Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
File:                     i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft (raw, json)
Hash identifier:          PVrVpNJa+jfSYq9zQyAgl4jCyanuBnD3/QaCqQigtK4=
Subject key identifier:   C4:27:4E:8D:AA:F1:C7:9B:9C:CB:06:56:44:8C:C3:87:33:67:92:EB
Authority key identifier: 8B:7B:E7:A4:76:06:AB:38:39:1F:B2:15:42:B5:F4:06:1F:02:A8:52
Certificate issuer:       /CN=8b7be7a47606ab38391fb21542b5f4061f02a852
Certificate serial:       0199239FE0C9FC8E1961B73993A9F2EAA4B5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
Manifest number:          0CEB
Signing time:             Sun 07 Sep 2025 10:01:44 +0000
Manifest this update:     Sun 07 Sep 2025 10:01:44 +0000
Manifest next update:     Mon 08 Sep 2025 10:01:44 +0000
Files and hashes:         1: i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl (hash: 9Ro87JiWBrEi8cyeuDGe2uKa3CJXm0ydQS/hiuPVGSY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:9f:e0:c9:fc:8e:19:61:b7:39:93:a9:f2:ea:a4:b5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8b7be7a47606ab38391fb21542b5f4061f02a852
        Validity
            Not Before: Sep  7 10:01:44 2025 GMT
            Not After : Sep  8 10:01:44 2025 GMT
        Subject: CN=c4274e8daaf1c79b9ccb0656448cc387336792eb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:ac:fe:70:60:e5:30:48:e7:b8:3c:40:55:d5:
                    ff:41:fc:36:f2:7d:12:41:df:93:01:5d:a2:a2:fb:
                    38:5a:68:b7:51:bc:61:e3:58:7e:e8:dc:5c:7b:00:
                    3c:c1:52:f7:fd:bd:9f:35:e8:36:b6:f9:d0:d0:57:
                    4d:49:9a:d2:a0:04:ae:f3:5e:85:b9:14:55:1a:45:
                    a1:6a:a6:4d:09:e6:70:07:7d:ee:ff:72:a5:42:18:
                    be:19:d2:9b:68:ff:b9:2e:45:4b:30:62:ac:90:bc:
                    04:a2:e0:7e:b2:bc:dd:10:ef:b4:8c:b0:76:29:bc:
                    7f:c8:b0:5b:ca:73:83:cb:b4:ce:6f:31:a6:2e:27:
                    8c:92:2a:b3:04:99:22:71:ee:ad:32:2e:e9:44:36:
                    15:cd:17:bb:4e:37:40:39:c8:6a:a0:d0:51:d2:fe:
                    4b:65:e8:dc:0b:c3:7c:53:e6:3c:bb:e2:32:e2:b2:
                    20:71:9f:43:3d:68:e9:e8:3e:de:73:66:db:a8:1c:
                    78:8b:9e:7f:48:8c:26:43:34:8f:94:82:d5:78:b3:
                    80:d0:72:b1:df:99:fe:0b:aa:28:0e:17:1c:89:89:
                    6a:db:9d:db:21:9e:c4:fe:09:ce:11:f8:87:3d:6c:
                    b9:a5:d0:4f:d6:07:10:35:92:f8:70:5e:ce:c5:84:
                    61:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:27:4E:8D:AA:F1:C7:9B:9C:CB:06:56:44:8C:C3:87:33:67:92:EB
            X509v3 Authority Key Identifier:
                keyid:8B:7B:E7:A4:76:06:AB:38:39:1F:B2:15:42:B5:F4:06:1F:02:A8:52

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/247c5d-a272-482b-9c8e-37fe395d42f0/1/i3vnpHYGqzg5H7IVQrX0Bh8CqFI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         52:8f:78:9c:d8:e4:a9:27:b2:ca:38:e4:44:71:9d:d1:ed:55:
         ec:47:2b:62:dd:79:85:62:47:7a:14:14:af:1f:d8:91:9f:94:
         b2:dc:8f:7b:35:ff:71:c0:9e:f7:a6:53:db:78:ab:b7:c5:79:
         41:f2:54:76:1d:5f:61:e6:fc:54:f0:d3:fa:f7:d4:3a:47:9d:
         3e:81:9a:e9:fc:85:7c:6b:7a:1c:a7:93:3e:b2:f1:9b:d3:10:
         75:e7:29:e3:f9:a8:be:20:a5:cc:03:51:87:58:e1:a2:b6:b5:
         4d:53:7f:1c:78:6e:45:0f:a9:1f:c8:01:c3:61:13:89:df:a1:
         2e:86:a7:3d:7e:7f:9f:89:06:4a:91:d8:0a:93:14:17:81:99:
         31:d0:3c:10:ee:9f:87:37:39:87:87:a8:5c:98:e7:02:89:14:
         67:ac:11:06:7f:9e:f5:80:f5:ee:a0:a5:9f:ea:07:ac:a0:8e:
         47:07:9a:f1:91:0b:98:c2:ff:2a:f2:06:e6:ad:81:61:0b:09:
         89:1c:84:6a:1b:30:b9:35:78:64:98:a5:c2:ea:01:3e:ff:31:
         f2:78:30:fa:c8:c5:75:4c:75:fc:8f:65:fc:11:89:f9:e3:cd:
         42:96:7d:e0:17:b4:8d:49:d2:48:ea:db:f6:3f:b9:82:aa:01:
         af:ee:31:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----