Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2f5d91-92ba-402e-be1c-d240d3611058/1/xrjeVShQrOhfyMDhaFLMc98QFp0.mft
File:                     xrjeVShQrOhfyMDhaFLMc98QFp0.mft (raw, json)
Hash identifier:          8Vj3tzmvliFb+mKV+VC4tKzjYCAqNtkfnlkHNviZVg0=
Subject key identifier:   68:99:71:7C:7D:3E:13:4C:4C:B1:83:DB:3F:54:65:5B:DB:D9:EF:34
Authority key identifier: C6:B8:DE:55:28:50:AC:E8:5F:C8:C0:E1:68:52:CC:73:DF:10:16:9D
Certificate issuer:       /CN=c6b8de552850ace85fc8c0e16852cc73df10169d
Certificate serial:       01989F02FF35B903B9B8559D6D62A40E989F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xrjeVShQrOhfyMDhaFLMc98QFp0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/2f5d91-92ba-402e-be1c-d240d3611058/1/xrjeVShQrOhfyMDhaFLMc98QFp0.mft
Manifest number:          0803
Signing time:             Tue 12 Aug 2025 16:00:30 +0000
Manifest this update:     Tue 12 Aug 2025 16:00:30 +0000
Manifest next update:     Wed 13 Aug 2025 16:00:30 +0000
Files and hashes:         1: xrjeVShQrOhfyMDhaFLMc98QFp0.crl (hash: P3eEw2vyQtY0skvsHc9hs8qT/3UlFVU1VjK6yU4/2DU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/2f5d91-92ba-402e-be1c-d240d3611058/1/xrjeVShQrOhfyMDhaFLMc98QFp0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/2f5d91-92ba-402e-be1c-d240d3611058/1/xrjeVShQrOhfyMDhaFLMc98QFp0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xrjeVShQrOhfyMDhaFLMc98QFp0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 13:24:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:9f:02:ff:35:b9:03:b9:b8:55:9d:6d:62:a4:0e:98:9f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c6b8de552850ace85fc8c0e16852cc73df10169d
        Validity
            Not Before: Aug 12 16:00:30 2025 GMT
            Not After : Aug 13 16:00:30 2025 GMT
        Subject: CN=6899717c7d3e134c4cb183db3f54655bdbd9ef34
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:67:84:ea:4f:12:3d:25:4e:59:3b:60:a3:85:
                    69:32:63:80:5e:2b:17:b5:9b:22:6d:64:96:36:bb:
                    e6:7c:0a:b5:e8:0a:3e:41:04:5c:58:69:76:4d:0d:
                    e7:a7:7f:8a:8a:58:f6:e8:34:d1:d5:2d:1e:7e:7d:
                    9e:9d:c6:e4:5c:24:73:de:af:dd:d2:82:04:0e:c0:
                    c7:6f:8b:00:f3:18:2a:5a:c4:49:03:c5:9d:3f:03:
                    51:57:47:af:31:0a:77:05:f5:bb:b2:03:2c:66:ed:
                    bf:6d:ef:d9:0a:dd:80:3a:ab:81:89:36:c6:23:30:
                    14:81:02:a8:3d:ee:f6:2b:71:39:3c:c1:dd:20:aa:
                    29:55:d4:60:ee:34:89:be:d1:1c:a7:2f:16:28:34:
                    5b:74:1d:93:aa:67:b3:78:18:c3:6e:e7:4f:51:05:
                    d4:c7:81:e6:8a:d5:92:7c:ec:f7:0d:de:86:39:63:
                    7b:fa:23:f9:d4:ec:67:50:d1:0d:0d:6e:bb:98:29:
                    62:b3:5f:cd:a2:9f:d7:49:6c:b8:c3:81:1d:55:03:
                    33:28:86:69:b8:2e:ce:7a:3c:66:fa:36:08:26:0a:
                    09:68:1c:62:c2:32:84:c0:19:e0:96:dc:56:d9:f2:
                    67:42:d6:2b:55:c3:ba:cc:e8:35:90:99:c3:ee:27:
                    00:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:99:71:7C:7D:3E:13:4C:4C:B1:83:DB:3F:54:65:5B:DB:D9:EF:34
            X509v3 Authority Key Identifier:
                keyid:C6:B8:DE:55:28:50:AC:E8:5F:C8:C0:E1:68:52:CC:73:DF:10:16:9D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xrjeVShQrOhfyMDhaFLMc98QFp0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f5d91-92ba-402e-be1c-d240d3611058/1/xrjeVShQrOhfyMDhaFLMc98QFp0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2f5d91-92ba-402e-be1c-d240d3611058/1/xrjeVShQrOhfyMDhaFLMc98QFp0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:d7:8d:64:58:39:b2:92:63:bb:f4:40:c8:1e:5b:47:44:05:
         49:83:f9:d1:34:2e:de:fa:00:1d:4e:10:35:e9:7b:17:6c:7b:
         79:75:0d:bb:ba:75:10:f5:cf:60:ea:bd:94:99:99:dd:dc:1c:
         da:8b:5b:db:c7:fa:81:49:17:c4:a6:b5:93:05:65:08:1b:d1:
         13:00:1f:ce:6c:88:a9:b0:06:7d:13:d5:00:99:12:62:a6:73:
         53:33:4a:89:9e:6b:66:e8:98:8a:7a:9a:76:65:85:a1:56:6b:
         24:21:08:74:4a:05:0c:88:12:3c:4c:04:ce:eb:3e:85:e7:70:
         18:e5:a8:79:9e:e3:ad:b2:7f:a8:32:15:c0:67:28:fc:89:5c:
         10:33:9f:dd:9f:49:4f:69:b0:3e:5d:52:c1:49:92:66:6f:d8:
         3c:d5:82:65:07:c6:c0:0e:99:5e:8c:50:5b:8d:bc:4a:4b:5f:
         f8:b5:5b:61:46:61:7c:eb:66:c1:84:21:62:e5:08:59:5b:54:
         80:dc:f3:82:9e:a9:fb:cc:a6:53:6f:e6:c4:0c:92:fd:f9:d5:
         d2:6f:49:e7:a3:fe:0a:af:87:b3:38:4c:1e:f7:cf:11:bb:37:
         3a:8e:41:c9:0a:b7:f8:41:48:bc:b8:84:63:9b:98:27:a4:01:
         17:23:0f:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----