Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft
File:                     jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft (raw, json)
Hash identifier:          dTOuJAp1qD8ouuAwumRUCS+83DulNMQT4U9ua9vKj0I=
Subject key identifier:   F6:33:ED:C0:CA:3B:6D:EA:2F:DD:4F:3C:FE:BE:2E:21:A7:D9:C4:84
Authority key identifier: 8C:43:78:B5:71:68:2D:34:77:3B:46:37:52:70:1C:94:05:FB:ED:78
Certificate issuer:       /CN=8c4378b571682d34773b463752701c9405fbed78
Certificate serial:       019A71B90D47D8B0E8FAFDA09EA1E5E49308
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jEN4tXFoLTR3O0Y3UnAclAX77Xg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft
Manifest number:          0615
Signing time:             Tue 11 Nov 2025 07:02:24 +0000
Manifest this update:     Tue 11 Nov 2025 07:02:24 +0000
Manifest next update:     Wed 12 Nov 2025 07:02:24 +0000
Files and hashes:         1: jEN4tXFoLTR3O0Y3UnAclAX77Xg.crl (hash: kAta1ltT9z5mTzss8kyT2Fj/ZTOc3oSFel+b+6z5wZg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jEN4tXFoLTR3O0Y3UnAclAX77Xg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 12 Nov 2025 07:02:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9a:71:b9:0d:47:d8:b0:e8:fa:fd:a0:9e:a1:e5:e4:93:08
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8c4378b571682d34773b463752701c9405fbed78
        Validity
            Not Before: Nov 11 07:02:24 2025 GMT
            Not After : Nov 12 07:02:24 2025 GMT
        Subject: CN=f633edc0ca3b6dea2fdd4f3cfebe2e21a7d9c484
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:e5:d7:c5:6f:d9:84:8e:7d:f1:ba:16:eb:fa:
                    55:95:00:35:4e:71:ff:40:a7:e6:8a:d4:a4:b4:c3:
                    56:44:9b:4d:0f:10:f9:4e:11:08:d2:2e:f4:e4:22:
                    a0:f6:b4:33:ea:59:55:b1:45:6b:97:6c:82:78:d8:
                    55:03:b9:0d:72:52:00:e4:6a:73:58:8e:1d:7d:60:
                    15:de:55:58:f8:22:bc:a1:15:b4:e6:c0:30:ce:20:
                    23:1e:34:14:bc:54:9a:13:bc:6d:f9:2d:86:e5:6b:
                    9a:d7:b4:b9:39:8e:9d:1f:54:91:76:55:a3:e8:7f:
                    67:76:62:9d:3d:07:9e:4f:43:3f:94:61:2f:da:30:
                    37:cd:86:f1:93:75:c2:7c:08:32:e8:63:46:b2:a8:
                    b0:26:4e:84:f0:cf:44:39:c2:bb:62:34:5a:1c:1c:
                    23:9a:0a:39:3a:8d:be:ec:47:0c:08:0c:95:f2:f3:
                    e7:2d:37:6f:5d:10:56:f1:8c:5c:08:9c:9c:ec:fe:
                    ce:95:ca:fe:81:19:3b:92:94:07:33:57:f8:ee:82:
                    11:58:a3:78:b6:80:46:14:8d:0a:ef:53:3f:53:bc:
                    6e:04:17:10:44:6d:e8:a7:1f:e9:37:6c:7b:18:98:
                    96:a0:a8:38:9d:05:77:14:c2:58:1a:aa:20:cb:d0:
                    63:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:33:ED:C0:CA:3B:6D:EA:2F:DD:4F:3C:FE:BE:2E:21:A7:D9:C4:84
            X509v3 Authority Key Identifier:
                keyid:8C:43:78:B5:71:68:2D:34:77:3B:46:37:52:70:1C:94:05:FB:ED:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jEN4tXFoLTR3O0Y3UnAclAX77Xg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/57/76b445-3461-4f4f-9b42-74f01b2586f5/1/jEN4tXFoLTR3O0Y3UnAclAX77Xg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:d7:4e:4e:68:51:1d:47:b6:30:0d:6a:bc:3a:2e:2b:a5:30:
         9c:fe:e4:bb:b6:7b:a1:3f:8e:f1:25:84:90:62:01:ab:1b:74:
         ce:24:9b:66:76:bd:80:29:eb:7f:39:a5:1d:35:d2:63:4a:0d:
         7c:6d:78:eb:7c:af:1b:d1:dd:95:3d:b0:36:cd:ac:59:3d:3d:
         72:19:19:95:1d:df:46:25:86:b6:0b:ac:42:41:9d:23:2d:1b:
         67:8d:87:67:d9:04:d4:ff:05:c5:ea:6f:ce:4c:ae:6d:7e:3f:
         c5:5e:e7:cb:1d:fc:b4:22:81:7f:73:52:1f:91:c9:13:b2:e6:
         71:14:86:29:93:ff:82:56:c8:09:3b:53:6b:10:8b:7d:a4:94:
         56:a5:36:01:aa:b4:5d:9b:f7:47:d0:dc:93:37:e2:45:d7:1e:
         5a:4e:b5:e5:5d:a6:0d:7f:60:a2:de:a1:79:61:36:79:47:f1:
         d9:e4:03:1e:45:28:28:6c:ec:a8:e4:94:a0:fb:6d:31:0d:5d:
         da:02:49:e8:8e:79:4b:2e:a8:23:49:42:e7:b7:a4:70:f6:63:
         87:28:9d:a4:da:6e:2d:3e:b5:a4:7d:a4:59:ba:a8:e3:af:ac:
         7d:a5:77:7f:64:35:a9:0f:0d:3a:50:99:95:7b:e6:e0:3d:e6:
         eb:69:ec:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----