Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
File:                     YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft (raw, json)
Hash identifier:          5WWRKxJDinfcQeb0CRqKGmo6/3AYWYWA7GykCktBO7s=
Subject key identifier:   7C:94:DD:D7:44:B5:02:EC:CD:36:AD:12:8E:63:B4:E2:EC:C7:D1:E6
Authority key identifier: 60:A4:34:FD:6B:FF:8B:6F:BB:0D:52:F8:DA:42:E9:1F:8A:5A:29:2F
Certificate issuer:       /CN=60a434fd6bff8b6fbb0d52f8da42e91f8a5a292f
Certificate serial:       0198922311E5C47B83695BB0213DA3D65E47
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
Manifest number:          07C0
Signing time:             Sun 10 Aug 2025 04:00:28 +0000
Manifest this update:     Sun 10 Aug 2025 04:00:28 +0000
Manifest next update:     Mon 11 Aug 2025 04:00:28 +0000
Files and hashes:         1: YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl (hash: Cc2pr6f6eZUj9Dm1gnsn9CmqhbMzVJeNDflB2g/6fxQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 04:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:92:23:11:e5:c4:7b:83:69:5b:b0:21:3d:a3:d6:5e:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=60a434fd6bff8b6fbb0d52f8da42e91f8a5a292f
        Validity
            Not Before: Aug 10 04:00:28 2025 GMT
            Not After : Aug 11 04:00:28 2025 GMT
        Subject: CN=7c94ddd744b502eccd36ad128e63b4e2ecc7d1e6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f8:0c:80:30:c8:a0:8f:b3:af:3e:0c:45:80:65:
                    0d:24:be:fd:fc:7e:2f:54:d6:02:b3:12:d1:a4:b9:
                    7c:65:cf:6a:00:81:65:b6:11:54:7b:fa:97:24:74:
                    ad:6a:d5:ac:30:35:5a:cd:4a:c6:c5:93:e0:9f:9e:
                    90:e5:0e:aa:53:4d:87:86:91:43:5c:23:fa:2b:c5:
                    a3:a5:39:5b:9b:2d:39:7c:04:d3:c0:2e:1a:30:ab:
                    f9:2d:01:e6:3d:72:18:de:83:c9:8b:ed:e2:37:6c:
                    b4:55:b8:58:08:7f:03:ba:a2:b3:4d:28:79:ff:92:
                    36:5c:14:eb:11:d4:c3:1d:ab:c0:a9:5b:a0:bd:b8:
                    68:8d:79:f7:da:5c:19:d1:41:6a:b6:f5:e7:ac:49:
                    85:9f:87:cf:9d:e5:53:98:0e:35:0b:01:8e:e9:77:
                    17:f3:fb:27:32:4b:26:2d:16:16:78:2a:0e:4e:d2:
                    58:c1:69:60:1a:e0:68:52:3f:aa:37:c0:fb:d3:4c:
                    40:f0:dd:51:8e:be:08:7d:29:73:87:99:48:3d:c0:
                    a4:e4:32:08:54:44:96:70:fc:79:42:d0:58:96:11:
                    5c:39:5f:ee:46:5f:cd:b3:e2:cc:d1:a8:ec:9b:a8:
                    85:83:48:35:24:47:77:d2:33:e3:50:ae:32:0d:45:
                    f6:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:94:DD:D7:44:B5:02:EC:CD:36:AD:12:8E:63:B4:E2:EC:C7:D1:E6
            X509v3 Authority Key Identifier:
                keyid:60:A4:34:FD:6B:FF:8B:6F:BB:0D:52:F8:DA:42:E9:1F:8A:5A:29:2F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         13:70:c0:b4:82:eb:0a:b7:04:97:8e:08:b6:98:9c:fe:48:4c:
         f4:94:e2:17:8e:77:d2:cb:a7:66:90:2f:6d:7f:63:b4:e8:f5:
         5c:9e:fe:8c:04:69:70:50:f0:46:cf:6c:12:79:2a:87:4b:76:
         5c:02:63:b5:1b:a5:a0:8a:5a:e3:ca:23:ee:1e:a4:35:48:f6:
         48:af:f9:f4:f9:e9:03:11:18:09:cc:20:2c:2c:ac:15:73:60:
         99:76:17:fd:b6:d6:4e:7f:e5:14:f0:b9:d8:3f:0d:95:50:6c:
         9b:79:de:ee:28:13:e9:19:60:83:71:82:2d:06:f7:7d:aa:c5:
         07:ed:95:e8:ff:9b:ef:04:1b:60:1e:be:3c:3a:b0:f6:70:65:
         51:83:21:fd:a5:06:c2:ec:c4:be:25:e0:50:36:e9:d4:a6:c6:
         c0:e0:df:43:3d:6c:19:ee:a0:7c:20:52:d8:57:0f:d4:5a:6c:
         a7:3d:8f:1d:00:e9:fc:ff:7f:1f:d1:b3:dd:6c:1f:0f:34:0c:
         7c:ba:13:e5:a1:b7:a7:6f:fb:01:af:e7:88:12:db:08:ed:61:
         cb:81:98:58:13:27:fe:70:7b:1e:dd:28:70:c9:d4:75:15:f2:
         65:1c:d2:13:f1:9e:93:c7:e9:2a:5e:b9:ed:c4:d1:17:f6:20:
         b7:f1:b7:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----