Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.mft
File:                     U-r4Oizdyf0L4onM-vMrMjMEz04.mft (raw, json)
Hash identifier:          toz/TWgFUFsaKMSbF/+8yqmlJmzuGg8Q/p9A48aycZ4=
Subject key identifier:   30:0A:F2:CC:C2:6C:CB:E9:19:FE:57:4D:EE:37:60:1D:B4:DC:5B:E6
Authority key identifier: 53:EA:F8:3A:2C:DD:C9:FD:0B:E2:89:CC:FA:F3:2B:32:33:04:CF:4E
Certificate issuer:       /CN=53eaf83a2cddc9fd0be289ccfaf32b323304cf4e
Certificate serial:       019872986ED443FDA2AF8A745D1748C62DEC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/U-r4Oizdyf0L4onM-vMrMjMEz04.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.mft
Manifest number:          0CE4
Signing time:             Mon 04 Aug 2025 01:00:49 +0000
Manifest this update:     Mon 04 Aug 2025 01:00:49 +0000
Manifest next update:     Tue 05 Aug 2025 01:00:49 +0000
Files and hashes:         1: U-r4Oizdyf0L4onM-vMrMjMEz04.crl (hash: TGsiJrvUUHVErkJfWh1PnLdX+jK0IjQK4RdSQcISqS4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/U-r4Oizdyf0L4onM-vMrMjMEz04.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 01:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:72:98:6e:d4:43:fd:a2:af:8a:74:5d:17:48:c6:2d:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=53eaf83a2cddc9fd0be289ccfaf32b323304cf4e
        Validity
            Not Before: Aug  4 01:00:49 2025 GMT
            Not After : Aug  5 01:00:49 2025 GMT
        Subject: CN=300af2ccc26ccbe919fe574dee37601db4dc5be6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:6e:60:10:0d:be:a2:56:45:fd:67:a2:e0:63:
                    07:0b:5b:42:74:17:a5:77:97:4b:41:6f:ec:eb:00:
                    80:c6:4b:3c:0c:11:5b:64:4f:2d:a8:c0:c3:19:11:
                    86:e9:d2:10:c4:4d:3e:e2:60:29:6a:cb:f1:9b:3f:
                    87:80:4d:82:76:7e:20:35:2c:33:e3:60:a4:ab:ce:
                    9b:bc:1d:7f:ac:c9:41:59:fb:0e:1f:2f:3e:eb:24:
                    bc:25:f7:b4:16:14:dc:e9:a4:d6:b9:2e:0d:44:a9:
                    71:a6:ec:d2:05:97:59:4f:a9:8f:fb:f0:bb:23:ba:
                    32:46:db:8a:39:0c:15:b1:51:5e:f4:a0:fe:41:32:
                    be:7a:2b:dc:3d:a6:01:83:fe:72:6b:f3:1c:41:72:
                    ff:17:60:d3:74:ee:e7:73:ca:67:4e:04:1f:5f:c2:
                    bc:a8:77:6b:71:8f:16:8a:6f:e6:50:08:85:94:a1:
                    21:2b:76:77:41:cc:db:91:54:c5:0e:07:1b:d5:84:
                    09:ca:76:b2:de:df:5b:05:4e:c5:42:34:dc:9f:1d:
                    bf:3f:b7:2f:51:64:a3:bf:ac:bb:2d:c8:e0:70:b3:
                    04:86:ca:83:d9:1e:8d:ac:ab:6b:d8:20:3b:ee:43:
                    36:2c:28:d2:2d:a2:a1:9d:8a:bf:50:88:6c:97:08:
                    37:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                30:0A:F2:CC:C2:6C:CB:E9:19:FE:57:4D:EE:37:60:1D:B4:DC:5B:E6
            X509v3 Authority Key Identifier:
                keyid:53:EA:F8:3A:2C:DD:C9:FD:0B:E2:89:CC:FA:F3:2B:32:33:04:CF:4E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-r4Oizdyf0L4onM-vMrMjMEz04.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/2c3038-9c45-43e8-b69f-b84cff188f55/1/U-r4Oizdyf0L4onM-vMrMjMEz04.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         82:f1:40:1d:56:05:92:f3:73:e7:52:26:27:32:9b:7a:5f:3e:
         b9:d7:ab:f8:cc:56:dd:4f:37:0e:a5:0a:5f:57:d8:cd:f3:1a:
         cd:c8:de:05:76:60:ec:c3:5c:c3:75:44:ef:06:6f:7b:b9:90:
         25:50:2f:64:c4:5e:93:16:1a:c1:2f:ac:7a:d0:67:db:85:90:
         02:cd:56:33:c4:54:aa:da:38:9b:e1:03:fa:fa:78:26:f0:9d:
         49:f8:fe:7d:c5:ec:2c:c8:1a:3d:c6:50:52:11:c5:ae:51:2e:
         ac:41:9b:27:b5:23:44:09:9f:e0:41:8f:48:d9:c5:7c:79:e7:
         f4:ca:fa:1f:bb:71:69:3b:98:77:4e:31:73:a5:69:89:76:09:
         98:84:3e:1c:e8:e4:04:2d:45:c2:11:57:f8:52:07:18:f9:7c:
         cc:a7:d6:2d:ed:17:1e:8b:7f:8b:29:da:0a:51:d7:f3:30:3e:
         bd:40:84:bf:3c:97:ff:65:e7:82:3a:d8:c6:e6:0d:95:be:06:
         a3:4c:a4:f5:a3:62:12:e8:1e:5a:9a:0e:2e:4f:a8:14:2a:14:
         ec:1d:ee:01:51:53:38:66:9e:8d:51:fc:4e:6a:dc:36:52:c3:
         74:d8:bb:4e:d7:02:2f:78:f5:6b:7b:37:ed:5c:d8:3f:41:7a:
         16:19:5a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----