Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft
File:                     0phnd6RO0JQPKaeVx19Fpi9EuzM.mft (raw, json)
Hash identifier:          y1T956Dj2BWFDeSKfsLemZaAT7//HONSwo4sVqPNdIw=
Subject key identifier:   93:97:1C:FA:01:D1:B7:B9:B6:60:27:0B:70:67:88:9A:7F:CB:58:50
Authority key identifier: D2:98:67:77:A4:4E:D0:94:0F:29:A7:95:C7:5F:45:A6:2F:44:BB:33
Certificate issuer:       /CN=d2986777a44ed0940f29a795c75f45a62f44bb33
Certificate serial:       01988B0E907C15DC34A39977DF94BA364345
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft
Manifest number:          060D
Signing time:             Fri 08 Aug 2025 19:00:44 +0000
Manifest this update:     Fri 08 Aug 2025 19:00:44 +0000
Manifest next update:     Sat 09 Aug 2025 19:00:44 +0000
Files and hashes:         1: 0phnd6RO0JQPKaeVx19Fpi9EuzM.crl (hash: gYST+5hepnaR6UzidSGYEFsIVrYGj26hA5tXS+KCg6c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 19:00:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:0e:90:7c:15:dc:34:a3:99:77:df:94:ba:36:43:45
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d2986777a44ed0940f29a795c75f45a62f44bb33
        Validity
            Not Before: Aug  8 19:00:44 2025 GMT
            Not After : Aug  9 19:00:44 2025 GMT
        Subject: CN=93971cfa01d1b7b9b660270b7067889a7fcb5850
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:e1:a1:66:9f:f8:34:c9:90:d5:d6:8f:4b:67:
                    e6:69:7f:40:a1:06:68:dc:ca:3c:76:2c:c3:f2:59:
                    88:6e:62:c8:43:d9:c8:bc:c5:26:35:fe:22:b4:d0:
                    c6:2d:d9:b8:3f:f0:d0:6d:d5:fe:b8:e9:5d:3c:5c:
                    0c:2c:45:b2:90:45:52:c4:b9:e0:0e:ff:a9:80:e2:
                    1e:39:1b:4e:0c:6b:38:80:4b:ea:07:6f:4b:91:06:
                    12:64:96:15:1e:11:fe:01:f6:7f:d1:f6:3d:3a:18:
                    d7:b8:a8:22:66:df:a5:44:af:9d:c0:de:19:f0:94:
                    0c:30:18:8b:86:62:89:12:1d:6b:69:98:d9:3d:b6:
                    dd:66:6c:7b:cd:d8:33:6b:bf:cc:c9:62:f1:d8:3e:
                    e5:13:57:54:43:89:26:cf:8a:40:d0:0b:e2:36:09:
                    9b:76:41:fa:16:a2:d5:c7:cc:ce:b2:f6:ec:fe:4d:
                    4a:84:42:c1:19:46:03:10:ad:a8:ee:78:f4:29:d5:
                    0b:03:e7:23:de:ac:ab:f4:56:22:ee:f6:ce:ac:1d:
                    bc:05:98:c9:6f:63:fd:9f:0d:3a:17:10:ff:bf:8f:
                    d8:f9:41:32:d7:93:23:32:ce:a1:ed:8c:07:75:d5:
                    66:6f:c1:d8:20:75:d0:22:2b:d5:b1:a1:9a:92:a7:
                    02:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:97:1C:FA:01:D1:B7:B9:B6:60:27:0B:70:67:88:9A:7F:CB:58:50
            X509v3 Authority Key Identifier:
                keyid:D2:98:67:77:A4:4E:D0:94:0F:29:A7:95:C7:5F:45:A6:2F:44:BB:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0phnd6RO0JQPKaeVx19Fpi9EuzM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/9773dc-d8e8-480d-98f2-c00cbc1492bf/1/0phnd6RO0JQPKaeVx19Fpi9EuzM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:d0:2f:1e:f9:14:89:c0:03:cc:a3:1d:bf:e7:71:c4:ad:42:
         88:71:56:7a:76:17:ec:22:0e:fb:31:88:4c:6f:e3:e2:f3:45:
         a2:23:49:a2:28:3d:c4:ba:b7:51:aa:16:17:b0:4b:38:e2:6b:
         8c:44:fe:e7:69:c2:20:53:82:7c:47:83:aa:3d:a2:0d:f4:6d:
         03:7d:c4:0c:fa:bd:0f:f1:b4:0e:b9:69:d3:51:98:73:02:b2:
         a0:16:bc:9f:c3:14:59:db:02:33:9f:60:79:50:39:5e:fd:32:
         ad:a9:a2:d3:ae:23:66:39:78:6b:86:b2:a7:bd:21:39:45:86:
         ff:83:b7:c4:46:39:74:25:fc:bb:23:d3:c1:41:92:bf:7a:8d:
         74:5c:c9:c9:a6:58:6f:2b:6f:17:d0:7b:dc:bb:c6:d6:e7:f5:
         9b:3a:3a:e2:05:14:98:26:e8:20:d1:c3:d8:b8:3f:90:18:f0:
         11:3a:09:2e:ff:b2:2b:fd:b2:3a:75:9b:ae:d1:62:76:fa:1d:
         ac:d5:c7:c8:1a:0f:dc:c3:91:78:07:b3:94:9e:6f:46:53:f6:
         8d:f9:a7:32:59:09:28:9e:fe:2b:9e:bd:58:bf:e4:19:08:6e:
         64:d4:2d:58:21:86:4b:dd:4b:62:e7:96:e0:30:91:f9:b2:73:
         63:5b:23:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----