Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
File:                     GyceKuYih3VSuJ28R016EwWEpI4.mft (raw, json)
Hash identifier:          UKPYlxsBUn9xX01M7pkVopIG6BARAs7CAkp6gzM/t4g=
Subject key identifier:   61:86:27:8A:97:20:53:34:47:B4:AC:9C:62:4C:F5:74:61:AE:75:59
Authority key identifier: 1B:27:1E:2A:E6:22:87:75:52:B8:9D:BC:47:4D:7A:13:05:84:A4:8E
Certificate issuer:       /CN=1b271e2ae622877552b89dbc474d7a130584a48e
Certificate serial:       0199228CFB24FBEFCB44B100380BDFB377FE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
Manifest number:          0A7E
Signing time:             Sun 07 Sep 2025 05:01:28 +0000
Manifest this update:     Sun 07 Sep 2025 05:01:28 +0000
Manifest next update:     Mon 08 Sep 2025 05:01:28 +0000
Files and hashes:         1: GyceKuYih3VSuJ28R016EwWEpI4.crl (hash: CtLWs9G9HgRqkYNGJVKKJYU9KIg9FHFHAp5XFdeeF+s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:01:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:8c:fb:24:fb:ef:cb:44:b1:00:38:0b:df:b3:77:fe
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1b271e2ae622877552b89dbc474d7a130584a48e
        Validity
            Not Before: Sep  7 05:01:28 2025 GMT
            Not After : Sep  8 05:01:28 2025 GMT
        Subject: CN=6186278a9720533447b4ac9c624cf57461ae7559
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:41:28:b7:a7:18:a8:1a:c7:56:ce:19:e6:a5:
                    f8:ee:3f:85:6b:3e:d5:4f:bb:52:c4:d0:94:15:c9:
                    48:10:23:33:83:6f:cd:d2:76:ee:11:c0:e3:d2:80:
                    df:f9:ad:41:18:2a:12:8b:56:14:65:fa:0b:b6:d6:
                    13:bb:85:b6:76:89:40:26:88:ae:b6:b8:1c:0d:0b:
                    af:a4:e1:86:41:36:fd:9c:a4:07:37:ad:2c:40:90:
                    0c:db:4d:3c:0f:d8:fe:f4:94:ba:14:34:3d:8f:17:
                    98:f2:94:e1:a9:6f:ed:f4:1b:aa:bd:b5:3c:1d:db:
                    48:a6:e2:4e:2e:71:5c:58:0b:b1:15:5e:2f:44:4a:
                    d1:da:14:ed:9a:02:dc:c4:42:3f:46:4d:3f:41:1f:
                    b9:e2:39:b0:c7:ec:9c:f2:b3:2b:2b:d3:e3:49:9f:
                    76:9a:12:31:92:ab:b8:51:10:f3:e4:aa:df:4e:c4:
                    92:9d:b2:fd:3f:ca:de:03:50:2e:fb:b2:e8:e4:b2:
                    bb:61:aa:c6:d3:c5:5b:18:a9:33:dd:e8:be:66:b7:
                    b0:c6:97:46:6a:4a:d6:e4:aa:66:90:f1:f4:eb:39:
                    63:68:43:11:ee:53:fa:a4:63:7e:31:ba:47:b7:29:
                    f8:ea:b2:1c:56:92:8b:58:90:90:3e:55:73:28:fb:
                    dc:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:86:27:8A:97:20:53:34:47:B4:AC:9C:62:4C:F5:74:61:AE:75:59
            X509v3 Authority Key Identifier:
                keyid:1B:27:1E:2A:E6:22:87:75:52:B8:9D:BC:47:4D:7A:13:05:84:A4:8E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:d8:06:6f:28:45:fb:ef:00:6c:49:7a:12:5d:4a:46:08:ef:
         e2:61:b1:b8:0a:97:e0:d1:a3:82:ac:9a:f6:49:b9:e2:17:6e:
         c3:dd:10:e5:5f:d3:dd:e5:f4:18:1c:72:8d:3c:ec:ae:f9:cd:
         3a:35:37:70:dc:53:47:52:be:75:1a:81:e7:c3:fa:4f:6d:81:
         7e:2b:d7:e3:84:c4:b2:8b:57:9d:ce:60:8b:83:9c:af:e4:1d:
         14:00:3a:2a:09:d6:09:9e:52:d9:7b:52:ee:00:76:94:e4:2d:
         e5:de:fa:19:7a:80:6f:da:80:9f:9d:c8:f5:f6:a8:f6:89:e6:
         20:f2:d0:38:9f:3e:2a:6c:ba:17:43:d2:2d:5a:ae:9e:4b:7d:
         8b:48:34:24:19:32:98:f7:6a:dd:b9:c7:e5:4e:c6:c5:ad:7d:
         fe:dc:dc:37:b7:11:a6:46:36:f1:d5:c2:7a:f8:16:04:80:41:
         50:c5:0d:f2:b0:6b:6a:d2:12:da:23:c0:27:c7:c4:80:bc:52:
         e6:27:3b:c3:0e:8a:d1:a8:ce:04:5d:6b:bb:5e:67:e9:91:97:
         18:65:ad:a8:ff:ff:f8:dd:6e:be:17:2d:cd:d1:2d:18:6d:40:
         31:54:c1:4d:c1:f7:65:64:70:03:fa:0c:cd:fd:09:fd:4f:ff:
         f0:cd:71:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----