Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.mft
File:                     v_tlOi9T2WcLP5GEAgnz8seKwbI.mft (raw, json)
Hash identifier:          9WQ0lYgMEQVkajYmhCR9ep9u5RGgZXxhjYD6Xi5q27E=
Subject key identifier:   BF:37:5D:7C:EB:5C:6A:CB:94:5D:89:A0:11:61:D2:B6:EF:E6:EC:45
Authority key identifier: BF:FB:65:3A:2F:53:D9:67:0B:3F:91:84:02:09:F3:F2:C7:8A:C1:B2
Certificate issuer:       /CN=bffb653a2f53d9670b3f91840209f3f2c78ac1b2
Certificate serial:       01984965CECF201078A6E9A828862475052E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/v_tlOi9T2WcLP5GEAgnz8seKwbI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.mft
Manifest number:          15FF
Signing time:             Sun 27 Jul 2025 01:01:05 +0000
Manifest this update:     Sun 27 Jul 2025 01:01:05 +0000
Manifest next update:     Mon 28 Jul 2025 01:01:05 +0000
Files and hashes:         1: v_tlOi9T2WcLP5GEAgnz8seKwbI.crl (hash: R9w4z42J+GNnL27K8B5392j+rYvP/9Hn+SsOh87Hz1U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/v_tlOi9T2WcLP5GEAgnz8seKwbI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 28 Jul 2025 00:00:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:49:65:ce:cf:20:10:78:a6:e9:a8:28:86:24:75:05:2e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bffb653a2f53d9670b3f91840209f3f2c78ac1b2
        Validity
            Not Before: Jul 27 01:01:05 2025 GMT
            Not After : Jul 28 01:01:05 2025 GMT
        Subject: CN=bf375d7ceb5c6acb945d89a01161d2b6efe6ec45
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:75:3a:a4:b0:b5:bd:37:ca:4d:a9:e7:f9:8e:
                    c4:80:72:ba:ab:df:8e:f7:f5:37:be:59:75:70:db:
                    6a:36:f0:18:fe:bb:9d:ba:d4:0f:4b:46:5c:43:f6:
                    c4:8a:1c:a3:bb:53:60:81:07:98:7d:ce:fa:83:b1:
                    dd:57:ce:05:f6:96:36:89:a4:ab:38:5a:d3:ce:a6:
                    ec:e9:2b:c6:37:61:ce:43:75:03:79:cb:57:06:1b:
                    ea:58:7d:37:e9:cf:36:6d:71:f9:3d:d4:4d:0c:0f:
                    c5:91:b7:3b:83:e4:39:7c:9b:e5:68:ff:34:4c:9d:
                    a5:14:ee:c4:af:8f:09:3e:e2:68:0d:b3:1c:d5:f0:
                    94:f0:25:76:41:5a:51:e6:87:1f:07:c7:19:c1:c1:
                    a3:23:12:b2:9c:6a:61:dd:4a:73:c8:53:73:0c:3a:
                    b4:ec:4d:8a:d4:e9:e4:78:28:bf:fc:b6:51:d0:75:
                    11:19:d8:44:7b:6c:8e:bd:e7:6c:5c:5f:3d:b1:c4:
                    0a:95:23:fc:63:37:0b:bf:ce:83:81:bb:0a:d1:59:
                    b2:14:9d:ad:d3:7d:6b:ef:42:42:cd:b8:1f:74:2a:
                    6d:c9:aa:5b:8c:b4:f3:6f:ae:6f:ce:f7:2c:d4:46:
                    16:f1:cf:61:7a:dc:43:c7:66:e8:d3:b1:d8:7c:3b:
                    3b:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BF:37:5D:7C:EB:5C:6A:CB:94:5D:89:A0:11:61:D2:B6:EF:E6:EC:45
            X509v3 Authority Key Identifier:
                keyid:BF:FB:65:3A:2F:53:D9:67:0B:3F:91:84:02:09:F3:F2:C7:8A:C1:B2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v_tlOi9T2WcLP5GEAgnz8seKwbI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:e4:28:ac:84:b7:99:ba:16:43:c1:50:b2:ed:88:b4:83:2a:
         46:a9:4a:03:64:b7:99:7f:58:48:b8:70:11:75:5e:c0:78:18:
         39:de:5e:1f:63:f3:f6:93:b2:38:43:a9:84:ea:e7:4c:f3:5a:
         fa:d7:cc:1a:3a:86:64:fc:c8:40:eb:9d:75:57:81:2b:24:81:
         47:a9:4d:bc:0b:6c:3c:86:f5:d4:d2:c4:67:83:ec:bc:8a:d1:
         37:b7:19:83:b2:c0:f3:c5:35:c5:58:e7:77:c5:46:2b:6e:e1:
         35:e6:ba:6b:56:f4:a6:aa:dd:25:7b:92:13:8c:07:b5:e3:69:
         d5:af:ab:d8:a8:75:11:65:4a:a7:c9:22:ff:3a:ee:ea:fb:17:
         19:d8:a8:8b:f7:8f:a2:27:48:8a:29:6e:cf:3b:7f:53:1e:4b:
         25:ae:b6:35:ce:bb:69:d8:21:5d:4e:ba:fd:0a:64:ac:1c:93:
         65:10:f5:8e:db:56:8c:53:31:c5:fb:85:e8:92:3f:a6:89:0f:
         32:a5:c0:56:b4:f8:6b:44:05:7a:24:04:0d:22:9f:66:7b:83:
         c3:d7:ef:91:86:d5:3d:40:45:bf:b4:f9:38:dc:2d:61:7c:88:
         77:ba:29:6d:cd:da:6c:a5:59:92:69:59:45:73:9a:ee:94:f6:
         eb:44:4f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----