:00:07:c2:91:36:c5:ab:a8:05:
                    a9:f7:67:6f:f7:d3:09:24:26:68:0d:02:c8:4c:1c:
                    02:41:fa:ad:30:b8:4a:5d:47:e1:59:a7:a3:66:b5:
                    93:8e:a8:a1:e6:35:96:55:fa:f2:5e:eb:d2:a4:4d:
                    4d:d7:62:c4:b6:aa:be:ac:4d:8a:31:64:7a:0b:d6:
                    a1:4a:9c:7f:74:da:79:2e:8c:04:f8:2a:b8:be:cd:
                    6e:59:53:0a:44:48:50:5d:fb:36:4a:c5:fa:f5:95:
                    26:f3:5e:23:14:b0:d5:fb:9f:b4:66:e9:c7:26:26:
                    f1:e7:03:cb:74:f1:6f:4d:82:a2:4d:b2:76:de:e5:
                    ed:10:96:b6:ba:b1:4d:79:7d:0e:9d:99:fc:c5:86:
                    1a:12:4a:d9:62:46:93:69:2e:13:14:4e:b1:4f:b7:
                    66:8b:26:ea:97:04:3d:b7:a7:47:99:bc:be:5a:29:
                    d7:dd:5c:5e:9b:b2:b2:b8:35:c1:ed:0c:c9:0a:c8:
                    b8:50:bb:e3:18:2c:52:17:6c:c3:8b:fb:6b:27:2b:
                    e1:d9:dd:80:96:eb:c3:cb:14:06:3c:ae:9f:99:e8:
                    43:30:d0:94:de:f6:69:79:db:8c:df:cf:94:e1:48:
                    7a:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:5E:B2:AB:5F:0C:E4:02:18:D3:5F:2A:17:81:6A:05:AC:72:BA:FA
            X509v3 Authority Key Identifier:
                keyid:60:34:44:E1:99:62:A1:91:EF:D2:F2:16:A1:28:E2:F4:CF:E2:A3:DE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDRE4ZlioZHv0vIWoSji9M_io94.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/1f32cb-dab2-4a9f-ae77-8447e29c1524/1/YDRE4ZlioZHv0vIWoSji9M_io94.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:6e:11:35:50:8a:e0:f3:a8:9a:34:75:22:2d:49:ef:45:7c:
         e9:82:4a:62:d6:76:b8:2f:0e:62:f1:4b:64:6c:d3:8f:90:18:
         f0:c4:90:ea:38:c8:5a:7c:c9:6e:42:3e:31:4b:7d:3b:6c:e8:
         45:96:b5:3c:ac:d0:e4:8e:1d:4b:fe:a6:23:d1:7a:62:c9:b3:
         ab:97:8e:bc:ac:ff:7c:13:c6:2a:4c:91:6c:8c:95:37:1d:26:
         da:66:36:54:39:61:7a:d6:59:30:c8:ee:6c:49:56:9c:6b:bf:
         cc:60:6d:2c:4e:62:60:79:de:6d:b2:a3:2f:cc:e6:1c:d0:24:
         fe:20:71:ec:23:f6:c0:a2:6e:35:9d:8a:6a:24:9f:47:61:6d:
         cb:9b:bb:78:54:31:08:e8:d2:79:1e:80:cc:cf:67:18:9e:42:
         21:8d:fa:ff:d6:be:8a:2b:62:f8:ec:21:c1:d9:34:0e:a2:03:
         aa:3e:51:a3:ef:ee:f3:a8:70:89:45:84:fb:89:d4:bd:74:b1:
         01:31:42:96:16:07:49:76:d6:52:fe:19:8e:dc:fb:02:b4:06:
         eb:6c:7f:2c:18:8c:66:2f:ef:06:9c:ed:02:8a:0f:f0:f9:35:
         b1:9a:2a:b1:7a:ad:dc:45:2a:2c:47:91:bf:70:a1:b5:7a:a8:
         cf:88:33:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----