Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.mft
File:                     TkB_fq2BapVV9HrxCQPvRcgXC4I.mft (raw, json)
Hash identifier:          6Hmv2L3+gwHkvaxvbhapOBIF/33RDHzP6ZAQ4sUApzY=
Subject key identifier:   63:37:BB:A0:33:29:16:D6:FE:BA:3D:3B:52:E7:1D:64:AF:E1:A2:AA
Authority key identifier: 4E:40:7F:7E:AD:81:6A:95:55:F4:7A:F1:09:03:EF:45:C8:17:0B:82
Certificate issuer:       /CN=4e407f7ead816a9555f47af10903ef45c8170b82
Certificate serial:       0199228CBCF6304F9BD5B11F4AC33F3FC32D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TkB_fq2BapVV9HrxCQPvRcgXC4I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.mft
Manifest number:          0756
Signing time:             Sun 07 Sep 2025 05:01:12 +0000
Manifest this update:     Sun 07 Sep 2025 05:01:12 +0000
Manifest next update:     Mon 08 Sep 2025 05:01:12 +0000
Files and hashes:         1: TkB_fq2BapVV9HrxCQPvRcgXC4I.crl (hash: LUoCng1TMUKJhotF759XUXmdE2/B/FF++DFeofmoOMc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TkB_fq2BapVV9HrxCQPvRcgXC4I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:8c:bc:f6:30:4f:9b:d5:b1:1f:4a:c3:3f:3f:c3:2d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e407f7ead816a9555f47af10903ef45c8170b82
        Validity
            Not Before: Sep  7 05:01:12 2025 GMT
            Not After : Sep  8 05:01:12 2025 GMT
        Subject: CN=6337bba0332916d6feba3d3b52e71d64afe1a2aa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:0a:ee:b5:f4:bd:24:fc:e4:a3:06:0d:c8:e2:
                    87:06:28:b3:ca:e9:af:ba:62:38:21:f2:b3:23:00:
                    87:09:5f:3d:c1:47:a0:52:f9:ae:44:77:18:b9:18:
                    1a:fb:54:64:10:a9:26:ba:79:5d:2c:bf:b7:86:38:
                    8f:73:61:f1:bc:79:19:9f:3e:52:b0:7c:93:09:ac:
                    5b:a0:6a:c9:4b:eb:0a:15:20:38:2b:3e:b8:07:d0:
                    3b:36:f3:9f:6e:b0:f7:4f:39:37:17:5a:66:7b:c3:
                    f0:2e:d1:28:4a:e1:80:bd:f5:14:cc:16:03:14:0d:
                    92:e1:7f:e9:ea:91:2d:38:bf:ea:c9:ce:65:cd:55:
                    e4:51:7f:3b:63:5f:a4:14:b4:5b:c3:b4:d4:75:58:
                    c9:45:9c:44:6d:21:2a:e3:06:cd:6c:9c:85:8f:0c:
                    fa:1f:16:81:20:64:db:cd:86:99:6c:e8:6e:a6:63:
                    74:f9:db:0e:4c:a7:72:8e:60:b2:ce:c5:74:7f:74:
                    29:6b:a8:c2:df:55:cc:58:5d:1c:4b:79:7b:02:04:
                    37:9f:72:ce:23:ff:d4:6c:2f:54:24:e8:65:81:b5:
                    e7:b4:81:a5:fb:65:78:31:f3:63:68:09:72:8f:d1:
                    21:c9:d4:2f:82:79:11:73:72:09:0a:38:96:a7:06:
                    5e:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:37:BB:A0:33:29:16:D6:FE:BA:3D:3B:52:E7:1D:64:AF:E1:A2:AA
            X509v3 Authority Key Identifier:
                keyid:4E:40:7F:7E:AD:81:6A:95:55:F4:7A:F1:09:03:EF:45:C8:17:0B:82

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkB_fq2BapVV9HrxCQPvRcgXC4I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/356552-312a-44ce-8677-405505fc460e/1/TkB_fq2BapVV9HrxCQPvRcgXC4I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:75:f7:f1:36:0e:f4:75:7e:a8:7c:84:4f:16:cb:d1:93:ad:
         f9:43:2c:97:af:c1:34:89:2e:48:1a:9f:4e:fc:09:30:a3:72:
         a4:44:2a:7b:61:fa:11:4a:c7:48:10:4c:97:5e:ef:e0:2b:cd:
         ae:54:46:9a:4e:f6:d1:80:1e:78:bf:66:a4:3b:ae:38:3c:2c:
         46:4e:df:57:9b:20:94:ce:98:c3:7a:2c:91:34:19:a0:98:58:
         fc:ba:bf:ba:a0:e7:00:7a:8f:b4:4b:75:1e:81:ce:0e:66:ed:
         08:91:e5:13:75:46:32:6e:88:85:85:73:b5:45:49:24:c3:51:
         29:71:32:e5:92:63:ea:bb:70:3e:80:72:63:d0:67:00:90:8d:
         9f:05:fc:3f:88:41:dc:e2:05:45:ed:e2:61:53:c7:cb:bc:f4:
         59:7c:4f:c6:89:33:60:d9:b7:22:19:b5:d8:d0:73:8e:6c:40:
         ca:ca:4d:a4:08:2c:37:aa:2e:98:89:78:34:88:cf:4e:dd:94:
         be:a6:49:9d:78:b4:30:dc:f3:2f:56:ac:b5:8f:9a:e2:80:a6:
         c4:42:4c:a7:2d:91:e7:2c:8e:b0:72:de:06:3e:4a:f9:dd:f3:
         7a:b2:1f:d1:00:db:cc:b0:bc:8f:c6:87:cb:7c:00:13:0b:83:
         e7:44:a1:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----