Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/1fc853-6526-4091-95f4-f9f601c0686e/1/YB4KrpPrBf9dQt1wFvXeo4H7hmA.mft
File:                     YB4KrpPrBf9dQt1wFvXeo4H7hmA.mft (raw, json)
Hash identifier:          B+N31+nv2jwgAFnYa5qq04PpT5iqWNwqacTtnKzd+QI=
Subject key identifier:   C4:B3:26:C1:FD:B4:08:4C:81:63:4C:27:D6:5C:FE:E8:F8:41:CB:48
Authority key identifier: 60:1E:0A:AE:93:EB:05:FF:5D:42:DD:70:16:F5:DE:A3:81:FB:86:60
Certificate issuer:       /CN=601e0aae93eb05ff5d42dd7016f5dea381fb8660
Certificate serial:       01992255996A8402562E63EB573A3DA97F48
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YB4KrpPrBf9dQt1wFvXeo4H7hmA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/37/1fc853-6526-4091-95f4-f9f601c0686e/1/YB4KrpPrBf9dQt1wFvXeo4H7hmA.mft
Manifest number:          166D
Signing time:             Sun 07 Sep 2025 04:00:59 +0000
Manifest this update:     Sun 07 Sep 2025 04:00:59 +0000
Manifest next update:     Mon 08 Sep 2025 04:00:59 +0000
Files and hashes:         1: YB4KrpPrBf9dQt1wFvXeo4H7hmA.crl (hash: dAP/9U82eoGyInZgiJ2fSYltNKyHeBNyp/5rYpu+tlo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/37/1fc853-6526-4091-95f4-f9f601c0686e/1/YB4KrpPrBf9dQt1wFvXeo4H7hmA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/37/1fc853-6526-4091-95f4-f9f601c0686e/1/YB4KrpPrBf9dQt1wFvXeo4H7hmA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YB4KrpPrBf9dQt1wFvXeo4H7hmA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 04:00:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:55:99:6a:84:02:56:2e:63:eb:57:3a:3d:a9:7f:48
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=601e0aae93eb05ff5d42dd7016f5dea381fb8660
        Validity
            Not Before: Sep  7 04:00:59 2025 GMT
            Not After : Sep  8 04:00:59 2025 GMT
        Subject: CN=c4b326c1fdb4084c81634c27d65cfee8f841cb48
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:08:26:4f:08:73:33:f3:dc:2c:0d:02:95:f5:
                    2b:d2:d1:c1:51:f9:2b:57:cf:5e:c9:d7:6a:cb:cd:
                    e4:57:5c:c0:4d:94:39:6d:b7:ef:b5:0f:ac:5a:1f:
                    be:f3:77:33:2d:50:b8:5c:a1:57:c3:0e:bc:a7:b0:
                    dc:97:cc:a5:3c:84:ec:b4:50:da:d9:ce:af:bd:80:
                    e4:9a:27:fc:6c:3b:87:71:d4:e6:0a:8d:d3:dd:8c:
                    7d:31:0b:4c:d4:42:43:e8:6e:2a:b7:63:7f:80:79:
                    c2:76:91:85:03:2c:10:6f:73:66:4c:fb:ca:6a:5f:
                    51:dc:09:51:9f:71:1b:b8:15:05:f9:dc:1c:f2:cc:
                    65:b0:cf:3a:66:df:a4:03:a4:69:01:0f:87:3b:2c:
                    73:b1:f0:c7:ec:e5:9c:15:a6:94:33:d6:f0:e0:f7:
                    d9:21:a1:b7:25:de:9b:57:ce:52:c2:74:b1:84:a1:
                    57:b5:5f:8d:4b:62:e6:2c:57:13:af:73:ea:ef:6a:
                    ac:f4:bd:63:a9:d8:90:8f:1b:c6:74:cd:e3:d2:34:
                    18:8d:5f:3d:2a:67:fc:06:32:cb:06:00:be:63:ce:
                    9c:d6:71:9b:17:8d:f0:86:a0:f5:f3:61:71:3e:61:
                    9e:80:cb:39:6a:90:c0:bf:59:78:29:37:5b:e2:f5:
                    d1:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:B3:26:C1:FD:B4:08:4C:81:63:4C:27:D6:5C:FE:E8:F8:41:CB:48
            X509v3 Authority Key Identifier:
                keyid:60:1E:0A:AE:93:EB:05:FF:5D:42:DD:70:16:F5:DE:A3:81:FB:86:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YB4KrpPrBf9dQt1wFvXeo4H7hmA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/1fc853-6526-4091-95f4-f9f601c0686e/1/YB4KrpPrBf9dQt1wFvXeo4H7hmA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/37/1fc853-6526-4091-95f4-f9f601c0686e/1/YB4KrpPrBf9dQt1wFvXeo4H7hmA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:48:a7:fb:0c:2d:15:63:0d:8c:d0:30:34:4d:71:2a:7e:80:
         35:74:40:85:59:ba:1d:4e:26:5c:3c:4d:54:35:c8:cd:f6:be:
         2e:a4:25:d0:92:44:f1:35:34:ff:13:6f:46:7e:6a:84:55:da:
         ab:bf:4d:ac:a8:c2:8a:b6:45:a0:a7:b8:59:b4:c6:4b:bd:ce:
         fd:2e:81:cc:44:ac:40:50:f9:5e:9f:ab:2a:97:17:86:98:f6:
         67:69:e8:2d:6b:60:ce:ee:c4:07:9b:0c:24:1b:f1:ad:5e:9d:
         c0:06:7f:e1:69:71:99:9b:c2:75:d3:9c:7c:bd:ed:8a:c6:86:
         9b:b7:9b:c3:0a:87:b0:c3:39:24:fb:75:ce:a2:db:f2:68:ec:
         9f:89:22:eb:a0:50:9f:9d:e8:16:b9:6e:e8:8a:6d:00:72:55:
         56:13:53:9d:64:d1:bc:47:16:ab:00:ac:97:9a:b1:95:19:08:
         5b:10:25:47:c4:4e:89:37:9b:13:11:d1:ed:e9:d6:1c:6b:9c:
         6e:09:a4:9b:10:49:e9:8c:6a:45:74:48:b5:4a:51:9a:94:05:
         e4:14:ed:f1:e2:ee:96:b8:df:53:3b:6c:e4:66:06:7a:be:50:
         d9:c5:5f:4a:e9:26:62:10:56:44:6e:f3:9d:e9:67:4e:0b:90:
         80:a9:db:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----