Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft
File:                     wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft (raw, json)
Hash identifier:          uJXid5zYDqQh5KPUdN+9s961r5RdXexeYgdhTatdxPY=
Subject key identifier:   BD:8C:44:BE:EC:23:64:33:6A:67:BF:3F:F8:1B:6B:90:87:8F:D4:82
Authority key identifier: C2:8D:33:84:B4:12:C7:CC:DB:FF:A6:41:D4:14:C1:17:DD:0E:D0:55
Certificate issuer:       /CN=c28d3384b412c7ccdbffa641d414c117dd0ed055
Certificate serial:       01984A77D7EA5CD99B3664A333BBCAABEAF0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/wo0zhLQSx8zb_6ZB1BTBF90O0FU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft
Manifest number:          0339
Signing time:             Sun 27 Jul 2025 06:00:24 +0000
Manifest this update:     Sun 27 Jul 2025 06:00:24 +0000
Manifest next update:     Mon 28 Jul 2025 06:00:24 +0000
Files and hashes:         1: wo0zhLQSx8zb_6ZB1BTBF90O0FU.crl (hash: cw5ETJLe0LAVyxrnjqerXG7QyDLpi9xBfy4mHeYHUHE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/wo0zhLQSx8zb_6ZB1BTBF90O0FU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 28 Jul 2025 05:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:4a:77:d7:ea:5c:d9:9b:36:64:a3:33:bb:ca:ab:ea:f0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c28d3384b412c7ccdbffa641d414c117dd0ed055
        Validity
            Not Before: Jul 27 06:00:24 2025 GMT
            Not After : Jul 28 06:00:24 2025 GMT
        Subject: CN=bd8c44beec2364336a67bf3ff81b6b90878fd482
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:60:1b:b8:84:3d:84:a1:e0:f3:f8:9e:39:11:
                    dc:5e:d4:3e:c0:ea:a8:51:a7:4c:44:a2:38:86:f4:
                    8c:1d:0e:95:a7:ce:ba:b4:fd:cf:b4:e5:1c:54:4a:
                    f5:03:b7:42:de:03:7e:b9:a3:29:3f:ee:8e:4f:af:
                    00:db:32:50:19:65:21:d7:65:b9:97:1d:b8:2a:d4:
                    50:a8:1a:08:5d:95:e6:d0:98:65:67:20:50:62:c7:
                    8e:f1:f3:5c:7a:40:a9:4c:c9:58:2d:0b:d1:ae:f1:
                    c6:41:57:95:33:9f:c3:b9:53:d0:e0:f3:17:23:8e:
                    f1:1e:04:6f:ef:32:f8:0d:6e:6b:4a:9c:3d:ee:2f:
                    8b:42:96:4d:2a:13:bc:15:f6:33:91:ef:5d:80:a1:
                    94:31:85:00:af:61:a0:a5:ad:b9:cd:df:26:4d:e1:
                    d0:0a:fe:00:58:85:1c:90:55:89:14:37:22:97:81:
                    b9:64:f8:52:18:a8:35:0c:93:77:c2:34:10:53:d1:
                    e1:a8:82:5a:16:1f:50:e9:e7:d2:18:f1:94:8c:3d:
                    02:de:ca:f9:3d:2a:af:47:18:c5:e9:3a:24:be:2c:
                    de:08:f5:9c:22:47:b1:54:4d:a4:57:5b:de:3c:75:
                    73:2a:81:86:cd:ba:3c:6c:03:c1:74:f2:f4:2a:29:
                    4f:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:8C:44:BE:EC:23:64:33:6A:67:BF:3F:F8:1B:6B:90:87:8F:D4:82
            X509v3 Authority Key Identifier:
                keyid:C2:8D:33:84:B4:12:C7:CC:DB:FF:A6:41:D4:14:C1:17:DD:0E:D0:55

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wo0zhLQSx8zb_6ZB1BTBF90O0FU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/4a61fc-d077-4f4d-b2ea-d90368270e14/1/wo0zhLQSx8zb_6ZB1BTBF90O0FU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         68:90:10:fb:e0:01:91:47:51:15:8a:c8:14:b4:7a:a0:67:d1:
         82:2f:f7:a3:d2:24:dc:80:88:8c:a7:56:86:99:79:2e:f5:b3:
         0b:07:c0:d4:a5:29:9d:4e:a7:f7:e6:34:68:12:ba:77:4b:be:
         a6:39:96:0b:b9:89:d6:c2:44:cf:4b:57:a5:71:a2:d0:03:b4:
         c8:72:66:00:50:68:bb:25:85:78:3c:b4:67:ac:45:87:39:bd:
         ae:fd:aa:91:0c:3f:73:f7:f5:c8:a6:0c:7a:50:3d:61:cd:62:
         52:bd:ad:73:d6:e6:32:f6:b1:10:9f:3d:c3:5f:ed:fd:b4:36:
         c8:0d:8b:03:e0:f8:90:9f:92:c4:fb:d8:14:6b:81:b9:64:fc:
         eb:ae:ce:b0:39:c1:ef:7f:83:74:10:2d:dc:89:75:70:87:18:
         8d:ff:52:15:be:46:8a:9a:2c:eb:6f:ff:7b:dc:dd:ac:5e:de:
         2a:98:a7:ae:4c:f3:53:6f:44:6e:f6:12:0a:2b:61:b6:95:fe:
         c6:94:7e:55:d6:d8:9f:0e:b4:6c:50:e3:cb:a7:dd:6a:13:f5:
         6d:1d:79:d8:7a:c7:f5:9e:2d:5c:60:a7:6f:5f:0c:c7:33:fb:
         18:3c:d4:e2:d3:9f:c9:55:bf:16:6d:0b:70:49:13:7c:b6:ef:
         f7:87:82:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----