Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
File:                     YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft (raw, json)
Hash identifier:          wyLsY+Aadr4cD4LJ6/fsth5wxbqrInrwM47uMbGQD3E=
Subject key identifier:   A4:1E:38:E0:E1:1F:4D:8F:5F:AC:CD:84:66:21:E2:2F:32:5C:F3:C8
Authority key identifier: 60:A4:34:FD:6B:FF:8B:6F:BB:0D:52:F8:DA:42:E9:1F:8A:5A:29:2F
Certificate issuer:       /CN=60a434fd6bff8b6fbb0d52f8da42e91f8a5a292f
Certificate serial:       01984AAE79AA4951FD12F88F8C761DF36C3A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
Manifest number:          079B
Signing time:             Sun 27 Jul 2025 07:00:05 +0000
Manifest this update:     Sun 27 Jul 2025 07:00:05 +0000
Manifest next update:     Mon 28 Jul 2025 07:00:05 +0000
Files and hashes:         1: YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl (hash: MokyEsKLjwGdPaIrGYkPiq4aI8l/maIAnHEgrJvcQVY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 28 Jul 2025 05:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:4a:ae:79:aa:49:51:fd:12:f8:8f:8c:76:1d:f3:6c:3a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=60a434fd6bff8b6fbb0d52f8da42e91f8a5a292f
        Validity
            Not Before: Jul 27 07:00:05 2025 GMT
            Not After : Jul 28 07:00:05 2025 GMT
        Subject: CN=a41e38e0e11f4d8f5faccd846621e22f325cf3c8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:e7:9c:5b:b8:28:ef:08:79:aa:92:e9:81:48:
                    6a:31:f8:37:74:c9:d3:dc:90:e8:c0:d6:ec:19:8e:
                    de:fb:1e:f7:d7:5f:cb:8b:38:e9:c9:19:dd:4f:12:
                    1f:10:50:db:86:ad:61:c8:90:5d:3d:b6:69:5c:58:
                    c1:e4:4c:d1:b7:6a:32:09:af:bf:1f:4a:5f:45:6e:
                    ca:d3:2d:00:73:ad:ab:c4:e1:48:53:fd:11:db:01:
                    72:b7:88:7e:db:b1:15:67:f3:9e:b2:8d:d1:b1:8a:
                    e0:2e:08:3e:46:1e:4a:b6:c8:9d:7b:cb:90:fa:f2:
                    d5:33:bb:ca:a0:76:69:e6:3c:44:ba:ae:e8:96:a2:
                    31:f6:79:7d:85:01:d6:ce:d4:8a:4b:94:44:bd:96:
                    64:49:2f:66:d8:d1:bb:95:b5:85:79:41:ee:65:a7:
                    64:90:64:d0:e0:4d:bc:8b:53:e9:ec:31:0e:8e:5e:
                    7a:9a:76:3c:ce:3e:bd:a7:57:bc:b7:2d:be:fc:dd:
                    7d:57:66:20:ac:4a:5a:d7:28:c4:a1:c9:58:22:18:
                    a0:27:17:8e:a7:75:65:2b:ec:24:66:b4:3f:67:80:
                    83:8e:7b:27:dd:88:08:2a:71:60:ee:a0:97:b6:50:
                    05:00:d7:a2:3a:06:c3:7d:c2:9f:63:4f:7a:d2:07:
                    5b:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A4:1E:38:E0:E1:1F:4D:8F:5F:AC:CD:84:66:21:E2:2F:32:5C:F3:C8
            X509v3 Authority Key Identifier:
                keyid:60:A4:34:FD:6B:FF:8B:6F:BB:0D:52:F8:DA:42:E9:1F:8A:5A:29:2F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YKQ0_Wv_i2-7DVL42kLpH4paKS8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6801c9-dd17-4dca-8100-6a3f01d9cb50/1/YKQ0_Wv_i2-7DVL42kLpH4paKS8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:f3:56:5b:12:31:5b:29:13:f3:2c:cc:c3:ee:a8:52:33:f1:
         11:8b:d8:ea:ff:52:a5:56:a3:42:c0:8b:52:36:cb:28:a4:86:
         e7:d0:e8:cc:2f:9c:b4:eb:67:96:d0:e6:43:06:96:4a:34:f2:
         5f:2d:19:de:0f:81:de:ad:8d:94:38:48:23:2c:1a:1c:13:ac:
         47:3d:b8:11:0b:5d:5a:a6:40:da:91:8d:29:ba:78:25:43:f8:
         3f:84:c5:54:a5:9d:2f:91:67:56:ba:17:f2:c0:19:fc:fd:a6:
         dd:ff:4d:48:f5:a1:b2:3f:6c:e3:3c:ef:e6:ef:fd:31:c1:57:
         7d:b3:b1:72:5b:cb:a1:44:66:76:42:05:cb:64:26:2f:07:70:
         92:54:c1:25:e1:87:7f:46:4d:75:39:a3:33:e4:d3:7e:99:d0:
         9c:32:aa:2f:f3:22:dd:34:6a:1a:f2:88:99:7d:e9:14:6b:f2:
         26:a9:ed:0a:e6:ea:b3:ef:c0:9d:15:76:51:95:d5:ad:ac:7d:
         e2:4d:ab:2f:e8:69:7b:09:be:62:75:9a:cf:d0:ce:c6:dc:b7:
         c7:06:b0:4f:28:9c:08:50:d1:58:bd:94:50:75:11:58:bb:ed:
         ad:cc:a9:b0:a2:c8:b4:2e:e5:a8:10:52:97:e6:68:c5:4a:a9:
         8d:ac:e7:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----