Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.mft
File:                     TNN3vorxFHipq-Jx-L3i3j0zNAg.mft (raw, json)
Hash identifier:          AwdgA6/oZhC+yqmjlSPb+ribORlzr/nJCaoDgPXcfpE=
Subject key identifier:   64:DA:FF:43:E1:56:1A:A9:57:7A:3E:62:10:24:5B:B3:CC:CE:E0:22
Authority key identifier: 4C:D3:77:BE:8A:F1:14:78:A9:AB:E2:71:F8:BD:E2:DE:3D:33:34:08
Certificate issuer:       /CN=4cd377be8af11478a9abe271f8bde2de3d333408
Certificate serial:       0199221F4CFBFF1E5679DC2683A0F5C7F0F6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TNN3vorxFHipq-Jx-L3i3j0zNAg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.mft
Manifest number:          08C1
Signing time:             Sun 07 Sep 2025 03:01:40 +0000
Manifest this update:     Sun 07 Sep 2025 03:01:40 +0000
Manifest next update:     Mon 08 Sep 2025 03:01:40 +0000
Files and hashes:         1: TNN3vorxFHipq-Jx-L3i3j0zNAg.crl (hash: +d5xF2Wkbdw0Hj0nCBnDDA+Zk8/fbfEoTiQZPWqyzeE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TNN3vorxFHipq-Jx-L3i3j0zNAg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 03:01:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:1f:4c:fb:ff:1e:56:79:dc:26:83:a0:f5:c7:f0:f6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4cd377be8af11478a9abe271f8bde2de3d333408
        Validity
            Not Before: Sep  7 03:01:40 2025 GMT
            Not After : Sep  8 03:01:40 2025 GMT
        Subject: CN=64daff43e1561aa9577a3e6210245bb3cccee022
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:4d:82:44:99:49:ca:3e:6d:37:b6:b6:82:64:
                    68:de:53:68:e7:85:08:35:17:be:28:e5:e1:39:a7:
                    9c:36:37:21:82:c2:6b:32:53:b8:a9:3e:d8:54:50:
                    12:38:82:89:8c:25:ec:2c:d9:46:f2:79:88:30:20:
                    16:ee:0b:35:27:59:8b:2e:5e:fb:8c:f4:f5:4a:5c:
                    81:37:19:ff:05:57:e8:60:45:e4:e1:d4:d6:16:32:
                    54:41:9d:f3:ff:01:b0:22:12:77:5b:db:77:d8:9c:
                    6b:6b:7c:18:ba:28:2c:67:24:bc:21:43:8d:b9:6d:
                    f3:c4:b8:5b:68:ef:48:07:db:d8:97:10:c6:b1:70:
                    34:04:f8:23:08:33:7c:6b:7f:8b:14:d8:ba:de:bf:
                    25:06:88:aa:ee:53:e7:15:56:70:e1:74:71:59:12:
                    bb:db:52:ed:10:9f:7c:48:32:7a:14:83:d2:a5:ee:
                    01:e2:b1:30:55:d2:44:ae:89:0b:92:c0:aa:96:f0:
                    7b:4e:f7:9e:f1:33:e4:ad:11:a9:29:77:3a:41:37:
                    69:0b:65:b8:c1:03:83:5b:d5:81:f1:bc:ff:95:b9:
                    e3:39:8a:7c:19:8f:7a:e6:f8:9d:57:f9:5e:d7:98:
                    b3:e0:10:a4:2e:d7:c5:98:6c:8b:ba:63:87:d3:ca:
                    0b:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:DA:FF:43:E1:56:1A:A9:57:7A:3E:62:10:24:5B:B3:CC:CE:E0:22
            X509v3 Authority Key Identifier:
                keyid:4C:D3:77:BE:8A:F1:14:78:A9:AB:E2:71:F8:BD:E2:DE:3D:33:34:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TNN3vorxFHipq-Jx-L3i3j0zNAg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/46/51e8b5-7e2c-4008-bf83-b12eb1ceaa14/1/TNN3vorxFHipq-Jx-L3i3j0zNAg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:56:4d:ef:75:ed:fd:7d:95:7b:88:2b:b1:d3:e6:a8:cc:25:
         fb:40:d6:5c:fc:4a:68:fe:6a:eb:d1:49:db:bc:a3:9d:a8:ce:
         98:f3:81:16:90:f6:56:09:a0:d8:29:d6:ff:75:dd:b2:96:e3:
         e8:4b:a2:58:98:cc:64:ac:75:f2:c2:1f:63:60:1b:27:6a:3f:
         f5:20:8b:60:29:8a:ee:7a:b1:4e:d0:09:d2:66:9f:92:a0:51:
         78:aa:c6:f9:06:3d:69:a4:b0:82:3b:c4:03:df:f5:a7:6b:41:
         2c:8c:73:ea:c3:63:b5:29:80:a3:dc:52:a9:ba:1b:c2:7c:5c:
         01:60:0e:00:aa:74:ed:6a:e4:e3:cd:e3:ed:b2:cb:b6:6c:8d:
         21:ff:13:a2:f7:29:63:b0:c8:ed:ce:4e:15:f2:ea:d9:30:bf:
         c5:c3:6f:4d:f6:dd:fc:f2:3c:e8:77:42:a0:90:dc:0c:e3:cc:
         a0:d3:22:8d:a8:93:fe:33:a2:f8:c0:37:5d:eb:7b:a0:7e:b3:
         81:6c:5b:42:14:cf:1e:ab:7a:61:dd:03:22:cc:69:5e:53:dc:
         ea:5c:09:80:3d:09:ce:04:70:1f:10:da:17:44:31:88:45:ca:
         5d:45:34:4f:6b:02:57:44:05:2c:69:e7:2f:70:7d:62:80:ff:
         1d:5b:79:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----