Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
File:                     C1XbSaXB_JAcoahcjSXxPxhuL_o.mft (raw, json)
Hash identifier:          FmBwBdAPHN9pcAgEzzJab3DmuNhQ8V4GQj8Kwx7Qw4Q=
Subject key identifier:   46:C4:54:C1:F4:6D:85:6F:19:21:3B:10:0B:F7:A7:6B:F1:59:92:BB
Authority key identifier: 0B:55:DB:49:A5:C1:FC:90:1C:A1:A8:5C:8D:25:F1:3F:18:6E:2F:FA
Certificate issuer:       /CN=0b55db49a5c1fc901ca1a85c8d25f13f186e2ffa
Certificate serial:       01988B7C7D132D0DA721613EF6CE1DFD6D96
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
Manifest number:          1620
Signing time:             Fri 08 Aug 2025 21:00:48 +0000
Manifest this update:     Fri 08 Aug 2025 21:00:48 +0000
Manifest next update:     Sat 09 Aug 2025 21:00:48 +0000
Files and hashes:         1: C1XbSaXB_JAcoahcjSXxPxhuL_o.crl (hash: Eth8necf3/zoAoixEVxkeWORlUP85idrzeQ8Tlw8nF4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:7c:7d:13:2d:0d:a7:21:61:3e:f6:ce:1d:fd:6d:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0b55db49a5c1fc901ca1a85c8d25f13f186e2ffa
        Validity
            Not Before: Aug  8 21:00:48 2025 GMT
            Not After : Aug  9 21:00:48 2025 GMT
        Subject: CN=46c454c1f46d856f19213b100bf7a76bf15992bb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:e1:57:9e:ab:77:ee:38:bd:f4:0a:65:cd:46:
                    bd:0c:fa:99:4f:d9:ee:4c:63:ba:91:c9:0c:41:0c:
                    f1:fb:ea:af:41:34:6e:4c:2b:3a:d8:70:ff:8e:b4:
                    c7:4e:64:70:49:f7:43:59:6d:39:b8:50:d6:6f:86:
                    bb:8e:74:b0:76:fb:fe:a5:37:59:d5:bc:9e:dd:17:
                    ab:fb:c3:3d:8c:63:0f:7e:b0:9c:f1:2f:83:73:8d:
                    be:1c:47:0a:b6:63:3f:f9:50:48:d2:3d:99:b2:c1:
                    e7:1e:51:86:43:7d:8d:5b:5d:ce:0b:47:f3:b8:7a:
                    ad:0c:02:31:c2:39:2a:0b:4c:89:12:da:5b:3d:be:
                    57:63:18:44:93:9e:ed:ef:eb:e0:43:68:7b:f2:80:
                    0e:8b:2f:70:8b:d1:25:cb:28:9d:3b:a4:ff:4a:de:
                    64:ad:70:14:be:76:76:03:20:6a:d7:a0:20:6a:86:
                    9c:47:90:7d:34:6b:b9:5e:61:57:2f:dc:4a:ac:75:
                    e0:4a:d9:7d:7b:5c:61:10:c4:54:08:cd:1d:95:c6:
                    ab:58:c0:d0:b8:94:6c:25:92:2f:09:6d:45:bd:4e:
                    70:01:42:31:5d:27:45:bd:d9:7b:61:a3:fa:17:08:
                    23:10:0c:86:5b:ce:cf:0c:05:1a:d1:b4:c8:35:45:
                    80:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:C4:54:C1:F4:6D:85:6F:19:21:3B:10:0B:F7:A7:6B:F1:59:92:BB
            X509v3 Authority Key Identifier:
                keyid:0B:55:DB:49:A5:C1:FC:90:1C:A1:A8:5C:8D:25:F1:3F:18:6E:2F:FA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:0d:b9:1f:73:dc:d1:7c:bc:47:81:71:a5:f7:17:84:09:3d:
         b8:dd:92:40:ac:7b:7f:35:65:fe:d2:b1:e9:8f:e9:f3:d6:56:
         0a:dc:ad:8b:e5:ef:8b:80:0e:1f:8b:d4:d6:8a:a2:9f:28:61:
         55:7a:ab:34:e0:7f:50:a0:c3:1e:cb:68:54:2b:07:89:f8:3d:
         26:3c:57:fc:8b:db:0d:7e:b0:08:f6:2a:64:04:89:cf:9f:fd:
         1f:78:0d:97:c0:5c:f1:ff:84:a5:79:5e:84:a5:db:99:36:18:
         2f:2d:42:86:fd:83:61:2f:64:ed:59:20:22:3b:84:03:28:f0:
         ea:87:d6:34:7e:24:f3:5d:2e:da:07:1f:9e:7a:91:95:88:97:
         c4:11:1a:0a:e8:26:a4:88:68:a0:af:51:ff:87:71:a1:3b:a3:
         15:3e:10:a8:4c:fd:aa:04:aa:04:12:58:a6:f1:67:f0:28:db:
         fe:3a:43:a4:2a:fd:8b:9c:0f:59:ac:e8:c9:2b:76:5c:b0:cf:
         f2:e5:c4:2c:17:0c:a2:f3:31:77:78:d1:cf:e8:a1:77:5b:d9:
         3c:98:ec:78:63:ff:b4:a8:12:2c:0a:b5:41:c2:07:0f:0d:95:
         05:35:06:c5:41:76:c9:73:f2:1b:9e:64:3e:32:77:7a:ca:3e:
         6b:56:6d:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----