Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
File:                     cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft (raw, json)
Hash identifier:          sVi5K7V34iorV+ankxjlkDoTNoLdAVXU1ngGTQeKWUQ=
Subject key identifier:   EF:F0:23:32:2D:39:5A:4C:52:E3:4A:67:DC:CA:CE:44:37:69:41:D8
Authority key identifier: 70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5
Certificate issuer:       /CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
Certificate serial:       019922FA7863068B64C0242D18622CBB4F54
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
Manifest number:          041B
Signing time:             Sun 07 Sep 2025 07:01:03 +0000
Manifest this update:     Sun 07 Sep 2025 07:01:03 +0000
Manifest next update:     Mon 08 Sep 2025 07:01:03 +0000
Files and hashes:         1: cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl (hash: tdK2aHxEafg7ZHJXkFl8vtJiG1tsTjFnMM70/Uu1xmo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:78:63:06:8b:64:c0:24:2d:18:62:2c:bb:4f:54
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=70e5a061315670b5bf26e277c92c3894d72cd3c5
        Validity
            Not Before: Sep  7 07:01:03 2025 GMT
            Not After : Sep  8 07:01:03 2025 GMT
        Subject: CN=eff023322d395a4c52e34a67dccace44376941d8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:83:2b:d3:98:d3:26:b4:76:b3:a1:af:77:a4:
                    ce:11:98:5f:1a:0c:17:da:7b:ba:8e:27:0b:27:9f:
                    6a:d5:c9:6e:b4:fc:39:ca:e3:15:1c:08:e1:f9:c7:
                    bd:96:a9:bf:d5:e3:ec:9c:8c:53:e9:b8:24:57:72:
                    ed:8c:79:e9:59:35:a1:67:87:8c:8a:bd:28:b0:93:
                    d8:bc:73:48:77:33:d0:c1:a6:ef:16:bc:1a:03:5e:
                    ab:3a:af:31:af:9d:7c:8b:a6:60:bb:42:5c:10:8e:
                    21:b9:3f:c3:71:17:3d:f0:1d:22:58:81:90:a7:88:
                    0b:93:f4:83:62:51:d0:82:42:aa:65:87:ed:b7:06:
                    56:ad:dd:06:1e:48:3e:e2:91:3d:3f:8c:5b:0c:93:
                    a6:00:e6:73:82:9a:5b:6a:94:6d:44:21:69:b6:cd:
                    12:cc:e1:e3:be:c0:f3:3f:e9:85:65:17:55:6f:39:
                    56:8b:8d:35:1f:65:df:ea:9e:5b:22:60:9e:6f:ee:
                    8c:e1:1f:82:c2:d7:47:6a:3d:b3:9b:58:e1:7b:d0:
                    98:e5:28:c5:08:d9:e9:34:4c:eb:d9:89:35:73:35:
                    08:a1:f0:54:79:f0:f3:56:1e:06:61:2b:e0:5e:f2:
                    5e:8e:fa:56:b6:2f:6d:57:aa:73:21:40:13:d9:68:
                    ef:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:F0:23:32:2D:39:5A:4C:52:E3:4A:67:DC:CA:CE:44:37:69:41:D8
            X509v3 Authority Key Identifier:
                keyid:70:E5:A0:61:31:56:70:B5:BF:26:E2:77:C9:2C:38:94:D7:2C:D3:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOWgYTFWcLW_JuJ3ySw4lNcs08U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/746d3a-13be-492e-8cb3-62aa054a7851/1/cOWgYTFWcLW_JuJ3ySw4lNcs08U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:1e:09:83:17:71:4f:20:8e:d5:e4:80:ab:9d:d2:a0:f7:c2:
         09:27:47:6e:7a:eb:f5:4e:80:16:4d:07:f2:43:67:9d:5c:6b:
         b1:89:e3:1c:ad:67:04:1c:2c:d9:ad:87:62:67:a2:a4:fa:25:
         0d:ff:79:d8:3a:11:88:fc:8f:12:e3:68:53:9a:da:45:a8:ec:
         2b:6d:7e:a5:8f:92:b3:a1:68:cd:d9:51:c4:68:d1:22:de:39:
         21:eb:0b:9e:96:0a:32:fa:bb:39:45:7b:81:fa:f0:bd:8f:6d:
         5d:4a:d8:2f:45:75:cb:ed:5a:31:82:d8:fa:b6:ea:f4:6f:80:
         c5:65:c0:8c:f5:4f:6f:0d:cc:66:ae:86:cf:8b:cb:26:ae:6c:
         90:88:33:f0:08:10:dc:07:fe:07:70:c5:8b:5a:f2:d6:93:e4:
         7c:1c:f9:41:68:d9:11:2e:0c:df:1c:92:3a:6e:6b:49:42:14:
         9d:f5:29:cd:0b:db:c5:29:88:af:83:a3:9d:96:16:5b:57:55:
         1c:97:f8:5d:6e:ba:f1:9d:50:d7:d5:eb:1f:8f:94:e0:29:45:
         69:9c:46:78:60:37:2c:ae:ae:16:c5:cf:ca:b1:c5:d8:18:09:
         28:89:0c:8c:8e:1f:99:c7:cc:ec:d7:a6:29:3f:a8:8d:d9:49:
         d2:f6:1b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----