Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/edefb3-138d-4ae6-9487-5dab1b4a5c61/1/KUeYd2hkfuuKDzhgxEF2JHzm_Fk.mft
File:                     KUeYd2hkfuuKDzhgxEF2JHzm_Fk.mft (raw, json)
Hash identifier:          rph37MEwlzaKikBBiGx+wKPlF4W+4+JJG6LwSleTk7w=
Subject key identifier:   1C:79:53:9D:C2:56:2F:E0:A1:E9:E8:4C:C8:0C:62:DD:A7:FF:87:BC
Authority key identifier: 29:47:98:77:68:64:7E:EB:8A:0F:38:60:C4:41:76:24:7C:E6:FC:59
Certificate issuer:       /CN=2947987768647eeb8a0f3860c44176247ce6fc59
Certificate serial:       01987CE57EBBC5753BE6DE53495EC907BFFC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KUeYd2hkfuuKDzhgxEF2JHzm_Fk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cb/edefb3-138d-4ae6-9487-5dab1b4a5c61/1/KUeYd2hkfuuKDzhgxEF2JHzm_Fk.mft
Manifest number:          0E33
Signing time:             Wed 06 Aug 2025 01:01:11 +0000
Manifest this update:     Wed 06 Aug 2025 01:01:11 +0000
Manifest next update:     Thu 07 Aug 2025 01:01:11 +0000
Files and hashes:         1: KUeYd2hkfuuKDzhgxEF2JHzm_Fk.crl (hash: /nXvezMnVU/eFzzlSCnlcKqqJk/w2+bZE0Kzz5pp+NQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cb/edefb3-138d-4ae6-9487-5dab1b4a5c61/1/KUeYd2hkfuuKDzhgxEF2JHzm_Fk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cb/edefb3-138d-4ae6-9487-5dab1b4a5c61/1/KUeYd2hkfuuKDzhgxEF2JHzm_Fk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KUeYd2hkfuuKDzhgxEF2JHzm_Fk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 23:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7c:e5:7e:bb:c5:75:3b:e6:de:53:49:5e:c9:07:bf:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2947987768647eeb8a0f3860c44176247ce6fc59
        Validity
            Not Before: Aug  6 01:01:11 2025 GMT
            Not After : Aug  7 01:01:11 2025 GMT
        Subject: CN=1c79539dc2562fe0a1e9e84cc80c62dda7ff87bc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:c5:34:82:62:56:8c:fb:a9:4b:54:b2:29:6d:
                    05:14:1e:c8:8d:f9:58:6f:f5:f5:58:1d:1a:4c:a5:
                    5b:bb:46:aa:8c:b5:e8:89:c3:49:29:bb:6a:57:55:
                    0e:f6:6a:4f:3e:37:64:30:a6:68:75:20:eb:35:b9:
                    21:e8:f1:5e:3b:2e:c4:9b:6a:03:8f:60:07:29:0b:
                    9f:ed:92:7a:96:02:48:96:9c:00:17:2e:1b:9a:a3:
                    5b:2a:1c:52:61:8e:19:7b:4c:bd:9c:a9:10:4e:1d:
                    66:f9:7c:11:9e:f9:c3:d4:34:37:aa:d2:5a:72:19:
                    4e:7d:dd:3b:84:9e:7c:84:8e:07:22:6c:ce:89:61:
                    9a:24:a1:e0:2e:a2:fb:54:b1:56:c9:41:ea:48:ef:
                    55:92:ad:ef:41:ef:38:24:c0:4d:2e:1a:79:6b:3e:
                    ab:4f:46:6d:fd:a3:aa:1b:2e:41:46:17:3b:a0:24:
                    3f:a2:74:bc:02:8a:f6:55:75:db:53:14:af:a7:f7:
                    f8:c6:2f:8b:d5:b5:25:bb:9b:7f:f9:0a:80:03:37:
                    e1:2d:8e:91:2d:7f:16:4c:bb:c5:b2:58:c0:8c:26:
                    6b:27:34:7f:44:35:df:62:8e:1e:af:c1:c0:cc:da:
                    bc:5b:fd:bb:97:c6:af:c5:06:39:8a:d1:e6:b3:9e:
                    b3:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:79:53:9D:C2:56:2F:E0:A1:E9:E8:4C:C8:0C:62:DD:A7:FF:87:BC
            X509v3 Authority Key Identifier:
                keyid:29:47:98:77:68:64:7E:EB:8A:0F:38:60:C4:41:76:24:7C:E6:FC:59

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUeYd2hkfuuKDzhgxEF2JHzm_Fk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/edefb3-138d-4ae6-9487-5dab1b4a5c61/1/KUeYd2hkfuuKDzhgxEF2JHzm_Fk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/edefb3-138d-4ae6-9487-5dab1b4a5c61/1/KUeYd2hkfuuKDzhgxEF2JHzm_Fk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         21:8b:a4:67:b7:7e:d5:3f:63:c1:1a:bf:4e:6d:47:5d:92:95:
         bb:10:d4:f5:0a:37:75:1b:f9:e6:7d:9d:46:74:4b:79:ac:bc:
         c0:fc:e9:56:80:ac:04:68:70:b2:d6:ee:5b:3c:fd:0d:dc:73:
         fb:a3:ac:3c:2d:ec:50:e6:7e:ae:1a:ad:30:56:78:06:d8:a5:
         28:f3:eb:d5:35:5c:53:c4:b1:95:0a:41:c6:be:2b:e9:36:cd:
         0d:e2:ab:3d:96:2b:48:b9:91:52:3c:4c:e3:21:19:69:9d:b3:
         eb:25:22:dc:e8:53:9e:8b:42:43:db:b1:89:59:4b:f1:8b:ba:
         5f:3d:4b:84:d6:73:04:e9:18:57:75:0b:21:09:71:89:f8:dc:
         f3:9f:1d:e9:dd:c0:57:e7:72:6d:0e:0e:40:a6:b9:4a:d0:a1:
         ba:f0:4f:c5:46:62:4e:bf:ba:58:01:aa:bb:e7:3f:d8:0d:4e:
         de:40:14:15:73:bd:65:56:25:b1:7c:f4:78:d0:e1:dd:0d:e7:
         30:94:b2:93:f7:bd:ac:68:8f:8f:6f:3b:02:90:60:d7:b5:ee:
         ce:4c:ff:f0:54:49:7f:f1:a6:98:54:08:23:dc:92:f6:b4:8e:
         9b:6c:4a:ed:c4:2b:1d:69:3d:54:b1:dc:20:1e:ab:91:46:35:
         50:14:66:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----