Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft
File:                     vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft (raw, json)
Hash identifier:          qlO/QpDXEfrq4etu67FRAC840NjUYueAIwydrb53w5k=
Subject key identifier:   7B:CB:7D:E3:CB:C9:0E:13:63:7C:1E:A3:60:F5:92:31:20:06:35:DC
Authority key identifier: BC:77:CB:89:64:C4:ED:60:14:48:A4:36:86:85:BF:08:DC:B5:E1:F4
Certificate issuer:       /CN=bc77cb8964c4ed601448a4368685bf08dcb5e1f4
Certificate serial:       0198530E9D733DAA047C3E310770341E7C31
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft
Manifest number:          1606
Signing time:             Mon 28 Jul 2025 22:02:03 +0000
Manifest this update:     Mon 28 Jul 2025 22:02:03 +0000
Manifest next update:     Tue 29 Jul 2025 22:02:03 +0000
Files and hashes:         1: vHfLiWTE7WAUSKQ2hoW_CNy14fQ.crl (hash: a7I+omGs0rd4paM2vnT4908Y2kC5rwAL2HRbnbCldNs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 29 Jul 2025 22:02:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:53:0e:9d:73:3d:aa:04:7c:3e:31:07:70:34:1e:7c:31
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bc77cb8964c4ed601448a4368685bf08dcb5e1f4
        Validity
            Not Before: Jul 28 22:02:03 2025 GMT
            Not After : Jul 29 22:02:03 2025 GMT
        Subject: CN=7bcb7de3cbc90e13637c1ea360f59231200635dc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:9c:ca:6d:05:31:ab:65:1d:73:2f:e1:bf:ba:
                    52:c6:3a:32:ec:e9:b7:47:67:fb:01:37:06:ab:d0:
                    00:8b:12:44:62:04:0b:ac:72:0f:b9:6d:bf:f6:66:
                    68:92:63:0c:02:ca:13:ea:37:d5:db:cf:1b:3b:34:
                    a5:87:53:63:1e:ea:b6:cd:96:7a:70:bd:8e:9d:5e:
                    c7:85:8a:b8:51:7e:f0:d2:c3:aa:17:19:d0:12:5a:
                    a8:c6:fc:9a:3c:5f:72:70:8a:c6:39:59:08:cb:b2:
                    45:5e:cf:2b:2a:ac:49:27:9f:82:d6:51:1c:e2:89:
                    41:b8:82:da:e9:76:4c:fb:77:ef:87:be:9b:32:39:
                    c9:14:27:bb:dd:f3:60:88:60:9b:7c:48:ab:83:f4:
                    85:2b:79:24:ed:ef:66:05:a0:09:05:96:01:5f:52:
                    f2:00:42:83:9e:85:d7:5b:5e:67:58:bb:6e:97:d4:
                    bf:1b:44:16:d5:e3:85:52:a1:ea:b3:b7:df:16:25:
                    61:f1:14:46:65:44:f9:f2:1a:fd:52:8f:b1:80:ab:
                    11:78:52:1e:f3:5a:b8:63:61:f8:66:1b:33:e4:f6:
                    18:6a:e2:47:a5:8c:66:7f:98:7d:11:c3:76:1c:ac:
                    ce:ac:9c:8e:a9:b8:7a:e0:9f:d9:c7:20:a1:43:65:
                    77:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:CB:7D:E3:CB:C9:0E:13:63:7C:1E:A3:60:F5:92:31:20:06:35:DC
            X509v3 Authority Key Identifier:
                keyid:BC:77:CB:89:64:C4:ED:60:14:48:A4:36:86:85:BF:08:DC:B5:E1:F4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:99:3e:07:46:11:51:28:f0:5a:14:1a:42:23:8b:22:2b:8d:
         8f:43:5f:be:35:f8:65:e6:99:42:2a:06:7f:ed:e9:7b:4c:dd:
         09:9b:98:d6:0b:90:b3:57:bc:15:36:48:bf:89:29:8f:f0:94:
         67:60:db:33:5d:87:de:bc:11:18:16:6c:a2:89:a5:42:47:18:
         2c:62:bd:2d:6d:ea:e6:0c:6b:af:d6:61:13:84:2e:ea:24:3d:
         3f:95:99:4d:97:8b:35:ff:b2:6f:ba:fb:51:6a:0e:eb:44:36:
         28:5a:d7:38:37:0b:b1:5d:a8:1c:49:a6:db:7e:40:9d:f3:6d:
         c2:1f:60:dd:eb:af:e7:9d:a2:ce:50:63:48:b9:62:b2:d7:39:
         2c:2d:17:36:95:8e:91:b2:75:e0:7e:3c:23:37:38:c3:2d:ec:
         23:60:d2:e9:55:f6:c5:6f:28:3e:bd:58:d4:cb:92:aa:70:1f:
         40:9e:3d:62:ab:1e:77:e7:42:e2:b1:fc:80:a1:8b:fc:b7:65:
         79:33:92:de:91:c4:74:0c:70:6d:63:63:c4:9a:3e:d7:40:b2:
         0a:05:92:2a:3d:4b:59:28:79:fb:f0:c1:c4:db:7d:bd:27:fc:
         90:bf:0f:87:7e:65:9c:94:28:5e:bb:37:a7:2e:5d:5f:a4:54:
         9d:81:d1:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----