Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/9da7c4-d96d-401f-a7fe-21cfc83aeec6/1/HY-s3UFcS7p4J3uj57D-I9Klobg.mft
File:                     HY-s3UFcS7p4J3uj57D-I9Klobg.mft (raw, json)
Hash identifier:          DcBYdJNb9vX/u/+wIoBHPlpxbpvGxwa11Q2Ql1QKllI=
Subject key identifier:   F9:C4:3A:A5:68:C5:0D:1B:38:58:30:30:53:07:94:5F:05:64:57:0B
Authority key identifier: 1D:8F:AC:DD:41:5C:4B:BA:78:27:7B:A3:E7:B0:FE:23:D2:A5:A1:B8
Certificate issuer:       /CN=1d8facdd415c4bba78277ba3e7b0fe23d2a5a1b8
Certificate serial:       01988BEAD5109D53088540CF7919E497C768
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HY-s3UFcS7p4J3uj57D-I9Klobg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b1/9da7c4-d96d-401f-a7fe-21cfc83aeec6/1/HY-s3UFcS7p4J3uj57D-I9Klobg.mft
Manifest number:          01C2
Signing time:             Fri 08 Aug 2025 23:01:19 +0000
Manifest this update:     Fri 08 Aug 2025 23:01:19 +0000
Manifest next update:     Sat 09 Aug 2025 23:01:19 +0000
Files and hashes:         1: HY-s3UFcS7p4J3uj57D-I9Klobg.crl (hash: PDfACdPaOX6buNE8Cwb9CWfhKV/vC56OupN5djKFKyo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b1/9da7c4-d96d-401f-a7fe-21cfc83aeec6/1/HY-s3UFcS7p4J3uj57D-I9Klobg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b1/9da7c4-d96d-401f-a7fe-21cfc83aeec6/1/HY-s3UFcS7p4J3uj57D-I9Klobg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HY-s3UFcS7p4J3uj57D-I9Klobg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:ea:d5:10:9d:53:08:85:40:cf:79:19:e4:97:c7:68
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1d8facdd415c4bba78277ba3e7b0fe23d2a5a1b8
        Validity
            Not Before: Aug  8 23:01:19 2025 GMT
            Not After : Aug  9 23:01:19 2025 GMT
        Subject: CN=f9c43aa568c50d1b385830305307945f0564570b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:96:c4:45:47:17:a5:f2:05:b6:27:e9:62:79:
                    c0:88:a9:27:e7:13:3c:26:de:6d:72:5f:c4:40:17:
                    77:99:07:29:02:1f:8d:08:b5:c0:5c:1f:e2:c1:64:
                    5f:4b:55:de:18:0a:34:37:83:e3:ca:c2:2d:f4:70:
                    35:e6:4a:fb:04:7e:e4:ef:1e:19:5e:fc:24:c1:b4:
                    a8:a9:06:71:ba:b0:1b:4a:f4:ae:ac:e5:c6:27:f2:
                    c8:9e:75:30:e0:05:86:ca:48:b5:51:42:9e:ee:7f:
                    06:e8:f6:7d:c8:0e:a4:94:2c:23:ce:53:61:cd:6a:
                    f1:55:e1:c1:d3:63:bb:ac:26:66:fe:21:e4:67:8f:
                    6f:47:bb:ad:0f:09:06:b5:8e:75:fb:5a:1d:2d:24:
                    cf:26:64:01:b9:15:03:7d:14:f1:dd:d2:83:9e:fd:
                    47:96:b2:8b:0d:21:b5:ff:78:97:22:ec:5f:84:59:
                    fa:4d:3f:28:b7:5a:99:26:1d:48:a2:0c:49:c8:87:
                    77:b9:dd:5e:32:c0:6c:e0:76:e7:1e:85:71:0a:15:
                    22:d9:1b:87:42:4e:42:fa:f8:4f:d5:c0:4f:ce:c0:
                    50:85:dd:3e:98:dc:df:1e:c1:24:1e:4b:f0:d2:79:
                    ae:90:f2:49:77:40:ca:9c:8c:0f:fa:d5:73:75:16:
                    5d:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F9:C4:3A:A5:68:C5:0D:1B:38:58:30:30:53:07:94:5F:05:64:57:0B
            X509v3 Authority Key Identifier:
                keyid:1D:8F:AC:DD:41:5C:4B:BA:78:27:7B:A3:E7:B0:FE:23:D2:A5:A1:B8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HY-s3UFcS7p4J3uj57D-I9Klobg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9da7c4-d96d-401f-a7fe-21cfc83aeec6/1/HY-s3UFcS7p4J3uj57D-I9Klobg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/9da7c4-d96d-401f-a7fe-21cfc83aeec6/1/HY-s3UFcS7p4J3uj57D-I9Klobg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:ac:4a:07:73:d0:da:7f:1b:78:4d:4c:13:26:24:92:99:5e:
         6f:37:5d:71:44:8a:51:51:e2:15:6b:6a:fe:16:8f:37:fc:0e:
         73:6f:c7:77:12:34:4c:2f:16:48:bc:25:67:20:89:36:2b:3f:
         94:ea:b2:90:e1:f7:a5:e9:a8:3d:dc:3e:b9:0f:e7:50:0b:ba:
         ec:95:87:bc:a1:bf:5c:e4:b3:ab:0a:c8:78:dd:b8:7d:9a:0a:
         48:3b:de:9a:37:a7:fe:7c:9e:fe:b0:dd:4c:dc:a2:2e:99:42:
         cb:59:62:4a:7b:70:c2:91:12:8f:9d:c9:4e:50:5e:fd:49:5e:
         4a:ab:56:e7:bf:ad:be:29:b2:f3:a9:e9:83:6c:95:0e:29:32:
         f7:b3:64:14:d6:92:68:26:67:47:d9:5a:ed:3a:5d:9a:0d:74:
         4d:70:26:66:f7:bc:e2:4e:9e:f6:6a:67:f5:47:3e:c3:5c:9a:
         b5:dc:0d:71:df:44:0f:79:a2:14:b7:28:8b:8a:de:ea:e2:c1:
         29:83:dd:83:39:ac:c0:da:ce:93:79:5e:8b:cf:2e:61:36:75:
         26:e3:d7:f8:37:f8:65:c4:f1:bc:2e:7b:50:0e:17:90:76:81:
         f0:98:1f:d6:7c:5a:85:99:8a:0f:8a:b2:70:13:a8:24:97:ad:
         13:75:e6:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----