Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/693e38-1c7d-4c84-a064-764f822ddc57/1/GmaBntYqcQkM9DfkJjAS1MA1Bn0.mft
File:                     GmaBntYqcQkM9DfkJjAS1MA1Bn0.mft (raw, json)
Hash identifier:          yiT17Y47RLOtBzEkUbysDTZhm0dkmjyMWa53ccegakI=
Subject key identifier:   DD:D6:7D:E0:57:1C:20:10:35:03:28:24:69:FC:5C:26:2D:E0:31:E4
Authority key identifier: 1A:66:81:9E:D6:2A:71:09:0C:F4:37:E4:26:30:12:D4:C0:35:06:7D
Certificate issuer:       /CN=1a66819ed62a71090cf437e4263012d4c035067d
Certificate serial:       019881D4822EC2AB7119F822718018C2F8E1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/GmaBntYqcQkM9DfkJjAS1MA1Bn0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d4/693e38-1c7d-4c84-a064-764f822ddc57/1/GmaBntYqcQkM9DfkJjAS1MA1Bn0.mft
Manifest number:          161B
Signing time:             Thu 07 Aug 2025 00:00:44 +0000
Manifest this update:     Thu 07 Aug 2025 00:00:44 +0000
Manifest next update:     Fri 08 Aug 2025 00:00:44 +0000
Files and hashes:         1: GmaBntYqcQkM9DfkJjAS1MA1Bn0.crl (hash: 2DZZFUtQ6VC9hQ4whaMWfLvTJwW1YBnWyQNdyyFtMZQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d4/693e38-1c7d-4c84-a064-764f822ddc57/1/GmaBntYqcQkM9DfkJjAS1MA1Bn0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d4/693e38-1c7d-4c84-a064-764f822ddc57/1/GmaBntYqcQkM9DfkJjAS1MA1Bn0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/GmaBntYqcQkM9DfkJjAS1MA1Bn0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 08 Aug 2025 00:00:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:81:d4:82:2e:c2:ab:71:19:f8:22:71:80:18:c2:f8:e1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1a66819ed62a71090cf437e4263012d4c035067d
        Validity
            Not Before: Aug  7 00:00:44 2025 GMT
            Not After : Aug  8 00:00:44 2025 GMT
        Subject: CN=ddd67de0571c20103503282469fc5c262de031e4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:98:a0:25:d6:b7:32:4d:bf:84:a2:44:a4:fe:
                    4a:95:48:d3:f9:9d:b4:bd:b3:00:cd:5d:ab:0b:17:
                    bb:27:7e:75:2d:f7:26:22:7c:a9:b6:f3:37:fe:54:
                    41:88:36:a4:ee:d8:01:a9:67:3c:34:6d:c0:18:59:
                    7b:d7:05:1d:cb:f2:c2:b4:99:53:5c:08:23:74:b2:
                    88:71:95:95:05:2a:01:dd:83:96:8c:04:d1:2e:e1:
                    0b:73:22:9b:73:93:d0:79:00:66:24:8b:dc:1d:83:
                    c9:f5:3a:a8:25:0a:b2:a0:82:f4:62:37:d1:a5:54:
                    6b:59:2e:81:1e:30:44:c3:65:a6:c8:35:c2:ec:c0:
                    00:e7:20:9f:cb:8a:f7:32:f2:f8:7b:f6:5d:b6:63:
                    85:2d:9b:ed:0f:ed:d3:81:58:f1:17:6d:81:44:38:
                    47:91:a7:f6:4a:7c:62:ff:07:2b:dc:f4:74:05:e4:
                    24:09:f6:f5:79:64:bb:0e:11:aa:2b:2a:c0:42:12:
                    9c:a7:87:29:dc:fa:cb:f7:83:1f:a7:d6:0a:3c:d5:
                    38:b8:c7:ba:d5:47:fc:0c:2e:19:95:4b:fe:4a:7e:
                    eb:02:ba:bd:4a:93:d8:95:9b:ed:bf:59:03:28:bb:
                    01:83:53:36:34:58:09:47:bd:85:f6:e7:21:47:16:
                    60:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DD:D6:7D:E0:57:1C:20:10:35:03:28:24:69:FC:5C:26:2D:E0:31:E4
            X509v3 Authority Key Identifier:
                keyid:1A:66:81:9E:D6:2A:71:09:0C:F4:37:E4:26:30:12:D4:C0:35:06:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GmaBntYqcQkM9DfkJjAS1MA1Bn0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/693e38-1c7d-4c84-a064-764f822ddc57/1/GmaBntYqcQkM9DfkJjAS1MA1Bn0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/693e38-1c7d-4c84-a064-764f822ddc57/1/GmaBntYqcQkM9DfkJjAS1MA1Bn0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:94:c2:c8:d5:61:6a:93:a4:fb:b8:bd:1f:37:6b:8d:b0:92:
         56:ae:3d:05:2b:7f:2f:17:50:f4:2a:d6:2d:56:82:cd:3d:27:
         06:2c:06:3e:45:65:ec:94:1b:3a:23:60:c8:a7:9f:03:97:a7:
         0d:7c:75:62:27:dd:cd:ea:92:b6:a3:a6:e0:66:5d:46:bb:c5:
         39:b0:69:50:ff:93:e3:a1:61:f9:ab:14:eb:84:03:a5:3e:63:
         6f:aa:13:0a:fd:ca:b8:94:53:ec:31:af:29:be:b7:2a:6f:c0:
         1b:f6:07:9c:10:16:79:32:b3:4d:76:cb:68:c0:77:13:c5:34:
         3e:c0:af:78:e3:57:94:b7:ea:2c:91:8e:81:28:94:4a:83:9d:
         80:03:4a:b4:2e:1f:05:53:63:75:bc:b5:6d:64:46:39:2d:f7:
         2c:3f:06:91:af:06:b1:46:a5:de:07:17:d7:ca:6d:16:e9:5e:
         36:8a:ee:60:89:e2:06:ca:d2:ea:e7:3b:ea:e3:0d:7a:ba:1c:
         a2:cc:95:bf:ab:a8:50:56:ed:2b:7e:a9:b3:c8:65:47:7d:35:
         26:ae:0a:f5:b7:7a:96:1b:e0:4f:fc:98:7f:5d:36:b0:fc:92:
         97:15:ce:d6:f9:84:6f:ee:f1:bf:9e:fa:79:78:b2:83:d2:95:
         5c:2b:d0:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----