Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.mft
File:                     ezR3xSqsENrC7dQXOrbZTV4k3vU.mft (raw, json)
Hash identifier:          igs3U0XQI/xP3tffd1fJ/tg1rWJ2lvZ4SL2q4gTz37c=
Subject key identifier:   14:78:A2:87:C5:E4:4D:93:07:D0:BF:3F:AE:84:5B:77:A4:75:E3:FF
Authority key identifier: 7B:34:77:C5:2A:AC:10:DA:C2:ED:D4:17:3A:B6:D9:4D:5E:24:DE:F5
Certificate issuer:       /CN=7b3477c52aac10dac2edd4173ab6d94d5e24def5
Certificate serial:       0199228C6D83E6CBC54B11106052A5085084
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ezR3xSqsENrC7dQXOrbZTV4k3vU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.mft
Manifest number:          0692
Signing time:             Sun 07 Sep 2025 05:00:52 +0000
Manifest this update:     Sun 07 Sep 2025 05:00:52 +0000
Manifest next update:     Mon 08 Sep 2025 05:00:52 +0000
Files and hashes:         1: ezR3xSqsENrC7dQXOrbZTV4k3vU.crl (hash: SveEx1NmxTqJj2PkBf57I1+Xb5hcqYVmwubkVM4zmKM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ezR3xSqsENrC7dQXOrbZTV4k3vU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:8c:6d:83:e6:cb:c5:4b:11:10:60:52:a5:08:50:84
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7b3477c52aac10dac2edd4173ab6d94d5e24def5
        Validity
            Not Before: Sep  7 05:00:52 2025 GMT
            Not After : Sep  8 05:00:52 2025 GMT
        Subject: CN=1478a287c5e44d9307d0bf3fae845b77a475e3ff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:b1:7e:03:26:90:2c:19:08:be:0e:0e:d2:11:
                    4f:d5:44:ab:29:bc:e1:85:7d:38:14:f1:e1:c8:1d:
                    83:b0:a1:5a:41:ab:ba:32:66:30:5c:ac:0b:5c:f4:
                    8f:06:22:13:64:dc:2f:8c:7f:98:60:b9:76:ec:6a:
                    15:f1:33:fc:53:89:80:4a:52:cb:9c:e4:e3:48:f0:
                    b9:5c:bd:23:dc:97:a5:b6:e0:8d:ac:1a:9a:d4:42:
                    f3:de:d7:c4:6c:93:25:d6:3d:6f:fc:46:14:1e:5b:
                    72:38:4c:2c:20:5f:48:ea:cf:0d:eb:e0:f6:3d:c5:
                    6d:12:de:6b:48:63:49:d4:e7:75:f9:d0:66:ac:fd:
                    a7:ce:cc:49:ac:57:7f:22:f3:d2:c9:3e:3e:bf:3d:
                    36:1f:41:1c:75:33:9e:72:29:81:70:3e:bf:22:cb:
                    bd:3f:e3:04:21:a6:42:55:d3:f6:f8:6b:ab:b1:84:
                    5b:44:52:87:58:2f:9d:8c:7f:2d:01:48:b0:b5:95:
                    fe:cf:18:73:df:fe:4d:6a:7e:bf:9e:6d:90:e9:80:
                    e1:29:bf:80:e6:4d:7e:9c:bb:bf:fc:5d:ac:3f:28:
                    fc:b7:33:5a:bc:49:1b:23:ca:ef:74:34:69:b8:7b:
                    72:22:5d:77:a5:95:43:d0:ea:e4:1c:d5:c6:49:1f:
                    42:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                14:78:A2:87:C5:E4:4D:93:07:D0:BF:3F:AE:84:5B:77:A4:75:E3:FF
            X509v3 Authority Key Identifier:
                keyid:7B:34:77:C5:2A:AC:10:DA:C2:ED:D4:17:3A:B6:D9:4D:5E:24:DE:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ezR3xSqsENrC7dQXOrbZTV4k3vU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         15:5d:98:30:82:68:7d:49:13:25:59:7c:71:85:ff:29:af:87:
         3d:fb:b6:0f:d8:12:ab:ab:4c:96:14:25:02:a5:39:e7:16:dc:
         f5:96:36:c6:f7:fd:86:61:ec:40:3c:b9:22:17:91:03:d0:ac:
         41:bd:74:9b:b0:66:b9:2b:20:31:0f:a2:1e:72:5e:3a:c3:db:
         67:94:87:53:ac:b5:52:66:aa:63:25:59:c0:72:5e:9d:46:a7:
         60:ef:40:08:e8:f9:6b:96:74:ac:1e:ba:f3:ca:c5:75:bd:12:
         e0:7a:fe:71:d9:d6:70:72:bb:d0:67:53:4b:e9:9b:17:77:d4:
         ea:9d:d1:5d:21:3c:7f:f9:dc:f1:05:0d:ff:29:a8:ab:25:9a:
         17:bf:fc:3e:18:1e:eb:f7:3c:00:e4:d0:67:22:37:05:93:ae:
         d2:89:01:5a:f8:23:c0:be:4e:90:12:26:77:02:b9:0c:0b:34:
         09:57:98:bf:95:d4:0d:29:9d:91:f7:44:be:13:a5:3a:6b:5e:
         0a:5f:69:a9:06:b8:05:a5:62:68:eb:b9:74:0b:de:e0:b0:7a:
         03:f9:58:0b:e6:03:09:ae:b8:a6:6b:6d:06:b0:d0:92:66:13:
         97:9c:4f:6b:1e:98:c9:48:9f:25:fd:b0:a9:a2:89:26:7f:b5:
         05:ee:61:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----