Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft
File:                     nwAKfifXFIcphPrjeIda9lvkBWw.mft (raw, json)
Hash identifier:          6cJLesNnrAPRXJ1i6ZOnuVYK6GUzEis5NtVQFd06Zz4=
Subject key identifier:   ED:CB:3D:71:3D:66:18:7C:6C:8A:FF:8C:42:34:6E:6A:4B:14:3C:EC
Authority key identifier: 9F:00:0A:7E:27:D7:14:87:29:84:FA:E3:78:87:5A:F6:5B:E4:05:6C
Certificate issuer:       /CN=9f000a7e27d714872984fae378875af65be4056c
Certificate serial:       019923D61B11887A30AD2890F324AF84E916
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nwAKfifXFIcphPrjeIda9lvkBWw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft
Manifest number:          C6
Signing time:             Sun 07 Sep 2025 11:00:58 +0000
Manifest this update:     Sun 07 Sep 2025 11:00:58 +0000
Manifest next update:     Mon 08 Sep 2025 11:00:58 +0000
Files and hashes:         1: nwAKfifXFIcphPrjeIda9lvkBWw.crl (hash: AmFzyua5aB3S0q03OtbRCEoU8fQNJCmmQR17BPE7i3s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nwAKfifXFIcphPrjeIda9lvkBWw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:d6:1b:11:88:7a:30:ad:28:90:f3:24:af:84:e9:16
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9f000a7e27d714872984fae378875af65be4056c
        Validity
            Not Before: Sep  7 11:00:58 2025 GMT
            Not After : Sep  8 11:00:58 2025 GMT
        Subject: CN=edcb3d713d66187c6c8aff8c42346e6a4b143cec
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:ae:a7:fe:33:ac:98:e1:e6:52:11:25:31:2e:
                    ee:14:fd:7d:80:f7:63:fa:e7:62:b0:de:a9:00:88:
                    15:88:4b:f6:46:c3:b2:bf:18:6a:e8:ad:37:b0:39:
                    83:4a:1d:fe:df:ba:19:d1:b9:fa:f1:8d:47:40:ea:
                    7d:dd:bb:41:00:ef:e3:91:3f:a8:89:4a:df:ae:33:
                    35:c4:30:3a:a1:cb:8c:dd:71:fc:fa:2b:07:55:34:
                    66:9e:bc:82:f4:ba:9f:72:dd:37:30:fd:2e:14:6b:
                    c7:48:5f:29:35:41:e0:c7:66:e7:fa:dd:da:23:37:
                    da:71:13:14:4f:01:d7:3a:54:0e:c0:ee:c5:f9:41:
                    44:1b:7a:73:a4:fb:4b:c9:b6:6b:e5:16:7c:da:d9:
                    24:8d:5d:5e:7b:1a:a5:a8:d9:98:3a:eb:32:9a:11:
                    cb:16:ce:2e:a9:91:a0:b7:23:1d:48:a7:f7:26:60:
                    95:c1:d4:21:88:91:69:f2:2b:cc:1a:4c:a7:cf:4f:
                    6d:e8:0e:7f:e9:b7:4e:56:d4:5f:5b:cc:07:fc:7b:
                    81:b4:24:53:5e:5f:4c:e1:f2:1c:46:52:50:59:a5:
                    5a:e9:c6:07:e3:52:0b:33:d9:40:ab:9a:ba:11:78:
                    cf:22:46:37:92:91:ed:c5:fb:e1:ff:4d:57:67:75:
                    51:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:CB:3D:71:3D:66:18:7C:6C:8A:FF:8C:42:34:6E:6A:4B:14:3C:EC
            X509v3 Authority Key Identifier:
                keyid:9F:00:0A:7E:27:D7:14:87:29:84:FA:E3:78:87:5A:F6:5B:E4:05:6C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwAKfifXFIcphPrjeIda9lvkBWw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:13:bf:f1:48:30:6a:b0:e5:c4:db:c3:4d:b8:ec:7c:e8:31:
         55:80:99:0e:83:b4:1d:2f:b1:03:0f:7b:e3:4c:9b:85:a8:fe:
         3d:44:70:df:36:ca:77:32:73:24:ab:1c:ff:71:de:b2:43:8d:
         fa:80:20:82:d9:7c:00:1c:9b:5d:e3:ca:f6:c1:6a:2a:f7:6c:
         86:c3:8d:cc:01:f8:5f:01:d5:2d:54:37:c4:9f:b8:cc:b3:4f:
         56:fc:1b:68:13:fd:e4:14:5d:d3:2b:24:f4:36:6e:79:9e:94:
         8c:a0:c5:93:93:a3:93:d7:55:2c:6e:e6:a9:99:88:69:c5:79:
         2f:c8:26:cb:22:2c:83:03:a9:09:25:7e:81:29:0f:ac:e1:4c:
         b0:45:53:96:35:be:00:d8:b6:bb:a7:bf:b7:95:ab:d5:86:f5:
         6e:f3:ce:94:91:2e:93:99:32:90:ea:c8:b4:bb:81:fb:6d:51:
         5a:d3:5c:8f:38:df:87:d3:97:e3:d9:9b:fa:47:71:9b:44:e0:
         84:44:92:7d:e2:3d:e0:74:ee:ff:4f:46:8a:41:57:42:29:b9:
         11:f8:8f:c5:92:d4:02:46:69:7d:f9:04:13:4a:35:4e:1a:5f:
         7f:01:f1:fe:40:c7:f3:97:54:83:44:55:6a:b0:09:fa:15:84:
         5b:be:b5:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----