Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft
File:                     i6gkldaDsIyIGoGM0B-kL_9v9tE.mft (raw, json)
Hash identifier:          V1UsCxchO/LMpfAac5JbknglIy2s5u+0ciAKAdVlu68=
Subject key identifier:   C2:27:F2:81:B0:7A:2C:5B:56:66:2C:85:96:E6:9A:D8:38:FD:60:D7
Authority key identifier: 8B:A8:24:95:D6:83:B0:8C:88:1A:81:8C:D0:1F:A4:2F:FF:6F:F6:D1
Certificate issuer:       /CN=8ba82495d683b08c881a818cd01fa42fff6ff6d1
Certificate serial:       01989FA7CCC04CC64269176001E541BE673B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/i6gkldaDsIyIGoGM0B-kL_9v9tE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft
Manifest number:          0223
Signing time:             Tue 12 Aug 2025 19:00:30 +0000
Manifest this update:     Tue 12 Aug 2025 19:00:30 +0000
Manifest next update:     Wed 13 Aug 2025 19:00:30 +0000
Files and hashes:         1: i6gkldaDsIyIGoGM0B-kL_9v9tE.crl (hash: PF8PNSEBM3XOnKNm6cxsI77L5e5f1v1Uc92IPofUhbE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/i6gkldaDsIyIGoGM0B-kL_9v9tE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 19:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:9f:a7:cc:c0:4c:c6:42:69:17:60:01:e5:41:be:67:3b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8ba82495d683b08c881a818cd01fa42fff6ff6d1
        Validity
            Not Before: Aug 12 19:00:30 2025 GMT
            Not After : Aug 13 19:00:30 2025 GMT
        Subject: CN=c227f281b07a2c5b56662c8596e69ad838fd60d7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:df:65:2a:8c:ee:37:56:30:d8:ec:77:a9:f6:
                    d9:07:99:2b:8c:cb:6e:f2:70:bd:c5:f9:03:65:10:
                    14:dc:c2:03:51:f8:a3:b8:25:79:bf:ac:89:7e:d0:
                    37:79:ac:af:19:76:79:3b:84:17:3c:af:61:6a:dd:
                    43:38:ff:f2:b1:ee:1a:4f:62:e4:45:c7:86:01:7b:
                    71:75:66:33:d5:c3:80:39:91:5a:9b:7c:a5:71:69:
                    13:80:f5:ee:bc:e1:91:22:7d:e7:5c:62:81:63:83:
                    44:b0:d7:e0:9e:e3:3a:28:73:90:20:57:65:ff:1b:
                    21:2a:b0:b9:e5:05:cd:b7:2b:7b:28:5b:c3:80:4b:
                    fe:84:a8:df:18:f9:d2:8e:96:de:be:50:57:df:40:
                    b2:de:c0:1c:77:85:63:be:48:92:a3:59:83:9b:aa:
                    9b:cf:3d:0e:83:d1:c0:b4:bb:4c:00:06:07:13:0c:
                    79:ee:50:6f:c6:0b:5d:28:fa:b1:fe:82:8e:13:86:
                    9a:92:a4:55:cd:4e:e4:17:d1:94:af:05:fb:c9:ec:
                    63:01:b0:95:b5:b9:09:56:ed:2b:d8:fa:1e:90:f8:
                    10:b0:e7:7b:fb:cd:3a:1c:0b:d1:65:c7:82:9b:4e:
                    53:cf:eb:fb:e4:3c:43:94:61:b5:89:22:f0:e5:52:
                    d3:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:27:F2:81:B0:7A:2C:5B:56:66:2C:85:96:E6:9A:D8:38:FD:60:D7
            X509v3 Authority Key Identifier:
                keyid:8B:A8:24:95:D6:83:B0:8C:88:1A:81:8C:D0:1F:A4:2F:FF:6F:F6:D1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6gkldaDsIyIGoGM0B-kL_9v9tE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/68ed98-fe3f-4063-91a9-c6250fb6096e/1/i6gkldaDsIyIGoGM0B-kL_9v9tE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:60:9a:22:7f:ac:93:91:71:be:74:fc:ff:ab:5f:aa:db:31:
         b1:71:47:03:be:21:34:00:93:07:f9:dd:e9:67:5f:72:1d:f2:
         10:53:61:8e:24:ef:b5:37:f4:97:f5:6e:a7:0c:f2:30:41:ca:
         17:3a:09:49:fc:44:6f:44:f2:7d:64:26:20:64:97:49:0a:7e:
         e7:00:c3:21:f1:64:bd:28:e6:11:59:01:80:eb:6b:47:78:19:
         a7:f5:ab:01:f1:b6:0a:08:94:0a:2b:c2:f9:76:7b:79:ca:d3:
         89:ea:32:4e:32:20:8f:d5:eb:2c:26:e6:09:39:10:84:5a:36:
         ec:bd:a7:86:8c:83:87:61:1c:49:c5:9b:25:53:b0:1a:b7:a9:
         97:a7:8a:c1:00:38:f2:6f:c0:e9:1e:0e:72:08:d2:70:90:96:
         2e:fa:6b:ab:2c:af:78:71:34:02:ca:a8:b1:dd:42:f6:92:34:
         94:12:ca:a8:2c:f6:cd:79:dc:e9:74:88:1c:72:62:b2:0c:4b:
         7a:93:2b:cf:ff:59:b9:91:87:ce:be:00:26:79:01:cb:d3:e5:
         a5:52:4b:58:65:e1:2e:19:58:46:5f:02:13:d5:c1:46:5f:37:
         86:b3:62:50:ca:3d:18:15:49:72:1c:66:f2:b5:f5:40:29:8a:
         2e:5c:3b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----