Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.mft
File:                     FyesE93M6XjmP3r186adq0mS1kU.mft (raw, json)
Hash identifier:          N9EO0Ko4+XiHxugAs89Uws7sKCfgz473POM8D/QC07A=
Subject key identifier:   30:95:C4:35:26:90:57:8F:EA:46:60:44:97:DB:B4:BC:B5:A2:02:67
Authority key identifier: 17:27:AC:13:DD:CC:E9:78:E6:3F:7A:F5:F3:A6:9D:AB:49:92:D6:45
Certificate issuer:       /CN=1727ac13ddcce978e63f7af5f3a69dab4992d645
Certificate serial:       01989F3AA52C262B629467DA73CAF7873055
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FyesE93M6XjmP3r186adq0mS1kU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.mft
Manifest number:          098C
Signing time:             Tue 12 Aug 2025 17:01:17 +0000
Manifest this update:     Tue 12 Aug 2025 17:01:17 +0000
Manifest next update:     Wed 13 Aug 2025 17:01:17 +0000
Files and hashes:         1: FyesE93M6XjmP3r186adq0mS1kU.crl (hash: QcIADS4JkNBC/nOENHZIp3/GZKJpZss5s4yqHNpcZPU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FyesE93M6XjmP3r186adq0mS1kU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 17:01:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:9f:3a:a5:2c:26:2b:62:94:67:da:73:ca:f7:87:30:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1727ac13ddcce978e63f7af5f3a69dab4992d645
        Validity
            Not Before: Aug 12 17:01:17 2025 GMT
            Not After : Aug 13 17:01:17 2025 GMT
        Subject: CN=3095c4352690578fea46604497dbb4bcb5a20267
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:2d:7c:b1:cc:ab:20:51:bf:ff:36:ed:5e:0b:
                    54:63:b2:e8:a5:b0:39:8c:94:dd:1b:78:a8:c9:ac:
                    5e:e1:ce:c4:66:9f:f0:f3:0b:1f:b7:f9:2b:4d:63:
                    4f:57:f0:3e:f8:cb:0f:dd:dc:1a:fa:45:a8:ba:92:
                    46:a5:d0:3b:97:b9:be:50:71:c2:ac:58:b2:f0:ed:
                    f2:0c:76:b8:06:ea:79:53:52:de:7b:1a:bb:ef:e3:
                    15:aa:b7:1f:6e:51:2d:88:65:a9:8a:4a:8e:d0:09:
                    db:0b:17:75:4e:5c:38:22:d2:15:a4:3e:68:bf:92:
                    74:db:58:ca:04:cb:55:58:d9:ca:bb:46:d9:e1:6a:
                    a6:bf:a2:4c:1e:32:e8:e1:eb:fb:7d:68:09:8f:fe:
                    6a:ca:cf:5e:5e:ac:62:93:e3:86:ba:25:3e:22:de:
                    6d:30:91:5e:06:30:14:95:9f:9b:ac:e1:2f:4d:a8:
                    e8:6f:e7:9b:c1:f9:56:9b:f4:af:8a:cd:43:6b:43:
                    71:a0:3e:a0:b1:c0:87:32:76:17:da:2d:a2:65:8d:
                    f5:36:82:75:13:43:7f:58:fc:eb:ff:a4:d9:c0:12:
                    44:f4:01:72:c5:53:5f:49:78:3c:ee:fd:68:56:4a:
                    61:81:45:68:6b:d1:99:f4:d9:1b:30:b8:e3:dd:8d:
                    54:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                30:95:C4:35:26:90:57:8F:EA:46:60:44:97:DB:B4:BC:B5:A2:02:67
            X509v3 Authority Key Identifier:
                keyid:17:27:AC:13:DD:CC:E9:78:E6:3F:7A:F5:F3:A6:9D:AB:49:92:D6:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyesE93M6XjmP3r186adq0mS1kU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:cf:32:99:8b:99:58:c9:0a:a7:bd:59:75:c2:2d:0b:5b:63:
         b6:6e:0c:72:f7:fe:e0:65:20:7f:5a:d8:43:8c:91:3e:67:f9:
         a1:b0:48:42:5f:63:5b:9a:77:80:43:ac:d1:3f:63:88:9d:3d:
         60:4e:95:3c:af:c4:6e:e8:8d:3f:64:45:fd:d6:48:e4:af:e2:
         c7:bd:83:6a:da:7d:a3:cb:4b:bc:aa:c6:c4:f9:c1:e4:9b:3d:
         12:b6:ec:50:ef:33:c8:c1:45:eb:5c:a7:c0:31:f2:14:24:50:
         56:d6:f3:16:83:86:fe:cf:86:76:18:d0:d2:1d:3f:31:ac:59:
         ce:f2:be:54:d2:b0:d3:01:71:34:98:e1:38:e9:49:b3:20:90:
         95:58:ca:f4:93:fe:bb:c0:a9:5b:56:a0:87:6b:b2:55:9a:fb:
         2d:fd:81:f5:5e:7f:46:1e:a0:64:84:71:af:f7:50:e6:04:8f:
         b2:fc:d3:b1:d6:af:d7:b9:87:cf:c2:ee:12:2a:e3:cc:e8:de:
         4f:a7:88:c0:75:fd:65:1c:c2:36:08:2a:65:6f:59:6b:b0:77:
         fd:86:78:d0:26:bb:50:fe:e0:0f:ef:07:5d:57:14:a9:67:d0:
         8d:94:31:cd:78:3f:69:20:c6:57:3a:91:29:8e:98:ff:b0:83:
         02:4e:53:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----