Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
File:                     pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft (raw, json)
Hash identifier:          023NOva77SBzDfUg88Bh/fkq8OS9ITWHJWOlE1GzRYg=
Subject key identifier:   09:B7:8D:DD:5A:4C:4A:2A:03:06:F4:6F:27:2C:0B:77:F2:CA:72:C9
Authority key identifier: A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92
Certificate issuer:       /CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
Certificate serial:       0199239F733EF0C732A0CB61EB0BD7669B1F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
Manifest number:          116F
Signing time:             Sun 07 Sep 2025 10:01:16 +0000
Manifest this update:     Sun 07 Sep 2025 10:01:16 +0000
Manifest next update:     Mon 08 Sep 2025 10:01:16 +0000
Files and hashes:         1: pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl (hash: 3F48J/ZzxdGirwjBpV4BMr/pPEGrvLZ51HDqMbUPzCk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:9f:73:3e:f0:c7:32:a0:cb:61:eb:0b:d7:66:9b:1f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
        Validity
            Not Before: Sep  7 10:01:16 2025 GMT
            Not After : Sep  8 10:01:16 2025 GMT
        Subject: CN=09b78ddd5a4c4a2a0306f46f272c0b77f2ca72c9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:ab:07:71:b5:d0:cb:cb:eb:b2:e5:fa:b3:dc:
                    1a:70:ba:9e:72:d7:6e:bd:ac:4d:fe:b8:71:0f:4c:
                    a3:bf:4a:45:a5:ac:13:30:ce:74:9b:aa:05:79:63:
                    29:db:34:17:0d:69:2c:e5:c5:d9:86:7d:36:f5:16:
                    57:1d:ab:2b:ee:e3:86:41:64:73:7d:c0:be:e4:19:
                    09:02:d7:31:1f:17:68:2d:c3:00:35:27:0f:dc:9b:
                    5f:f7:63:25:72:f1:20:9b:35:6a:58:2d:62:1e:92:
                    86:f5:89:ad:0c:aa:ec:a2:36:ed:7a:ec:dd:ee:c0:
                    1f:0f:4d:25:e5:63:9b:1b:fa:a1:83:89:ea:73:f1:
                    28:79:52:eb:11:c0:39:36:77:9f:bc:4e:48:e0:51:
                    3e:6c:37:2e:34:93:61:1d:7b:e8:d9:7d:13:3a:73:
                    45:fc:49:5f:b9:22:b7:b8:3c:df:4b:02:21:d6:89:
                    82:4e:a9:93:28:fa:a1:5f:0e:d9:e8:a2:f4:22:cf:
                    24:58:4e:2f:04:e7:18:4b:0a:31:bb:81:97:79:1e:
                    93:01:c1:e2:e4:27:82:6f:44:4d:db:2b:fa:cd:d0:
                    12:a3:a4:2d:96:6f:f6:ac:8c:1e:77:85:bc:fb:ca:
                    b6:de:31:85:ef:cb:7b:b4:d2:3e:53:65:fe:a6:bd:
                    31:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:B7:8D:DD:5A:4C:4A:2A:03:06:F4:6F:27:2C:0B:77:F2:CA:72:C9
            X509v3 Authority Key Identifier:
                keyid:A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:f0:02:09:e2:f1:de:f4:82:fb:2f:1b:e2:43:dc:6a:c6:d1:
         29:67:86:46:5b:46:c5:2b:c7:9f:bd:6e:04:f0:10:6f:54:30:
         fb:b7:6e:39:fb:e0:ed:9a:f5:21:f6:84:47:c0:f4:36:8d:82:
         71:a8:73:f8:a2:85:6e:b8:de:3f:91:ab:b0:9c:6b:27:0f:82:
         31:a8:d2:bf:3d:c1:cf:20:1b:e0:2e:97:70:17:9e:70:72:99:
         0f:6e:48:63:f2:fe:4f:c3:0b:b5:8a:cd:05:69:1c:2c:84:bd:
         1e:0a:9a:8a:84:34:ec:bb:da:95:f9:38:73:c0:36:20:15:a8:
         31:71:7c:6d:7d:ae:f6:f9:bb:99:03:05:cf:8f:7b:37:61:ab:
         07:46:c6:17:da:03:5b:47:c6:e1:3e:5e:f2:ac:02:9d:25:f6:
         75:14:c9:9f:0c:81:ce:b6:f4:65:2b:0c:ce:58:b8:b2:1c:d8:
         06:b3:71:4e:0d:d4:df:2a:15:a1:93:45:21:9f:20:4f:d4:3c:
         1e:9d:7b:65:59:28:fa:18:da:cf:61:6f:a7:42:87:fa:5b:b0:
         df:ef:54:a3:b4:ac:91:b5:d6:74:0d:1f:3a:1a:48:a4:f1:e5:
         2f:3c:6a:00:a7:9c:5e:9d:6b:8c:a9:91:a6:86:c8:b7:09:5b:
         0d:17:80:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----