Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/bde818-c0ed-4924-8d7b-6ec40c85a2ae/1/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.mft
File:                     KWLmoTNMnKnJPtV_9K1y2ZzpGtA.mft (raw, json)
Hash identifier:          p/edOPMfJQDXsz2v9eo3XXP3f0SYIL3DvEEy+/Tvfm4=
Subject key identifier:   DE:0F:15:CC:04:09:04:B2:A4:59:51:51:DC:5B:18:CF:64:F0:05:63
Authority key identifier: 29:62:E6:A1:33:4C:9C:A9:C9:3E:D5:7F:F4:AD:72:D9:9C:E9:1A:D0
Certificate issuer:       /CN=2962e6a1334c9ca9c93ed57ff4ad72d99ce91ad0
Certificate serial:       019897805AF0ADDF10E9C1A75B13176AC9BB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b0/bde818-c0ed-4924-8d7b-6ec40c85a2ae/1/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.mft
Manifest number:          070E
Signing time:             Mon 11 Aug 2025 05:00:28 +0000
Manifest this update:     Mon 11 Aug 2025 05:00:28 +0000
Manifest next update:     Tue 12 Aug 2025 05:00:28 +0000
Files and hashes:         1: KWLmoTNMnKnJPtV_9K1y2ZzpGtA.crl (hash: UNxGaHxxhUQz+SWlgkvKpq/ZUuNUUPnP4sQh/CfXeEU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b0/bde818-c0ed-4924-8d7b-6ec40c85a2ae/1/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b0/bde818-c0ed-4924-8d7b-6ec40c85a2ae/1/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 12 Aug 2025 02:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:97:80:5a:f0:ad:df:10:e9:c1:a7:5b:13:17:6a:c9:bb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2962e6a1334c9ca9c93ed57ff4ad72d99ce91ad0
        Validity
            Not Before: Aug 11 05:00:28 2025 GMT
            Not After : Aug 12 05:00:28 2025 GMT
        Subject: CN=de0f15cc040904b2a4595151dc5b18cf64f00563
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:16:d2:35:52:49:38:b3:59:90:f3:c7:3d:9b:
                    65:55:0d:25:63:9e:76:75:ee:12:84:b0:76:e2:06:
                    9b:54:da:e5:3e:59:a9:d6:1e:bd:20:bc:d7:fc:c4:
                    73:e9:d0:f2:62:aa:a8:74:92:b8:78:ac:d0:ad:3a:
                    2b:f2:77:f0:d6:5e:56:e2:10:ae:f6:08:70:db:ff:
                    db:8f:47:19:38:b8:1f:89:01:c3:be:fd:36:8d:73:
                    b0:55:87:90:fa:bd:91:74:66:cf:a5:4a:03:9f:30:
                    e9:e5:dd:c5:2d:75:81:02:9e:b2:06:1d:b6:55:fc:
                    34:c0:6d:53:bc:fb:58:4a:62:d3:d5:c4:10:88:7f:
                    0e:81:6a:4d:e3:9f:74:2f:e2:33:4a:44:20:40:b6:
                    e4:50:2c:65:f7:18:a4:ab:41:d8:34:9c:4f:bc:4d:
                    5a:01:4a:7e:81:30:a4:a7:5b:0e:9d:eb:b5:b8:0b:
                    f2:26:79:07:2f:28:ec:19:39:f4:8b:d3:b2:24:57:
                    ab:d4:36:c8:c7:aa:81:b7:5c:74:1c:6c:55:75:f6:
                    d5:4a:91:9d:aa:b5:77:a8:2d:d0:0a:47:93:51:4a:
                    ea:9f:fb:9d:07:f5:32:06:a3:66:28:ae:bc:b0:cc:
                    fb:2b:a9:cc:c1:86:86:2f:02:71:57:da:a5:83:dc:
                    ae:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DE:0F:15:CC:04:09:04:B2:A4:59:51:51:DC:5B:18:CF:64:F0:05:63
            X509v3 Authority Key Identifier:
                keyid:29:62:E6:A1:33:4C:9C:A9:C9:3E:D5:7F:F4:AD:72:D9:9C:E9:1A:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/bde818-c0ed-4924-8d7b-6ec40c85a2ae/1/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/bde818-c0ed-4924-8d7b-6ec40c85a2ae/1/KWLmoTNMnKnJPtV_9K1y2ZzpGtA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         73:34:61:8d:0b:22:85:70:0c:99:71:8f:95:35:92:86:0c:24:
         a7:5b:5e:81:54:24:fd:19:8a:45:f3:c4:c9:f3:1c:64:68:01:
         dd:9c:07:a1:01:85:45:a2:9f:cd:c8:78:f9:3e:0b:f0:55:03:
         e2:28:b3:05:f0:78:31:5a:f0:0b:c0:19:ae:17:73:b8:25:32:
         15:b7:ae:d9:6e:35:ed:15:16:12:72:d6:de:5a:16:1f:ef:9a:
         08:f3:23:5e:41:59:19:8e:d3:10:09:e1:2e:f8:1c:49:0e:51:
         b7:58:84:a9:c7:03:de:d5:4c:17:fa:ce:48:b0:0e:57:8c:1d:
         f5:e7:49:b7:0b:9f:0e:3d:28:ba:72:b9:57:70:40:10:d5:50:
         e7:6d:56:6f:c2:79:b7:fc:88:e5:ee:ff:5b:a1:18:4d:72:59:
         b9:a5:79:f0:d1:b7:b7:d1:70:dc:a9:9b:11:61:88:d0:22:e4:
         84:a4:85:a7:70:cc:f1:be:fc:95:44:ae:f5:1c:06:30:e8:eb:
         4a:c4:a0:d9:1d:9e:ec:4b:a1:d2:65:50:f1:63:d0:a4:0b:77:
         cc:34:d3:02:77:bf:f6:42:2d:31:aa:85:23:9d:9a:84:8e:37:
         ad:9b:0c:fd:13:25:3a:a7:29:79:87:a8:96:07:e8:40:64:b4:
         24:e1:94:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----