Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/41cc57-06a4-4732-8bfc-f3f15b1265bb/1/S8zQ21Lw7U9zpoHj02q2wjAnfTw.mft
File:                     S8zQ21Lw7U9zpoHj02q2wjAnfTw.mft (raw, json)
Hash identifier:          cq1y8vJ+d2I7vGhmgdePL5H4L9iXEPlUUmpmUthuOXw=
Subject key identifier:   3A:11:3E:69:56:55:96:BB:61:4B:82:6C:8B:EA:47:F1:C1:54:CB:3F
Authority key identifier: 4B:CC:D0:DB:52:F0:ED:4F:73:A6:81:E3:D3:6A:B6:C2:30:27:7D:3C
Certificate issuer:       /CN=4bccd0db52f0ed4f73a681e3d36ab6c230277d3c
Certificate serial:       01989600847D79F5988B512C17D7201EAF38
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/S8zQ21Lw7U9zpoHj02q2wjAnfTw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b0/41cc57-06a4-4732-8bfc-f3f15b1265bb/1/S8zQ21Lw7U9zpoHj02q2wjAnfTw.mft
Manifest number:          083B
Signing time:             Sun 10 Aug 2025 22:01:12 +0000
Manifest this update:     Sun 10 Aug 2025 22:01:12 +0000
Manifest next update:     Mon 11 Aug 2025 22:01:12 +0000
Files and hashes:         1: S8zQ21Lw7U9zpoHj02q2wjAnfTw.crl (hash: PyFMWc1FVqNVDcKMTOV1zZUeQ9u0mxWWYfurDJh53Fg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b0/41cc57-06a4-4732-8bfc-f3f15b1265bb/1/S8zQ21Lw7U9zpoHj02q2wjAnfTw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b0/41cc57-06a4-4732-8bfc-f3f15b1265bb/1/S8zQ21Lw7U9zpoHj02q2wjAnfTw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/S8zQ21Lw7U9zpoHj02q2wjAnfTw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 22:01:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:96:00:84:7d:79:f5:98:8b:51:2c:17:d7:20:1e:af:38
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4bccd0db52f0ed4f73a681e3d36ab6c230277d3c
        Validity
            Not Before: Aug 10 22:01:12 2025 GMT
            Not After : Aug 11 22:01:12 2025 GMT
        Subject: CN=3a113e69565596bb614b826c8bea47f1c154cb3f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:51:9c:50:76:53:9d:97:74:88:a9:8b:df:b5:
                    59:ad:1d:90:eb:c7:94:6e:d9:fb:b2:21:5c:98:5d:
                    56:47:a9:4d:15:80:b5:f1:82:75:9a:c6:1d:bf:a7:
                    8d:d9:ce:12:0d:7a:05:08:4c:8f:8f:15:d7:ac:04:
                    47:f1:a1:2f:56:95:bf:e6:dc:81:71:ed:62:f9:ce:
                    17:66:d1:6c:df:fd:26:50:f1:99:46:85:43:5d:5e:
                    e2:34:dc:89:cb:5a:27:91:d4:b1:71:77:3a:dd:b4:
                    64:f9:56:88:a4:fc:6e:e7:b6:47:5c:bc:81:2d:b2:
                    74:1c:c2:08:8c:f5:2c:86:85:62:79:97:5b:27:b0:
                    05:e2:35:d5:22:bb:e0:2d:0c:2a:f3:43:78:9b:f3:
                    d0:d2:20:12:74:c6:97:25:33:b3:49:6f:2a:d2:01:
                    2b:b4:c2:21:bd:d0:b7:08:e3:66:df:b3:ed:30:34:
                    67:70:94:86:f4:19:1b:67:c2:b4:7d:92:5d:0f:29:
                    37:97:9d:6c:33:35:ed:68:02:7a:42:84:d4:5c:9b:
                    a2:9c:3c:3b:0d:b2:80:cc:b5:78:ef:77:f5:5a:32:
                    7f:5e:66:57:7c:fa:cf:6d:6b:f3:98:f3:0d:cd:0a:
                    32:0b:6b:03:f0:bf:16:2e:b1:00:28:b4:cf:a8:9d:
                    9e:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3A:11:3E:69:56:55:96:BB:61:4B:82:6C:8B:EA:47:F1:C1:54:CB:3F
            X509v3 Authority Key Identifier:
                keyid:4B:CC:D0:DB:52:F0:ED:4F:73:A6:81:E3:D3:6A:B6:C2:30:27:7D:3C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8zQ21Lw7U9zpoHj02q2wjAnfTw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/41cc57-06a4-4732-8bfc-f3f15b1265bb/1/S8zQ21Lw7U9zpoHj02q2wjAnfTw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/41cc57-06a4-4732-8bfc-f3f15b1265bb/1/S8zQ21Lw7U9zpoHj02q2wjAnfTw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:2c:48:2f:b9:c7:65:21:b8:66:6c:ad:66:57:43:f2:9b:46:
         c2:34:f3:57:40:b3:59:2a:51:45:f3:13:8f:c2:53:a7:1e:d2:
         d9:a1:dd:16:7d:b6:33:79:50:c5:bd:54:a2:93:92:a3:30:f8:
         79:1b:2c:73:28:ed:bd:84:bd:9b:89:33:00:c2:53:93:35:bf:
         c3:c6:9e:ab:70:f8:65:65:a3:f0:46:5c:80:9e:96:f6:e1:af:
         05:d1:26:ff:58:8d:5d:fc:88:c3:64:7d:41:89:e0:a7:2f:d2:
         0c:53:3d:dd:cf:59:46:f7:70:e2:75:45:ab:10:9f:9f:09:d7:
         16:50:01:7e:83:d6:c5:e6:06:1c:9e:4b:21:79:87:e7:63:97:
         f1:ce:04:5c:9e:e4:48:a1:b3:4f:02:d3:15:23:03:da:df:62:
         9b:26:1b:c6:ba:c6:b3:a9:15:fe:b4:a4:3d:23:cb:c3:7e:12:
         f9:21:33:f5:ff:2f:94:f1:4a:5b:56:93:34:b0:08:d9:e0:ab:
         61:4d:09:f3:b5:82:d4:0f:d1:ce:4e:e5:c3:69:04:39:bc:7f:
         b9:fc:b0:e3:de:2e:63:53:c2:9a:71:7d:99:3b:3e:f9:e2:4b:
         a9:df:75:a5:40:a1:92:58:eb:44:94:60:cf:d1:72:92:55:0b:
         50:6a:32:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----