Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/7d9c11-e1ad-47b6-af09-1713fd3ef7a7/1/YXe1tkvknoGZlf7n8-NiG9ymrow.mft
File:                     YXe1tkvknoGZlf7n8-NiG9ymrow.mft (raw, json)
Hash identifier:          o4k/ZFMjj27ySLxpHxSUApYFi4MLDLx7jXP8w9K3TOU=
Subject key identifier:   EC:35:23:F4:D1:62:E0:B0:36:E0:3B:2D:9D:FB:36:C7:A6:74:DC:C2
Authority key identifier: 61:77:B5:B6:4B:E4:9E:81:99:95:FE:E7:F3:E3:62:1B:DC:A6:AE:8C
Certificate issuer:       /CN=6177b5b64be49e819995fee7f3e3621bdca6ae8c
Certificate serial:       019848F78FABE9264AC0913C5E2B811C4203
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YXe1tkvknoGZlf7n8-NiG9ymrow.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/7d9c11-e1ad-47b6-af09-1713fd3ef7a7/1/YXe1tkvknoGZlf7n8-NiG9ymrow.mft
Manifest number:          1601
Signing time:             Sat 26 Jul 2025 23:00:40 +0000
Manifest this update:     Sat 26 Jul 2025 23:00:40 +0000
Manifest next update:     Sun 27 Jul 2025 23:00:40 +0000
Files and hashes:         1: YXe1tkvknoGZlf7n8-NiG9ymrow.crl (hash: UqjD99lFV/FetAU4gkLKGEwNj4HYG1kOG2nJMdmY/UA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/7d9c11-e1ad-47b6-af09-1713fd3ef7a7/1/YXe1tkvknoGZlf7n8-NiG9ymrow.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/7d9c11-e1ad-47b6-af09-1713fd3ef7a7/1/YXe1tkvknoGZlf7n8-NiG9ymrow.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YXe1tkvknoGZlf7n8-NiG9ymrow.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 27 Jul 2025 20:00:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:48:f7:8f:ab:e9:26:4a:c0:91:3c:5e:2b:81:1c:42:03
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6177b5b64be49e819995fee7f3e3621bdca6ae8c
        Validity
            Not Before: Jul 26 23:00:40 2025 GMT
            Not After : Jul 27 23:00:40 2025 GMT
        Subject: CN=ec3523f4d162e0b036e03b2d9dfb36c7a674dcc2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:19:c3:27:e3:77:d7:49:b8:7b:32:26:a7:19:
                    de:7b:2d:cf:ad:46:35:c2:4e:1f:d5:a4:d6:56:6a:
                    a1:b9:70:17:24:04:2c:e4:43:bd:11:1c:59:8c:ef:
                    1d:1a:6a:e6:c7:c9:0c:a1:6d:f4:21:65:2e:c1:e1:
                    6a:e9:bb:3e:61:a3:e8:07:20:0d:57:0c:9f:de:ac:
                    4c:ec:41:16:22:da:2e:d8:41:c3:1b:e2:31:33:1b:
                    bf:95:20:15:1c:1f:1c:d0:4b:73:26:2f:a1:83:c8:
                    61:da:ba:df:58:08:07:e9:de:ed:f1:0d:15:d0:e6:
                    b8:a2:1b:65:7c:a2:f2:11:3d:34:91:04:a5:34:4e:
                    25:1b:bc:f2:48:ff:41:d4:3b:f7:bd:13:ee:69:b7:
                    8e:58:ad:24:41:d2:ca:e7:29:db:de:40:95:86:38:
                    35:b8:5d:17:68:b2:ca:0a:48:17:30:5c:05:d7:60:
                    fe:fb:e7:42:cb:aa:25:64:97:d3:0c:d1:e1:78:09:
                    6c:3b:8d:39:15:17:d5:57:e7:3f:8f:fd:c9:e9:a8:
                    0c:79:c1:8d:f1:d4:61:0e:9b:fc:9d:b3:a0:c1:16:
                    c6:a1:86:db:6b:fb:9c:86:1f:49:11:3f:d5:41:fe:
                    36:8d:87:0f:b3:05:7a:01:ab:2f:22:44:c4:8b:d7:
                    26:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:35:23:F4:D1:62:E0:B0:36:E0:3B:2D:9D:FB:36:C7:A6:74:DC:C2
            X509v3 Authority Key Identifier:
                keyid:61:77:B5:B6:4B:E4:9E:81:99:95:FE:E7:F3:E3:62:1B:DC:A6:AE:8C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YXe1tkvknoGZlf7n8-NiG9ymrow.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/7d9c11-e1ad-47b6-af09-1713fd3ef7a7/1/YXe1tkvknoGZlf7n8-NiG9ymrow.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/7d9c11-e1ad-47b6-af09-1713fd3ef7a7/1/YXe1tkvknoGZlf7n8-NiG9ymrow.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:53:2e:17:e6:d3:b2:50:31:0f:e4:54:ee:6f:4d:d5:31:f7:
         3f:28:46:ff:72:ae:fb:b7:67:18:fe:65:1a:dc:50:65:23:c0:
         9e:8e:0c:11:14:26:8d:a2:d1:6f:b9:a9:fb:04:10:ed:fd:1e:
         6d:f1:4e:26:6d:fc:4f:dd:04:c7:10:b8:07:f2:45:ab:7d:03:
         23:b8:38:2e:7e:5e:8c:d3:41:69:e4:be:bf:73:9a:16:2d:82:
         0b:68:c7:c7:bb:81:f2:84:e1:c7:89:32:f4:65:ce:12:76:7f:
         80:04:bb:6d:e8:c1:52:c2:13:41:d1:12:eb:00:ce:a0:d5:cd:
         17:8b:15:17:af:6a:4f:1b:59:67:84:83:52:15:55:70:7b:63:
         dc:f7:27:23:04:75:f4:67:71:a0:31:7e:b9:ef:48:0c:a8:22:
         7c:f7:23:c7:59:0d:99:b5:18:3a:ce:34:30:96:67:16:09:25:
         a3:80:dc:bf:70:61:92:39:0a:ca:f7:61:26:8f:57:2a:4c:63:
         53:3b:8d:dc:d8:0c:b2:cf:f0:e1:7b:35:f5:58:d4:0d:f3:a2:
         3e:b7:0c:c8:41:15:53:27:65:fd:63:0b:72:c2:19:8d:71:f2:
         62:54:6a:e3:25:a8:ef:b7:f3:f3:63:a1:0d:a7:16:4a:94:8b:
         5e:4d:e1:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----