Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft
File:                     8j79S9kntM6jMSCiG09zFNy-oXk.mft (raw, json)
Hash identifier:          2EkWrHttxfM/RojKGSGhctDnGHLcmcqFfIxLeMd0psg=
Subject key identifier:   E6:67:0E:CB:28:33:F1:B8:83:FB:51:F2:2C:A4:2E:65:E9:54:B7:CC
Authority key identifier: F2:3E:FD:4B:D9:27:B4:CE:A3:31:20:A2:1B:4F:73:14:DC:BE:A1:79
Certificate issuer:       /CN=f23efd4bd927b4cea33120a21b4f7314dcbea179
Certificate serial:       01987C777442041C2A751B1B7A1C5337210A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/8j79S9kntM6jMSCiG09zFNy-oXk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft
Manifest number:          0DC0
Signing time:             Tue 05 Aug 2025 23:00:59 +0000
Manifest this update:     Tue 05 Aug 2025 23:00:59 +0000
Manifest next update:     Wed 06 Aug 2025 23:00:59 +0000
Files and hashes:         1: 8j79S9kntM6jMSCiG09zFNy-oXk.crl (hash: QgNlnt2/ja3aoOQvRZ7b400zEAs3K1ou3WZnn7hsoAw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/8j79S9kntM6jMSCiG09zFNy-oXk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 23:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7c:77:74:42:04:1c:2a:75:1b:1b:7a:1c:53:37:21:0a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f23efd4bd927b4cea33120a21b4f7314dcbea179
        Validity
            Not Before: Aug  5 23:00:59 2025 GMT
            Not After : Aug  6 23:00:59 2025 GMT
        Subject: CN=e6670ecb2833f1b883fb51f22ca42e65e954b7cc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:27:22:f6:e2:d6:41:78:52:98:fa:b1:aa:6d:
                    7a:60:09:5e:56:0f:45:d0:6f:7c:4b:68:45:57:a7:
                    0d:b1:02:21:65:95:8c:c9:3b:5d:55:28:16:a2:d8:
                    e8:e6:03:17:aa:0a:40:05:10:31:9d:03:93:3f:54:
                    ca:1f:6f:27:ba:96:a6:0f:41:e4:be:26:84:e4:96:
                    21:bf:bd:cb:c3:6c:1f:e9:03:70:86:07:68:bb:9e:
                    cd:1f:80:88:20:fa:64:8d:84:2d:ca:df:08:20:2a:
                    96:c2:5d:9d:35:03:00:82:05:f9:a1:d6:49:f5:de:
                    ca:e5:aa:f9:ae:d9:f3:62:76:67:2f:63:60:eb:c7:
                    34:c8:38:54:e5:7f:93:71:72:e5:17:9d:3d:10:aa:
                    4e:aa:c2:8c:ac:cc:9e:95:fe:90:cc:49:f7:e3:f1:
                    8a:c3:0e:10:32:6c:3e:1a:d0:71:c8:71:0a:7e:2d:
                    11:01:a8:84:72:b4:22:7e:2c:18:ec:21:55:c9:10:
                    b5:bc:2e:0a:d5:1b:17:df:0e:25:6d:d6:17:bb:09:
                    6b:4e:1e:37:49:fd:dd:4a:46:02:5b:77:bc:75:27:
                    16:70:b4:73:a0:e8:da:de:a6:97:dc:24:a3:c0:06:
                    1c:ad:e5:33:15:19:c3:36:8c:59:97:67:49:ce:90:
                    5f:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E6:67:0E:CB:28:33:F1:B8:83:FB:51:F2:2C:A4:2E:65:E9:54:B7:CC
            X509v3 Authority Key Identifier:
                keyid:F2:3E:FD:4B:D9:27:B4:CE:A3:31:20:A2:1B:4F:73:14:DC:BE:A1:79

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8j79S9kntM6jMSCiG09zFNy-oXk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/770494-9f13-4a16-b2e2-d2c8a65aacfe/1/8j79S9kntM6jMSCiG09zFNy-oXk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:92:63:ce:cf:7b:68:a4:f4:ce:23:fc:1e:9d:c0:71:7a:e1:
         9a:bf:51:e7:a0:f5:f7:f2:74:ca:71:46:8a:bc:96:fd:17:87:
         88:f3:89:b8:33:22:c9:06:71:51:57:ee:27:94:5b:ed:64:67:
         59:5c:b4:be:f3:b7:9a:b3:23:b9:29:c6:ed:47:23:fe:60:57:
         36:25:aa:3f:bd:01:db:93:c4:2d:a7:55:3c:09:7a:2f:4c:f2:
         ca:51:e4:82:5a:39:61:7f:8d:6d:35:3c:58:7b:75:cc:7f:bc:
         1e:a4:83:54:5b:6f:c0:da:62:6e:88:c0:3a:42:81:b5:78:cc:
         25:3a:69:e5:91:af:5d:52:42:92:72:13:b8:1f:6a:c1:57:59:
         05:3d:ff:1c:1d:da:82:7a:e4:85:2f:e6:2a:b7:39:f5:29:34:
         12:a4:ae:0d:f6:f1:83:bb:56:4d:ff:12:c0:7f:c4:68:44:57:
         f1:ef:db:83:b3:e1:16:55:01:88:7b:8a:bf:95:2a:91:cb:94:
         fe:30:1b:1a:b6:b4:fe:a8:7a:03:a2:43:b4:2e:90:14:87:dd:
         0c:f2:4d:1e:2a:6a:09:0c:e7:1d:3d:2c:1a:bf:98:a0:a3:0f:
         0b:b9:1a:75:dd:b2:27:2c:d0:07:e9:81:a0:80:53:98:88:19:
         67:67:e9:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----