Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft
File:                     urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft (raw, json)
Hash identifier:          TX9bv2AAFnIZ8fivhnzkGYpPhhTeS0bx6DK4Ui0oaZY=
Subject key identifier:   80:A4:D9:40:01:72:F9:F2:44:84:11:A7:9D:B9:7B:A9:E8:09:4E:A1
Authority key identifier: BA:B9:BB:C2:4E:9A:C3:D9:EC:7E:10:BF:95:74:7D:AB:5C:45:DD:2B
Certificate issuer:       /CN=bab9bbc24e9ac3d9ec7e10bf95747dab5c45dd2b
Certificate serial:       019845891DE64DD78D6937172CB026FE1516
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/urm7wk6aw9nsfhC_lXR9q1xF3Ss.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft
Manifest number:          0B1C
Signing time:             Sat 26 Jul 2025 07:01:10 +0000
Manifest this update:     Sat 26 Jul 2025 07:01:10 +0000
Manifest next update:     Sun 27 Jul 2025 07:01:10 +0000
Files and hashes:         1: urm7wk6aw9nsfhC_lXR9q1xF3Ss.crl (hash: p4aRdnayeZ6ELQd1J5r76c/Zfw8EFLVkalRt1qWBAIk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/urm7wk6aw9nsfhC_lXR9q1xF3Ss.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 27 Jul 2025 06:00:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:45:89:1d:e6:4d:d7:8d:69:37:17:2c:b0:26:fe:15:16
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bab9bbc24e9ac3d9ec7e10bf95747dab5c45dd2b
        Validity
            Not Before: Jul 26 07:01:10 2025 GMT
            Not After : Jul 27 07:01:10 2025 GMT
        Subject: CN=80a4d9400172f9f2448411a79db97ba9e8094ea1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:8c:e4:2b:2b:91:13:fc:8d:db:78:51:26:a7:
                    00:57:62:11:54:0d:61:03:3a:27:24:e0:47:dc:3b:
                    ac:93:12:59:d7:57:2f:f5:70:47:69:36:f4:9a:3c:
                    c0:6a:36:d1:77:84:2c:07:c6:17:d7:31:d4:80:84:
                    25:1e:7a:34:04:c8:05:72:69:50:f4:80:ae:d0:85:
                    37:0d:ba:9e:b8:85:96:f4:d6:77:1e:1b:e7:72:66:
                    02:19:ec:cb:45:b0:39:2d:8f:76:c9:10:a3:97:b7:
                    17:98:b3:6c:6c:21:3a:69:5d:54:b2:7b:f0:73:73:
                    6d:a8:b2:78:92:e0:d5:88:9a:e2:07:41:00:c0:14:
                    b6:7c:10:1c:f6:cc:72:c5:67:d1:35:54:26:03:97:
                    eb:71:07:7b:ef:55:5a:f6:62:45:5d:ee:7b:3f:8c:
                    31:9c:67:b4:f3:b9:e5:00:f5:8d:a2:f0:28:52:f5:
                    5f:06:6f:c4:33:bb:d2:98:de:16:06:26:3e:61:22:
                    e4:3d:30:52:ba:24:fa:d2:40:38:b5:39:ca:09:56:
                    10:2a:bf:09:a6:f6:6a:b2:bc:7e:e5:6d:6f:06:f3:
                    96:26:38:c1:60:43:08:8e:76:da:9a:55:1b:83:b1:
                    81:f8:f1:5a:9e:2e:08:f3:b0:18:ce:05:fd:89:1a:
                    e8:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:A4:D9:40:01:72:F9:F2:44:84:11:A7:9D:B9:7B:A9:E8:09:4E:A1
            X509v3 Authority Key Identifier:
                keyid:BA:B9:BB:C2:4E:9A:C3:D9:EC:7E:10:BF:95:74:7D:AB:5C:45:DD:2B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/urm7wk6aw9nsfhC_lXR9q1xF3Ss.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/2829fa-c0a2-4a78-9262-2ebc6448f602/1/urm7wk6aw9nsfhC_lXR9q1xF3Ss.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         94:68:3e:1e:cd:15:c3:d0:e8:85:4e:04:ae:8d:aa:a8:0a:2b:
         37:2f:ff:e4:bf:f8:fb:a7:86:db:bb:b2:ae:c7:df:ad:e0:49:
         36:ae:7c:93:f9:e2:bc:6f:3a:a5:41:f4:77:49:08:2b:59:44:
         e4:40:f0:73:9c:26:6a:cd:cb:e1:60:f1:a3:fc:57:95:21:15:
         17:18:8c:73:6f:0f:c8:10:3a:45:5a:6a:58:76:41:0a:df:d0:
         40:9e:7e:f8:3d:eb:40:ad:e3:59:49:83:97:fc:6b:17:65:42:
         58:aa:f7:5d:b9:d2:b3:85:bb:5e:36:c2:53:78:aa:4b:6c:95:
         77:41:83:81:a8:1e:aa:c2:a7:37:16:3a:a8:6a:ee:c9:f1:af:
         a0:ea:51:80:21:e9:0e:a3:59:f9:e3:7e:29:0a:4d:7b:f0:fc:
         ac:e4:cc:fb:b7:a9:27:8d:dd:40:04:4c:b4:cf:62:82:6f:b2:
         80:6d:51:56:26:61:b8:b3:92:57:0a:15:b8:61:f9:c4:4b:55:
         c5:5b:40:32:3b:da:d3:95:7a:07:07:4f:d4:01:0f:02:03:27:
         75:b0:4a:c1:19:35:37:7c:2e:64:04:db:f0:36:e9:00:d7:46:
         f7:34:17:a2:6a:55:70:cd:1b:a4:d6:c5:08:9a:9b:b1:cf:28:
         81:9c:96:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----