Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
File:                     XOMWuo-zBWfOy8cnBR02QA4lH8c.mft (raw, json)
Hash identifier:          +GVjJu60mLWEm20Dr52yIifO0KBm8m6qnQRMxd4nDw8=
Subject key identifier:   53:BC:48:98:59:0D:78:02:01:4E:B2:1E:B0:15:B6:21:82:E4:D6:1A
Authority key identifier: 5C:E3:16:BA:8F:B3:05:67:CE:CB:C7:27:05:1D:36:40:0E:25:1F:C7
Certificate issuer:       /CN=5ce316ba8fb30567cecbc727051d36400e251fc7
Certificate serial:       0198820B7A8AEF9CC79BE2C8299B39C32BAC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XOMWuo-zBWfOy8cnBR02QA4lH8c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
Manifest number:          03F6
Signing time:             Thu 07 Aug 2025 01:00:46 +0000
Manifest this update:     Thu 07 Aug 2025 01:00:46 +0000
Manifest next update:     Fri 08 Aug 2025 01:00:46 +0000
Files and hashes:         1: XOMWuo-zBWfOy8cnBR02QA4lH8c.crl (hash: QwygmM+CgZs6LLbIX4SYPu/8H/PX5/+zLP+a/X0pvnk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XOMWuo-zBWfOy8cnBR02QA4lH8c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 20:46:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:82:0b:7a:8a:ef:9c:c7:9b:e2:c8:29:9b:39:c3:2b:ac
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5ce316ba8fb30567cecbc727051d36400e251fc7
        Validity
            Not Before: Aug  7 01:00:46 2025 GMT
            Not After : Aug  8 01:00:46 2025 GMT
        Subject: CN=53bc4898590d7802014eb21eb015b62182e4d61a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:90:ca:fd:63:de:0c:d1:20:5a:9e:38:d5:fe:
                    2f:bb:c4:bd:05:84:db:af:75:ff:d3:13:76:cd:2d:
                    d8:aa:82:cd:35:3b:1a:37:bf:89:56:f5:81:f6:99:
                    7e:42:66:17:c7:bc:bc:17:87:f1:fb:09:c0:af:4e:
                    cd:02:e6:61:46:88:2f:9d:06:51:8f:b4:26:f3:23:
                    ef:97:5a:16:f1:72:47:4a:b0:03:27:12:95:99:e1:
                    16:58:f5:ae:7a:ba:79:ff:db:70:5e:df:30:32:75:
                    54:60:eb:07:18:b2:4e:9d:3c:f2:a9:7a:3f:6f:00:
                    71:d2:18:01:88:56:3a:0f:37:90:dc:83:f8:80:05:
                    f0:d3:45:c8:c3:76:d2:e2:a8:f1:b2:60:ba:80:7f:
                    a2:09:8d:31:ea:ba:04:2f:0b:e6:a5:77:1c:fb:a4:
                    19:fe:f1:e6:cb:d5:34:1c:d7:18:c0:6f:fc:97:6e:
                    3d:cf:e9:19:24:48:f5:8b:09:23:17:01:10:52:98:
                    5b:04:d8:95:2f:ee:e5:06:aa:64:aa:eb:69:92:70:
                    e2:d5:16:da:e7:1c:37:92:7e:e1:34:03:9c:cf:9a:
                    65:3d:e9:d5:60:1e:82:d6:ef:23:7e:65:c6:f1:cf:
                    18:b7:37:1d:79:3b:0a:2a:92:b1:3a:5e:fd:ee:da:
                    ba:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:BC:48:98:59:0D:78:02:01:4E:B2:1E:B0:15:B6:21:82:E4:D6:1A
            X509v3 Authority Key Identifier:
                keyid:5C:E3:16:BA:8F:B3:05:67:CE:CB:C7:27:05:1D:36:40:0E:25:1F:C7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOMWuo-zBWfOy8cnBR02QA4lH8c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/247eef-f71a-421f-bb86-26729d894ef7/1/XOMWuo-zBWfOy8cnBR02QA4lH8c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:27:29:18:f4:bf:17:a4:6a:99:40:fe:44:e8:b9:09:f6:76:
         44:98:88:52:ad:11:2e:3f:38:9b:2c:25:5b:38:a2:ce:df:49:
         e1:57:f0:68:27:ac:63:ee:c2:75:41:37:9a:b0:09:0c:fc:53:
         5a:e0:ab:6f:0b:91:30:eb:6c:4b:24:45:b6:0b:46:8a:8f:86:
         3b:d5:9c:a2:87:91:b6:22:90:93:98:39:35:e2:95:f2:a3:87:
         ba:3b:90:96:67:c5:3a:a3:d3:bc:42:eb:25:04:39:32:fd:cc:
         b7:5d:97:11:79:b2:f5:57:1e:7a:0b:b1:4b:47:e6:fb:5c:9d:
         82:6e:3a:43:04:91:5f:dc:b2:e2:ca:47:5a:49:bd:df:9f:7f:
         1f:b3:ce:df:ef:0e:47:61:f6:ed:56:8a:dd:ac:c9:87:a8:8e:
         75:fe:58:0b:09:7e:15:19:f9:fe:36:5e:2e:59:31:48:f1:b9:
         49:f4:50:28:e2:40:6c:33:a5:0f:76:ac:4b:db:fc:06:5e:64:
         18:99:4c:2b:39:2e:c8:75:01:75:b8:8b:d9:80:bc:08:d1:b9:
         8c:2b:90:df:a1:fb:ac:c4:a9:17:49:d4:31:ab:16:8f:fc:f0:
         42:76:31:15:5d:c4:01:b5:b5:da:5e:ba:9e:d0:53:4d:a4:8b:
         01:85:5d:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:22:14 2025 by rpki-client