Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft
File:                     YmJJH6XuZw3MLCvhaY436ZMXSSM.mft (raw, json)
Hash identifier:          xZRkudLev35l1rdTZd0mITr7/6K3JqES82irDS4yM0o=
Subject key identifier:   81:AD:E5:18:95:52:96:32:DD:C9:D0:83:BA:A0:0A:5A:34:1F:CC:27
Authority key identifier: 62:62:49:1F:A5:EE:67:0D:CC:2C:2B:E1:69:8E:37:E9:93:17:49:23
Certificate issuer:       /CN=6262491fa5ee670dcc2c2be1698e37e993174923
Certificate serial:       0199225543777008D1FC97CB0E43CC85180D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YmJJH6XuZw3MLCvhaY436ZMXSSM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft
Manifest number:          0103
Signing time:             Sun 07 Sep 2025 04:00:37 +0000
Manifest this update:     Sun 07 Sep 2025 04:00:37 +0000
Manifest next update:     Mon 08 Sep 2025 04:00:37 +0000
Files and hashes:         1: YmJJH6XuZw3MLCvhaY436ZMXSSM.crl (hash: CnTbL2cMCrQLq20BrtzMlUfeOoJ6C50aLREE1J4cZOQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YmJJH6XuZw3MLCvhaY436ZMXSSM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 04:00:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:55:43:77:70:08:d1:fc:97:cb:0e:43:cc:85:18:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6262491fa5ee670dcc2c2be1698e37e993174923
        Validity
            Not Before: Sep  7 04:00:37 2025 GMT
            Not After : Sep  8 04:00:37 2025 GMT
        Subject: CN=81ade51895529632ddc9d083baa00a5a341fcc27
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:dd:74:5e:9f:b4:bb:61:5e:c6:8c:24:1c:37:
                    17:01:69:82:8e:2d:e2:5e:ed:92:02:0b:ba:3f:d0:
                    4d:a6:23:4f:bb:73:38:03:e9:81:ae:55:b8:f4:b2:
                    92:21:56:5f:70:f3:ba:2d:8c:4e:f5:a8:8b:06:82:
                    22:cb:c8:db:f4:f2:cc:96:54:66:05:77:23:ad:df:
                    38:ee:bd:f7:ac:42:c7:a2:a6:77:5f:93:f1:61:38:
                    fb:ec:94:ad:9e:85:de:a5:1c:42:a5:e4:9b:56:e2:
                    78:5b:8d:e3:0f:d7:b0:4b:87:2f:13:c5:dd:2e:e4:
                    74:8f:e0:f9:71:41:cf:12:e9:26:ba:72:b0:d0:a6:
                    5d:27:d9:46:c1:57:e8:9f:a1:09:21:45:1f:f4:67:
                    e4:14:a3:b9:12:95:90:d6:b8:f8:d1:55:79:18:8f:
                    2c:02:87:56:82:20:3c:1d:1e:1e:a4:f9:b0:98:74:
                    96:45:93:3c:6d:86:ce:5d:b6:54:1e:27:6b:03:01:
                    37:26:94:1a:03:85:cf:ef:cf:ed:75:75:29:0e:a5:
                    98:2a:6a:b0:6c:6d:92:3f:3c:46:e2:18:8e:ed:79:
                    11:2e:d7:03:90:44:ea:5f:ec:6d:6d:76:d7:f6:12:
                    23:1c:2a:c1:0c:8b:cb:57:f8:23:cf:5d:b5:79:39:
                    c6:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:AD:E5:18:95:52:96:32:DD:C9:D0:83:BA:A0:0A:5A:34:1F:CC:27
            X509v3 Authority Key Identifier:
                keyid:62:62:49:1F:A5:EE:67:0D:CC:2C:2B:E1:69:8E:37:E9:93:17:49:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YmJJH6XuZw3MLCvhaY436ZMXSSM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/9e9262-d957-4c2f-9076-6e89bc6d433b/1/YmJJH6XuZw3MLCvhaY436ZMXSSM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:b5:98:57:0d:c9:03:3d:fa:97:d9:fd:f3:cf:d7:ee:de:bb:
         98:fc:4d:57:82:0e:33:78:99:ff:98:4b:ea:95:c5:fa:67:2b:
         a1:ed:ea:b2:7e:24:0c:ae:c3:77:11:66:ae:b6:fa:8d:37:63:
         8b:50:df:e4:ee:a5:7d:af:39:70:a6:9b:eb:e3:d5:93:a5:2b:
         4a:c3:9c:ea:24:e7:bf:f1:3e:84:77:2b:bc:45:8d:bd:84:57:
         94:1b:69:f4:ca:3b:b4:3d:d9:e1:22:37:ec:06:48:09:44:ef:
         68:67:b3:14:16:88:79:83:f1:65:3d:f6:1a:3a:06:1d:ba:d4:
         59:79:5a:8f:55:ee:04:b4:3f:5b:9f:0b:4b:e2:a7:6d:1f:5a:
         72:db:af:35:6f:89:cd:ed:83:cb:5b:d6:6a:18:3d:e1:20:32:
         31:b1:f4:68:39:4c:c1:49:c3:06:a1:0e:96:bb:06:b7:6c:e2:
         6a:fb:a3:1a:f8:d9:b6:82:a3:c6:f4:13:98:ab:30:6c:6d:04:
         3d:de:e7:fa:8c:bf:15:04:24:e5:c1:2e:d2:37:65:da:4d:33:
         5f:02:fe:63:80:18:49:30:74:23:d8:c4:99:65:8c:9c:58:dc:
         d9:c3:51:11:a5:23:3a:82:65:77:cc:e3:bb:2b:79:3a:1a:20:
         13:0b:2b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----