Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
File:                     rDWoN7KvW2-xjKNdFguamhgiBO8.mft (raw, json)
Hash identifier:          Z6txjxGxqgwRqjW5gpBTZmS+wf0ttSQDF8AC32nNuHI=
Subject key identifier:   8D:74:80:87:18:27:2E:90:43:C1:FA:90:CF:9F:4A:F4:87:AA:03:54
Authority key identifier: AC:35:A8:37:B2:AF:5B:6F:B1:8C:A3:5D:16:0B:9A:9A:18:22:04:EF
Certificate issuer:       /CN=ac35a837b2af5b6fb18ca35d160b9a9a182204ef
Certificate serial:       019921B10484C41CE58AE121FCFD97BEA585
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
Manifest number:          115A
Signing time:             Sun 07 Sep 2025 01:01:12 +0000
Manifest this update:     Sun 07 Sep 2025 01:01:12 +0000
Manifest next update:     Mon 08 Sep 2025 01:01:12 +0000
Files and hashes:         1: rDWoN7KvW2-xjKNdFguamhgiBO8.crl (hash: ZHEkYSdXQSFcm0gGAu34EF5e0iweRjvdu/yXuqhp0h8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 01:01:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:21:b1:04:84:c4:1c:e5:8a:e1:21:fc:fd:97:be:a5:85
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ac35a837b2af5b6fb18ca35d160b9a9a182204ef
        Validity
            Not Before: Sep  7 01:01:12 2025 GMT
            Not After : Sep  8 01:01:12 2025 GMT
        Subject: CN=8d74808718272e9043c1fa90cf9f4af487aa0354
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:d9:88:ec:1d:d5:be:64:47:a3:a0:76:04:b6:
                    35:5e:57:e7:fd:b5:19:88:4d:9c:5f:be:e4:da:b9:
                    e0:c9:28:e6:88:12:7c:a3:1b:09:b2:6b:aa:c1:2f:
                    39:5e:2a:d9:01:d7:f8:9c:ef:b4:88:d8:0f:4d:75:
                    72:d8:fe:3b:4c:d3:31:60:89:20:44:ec:b4:af:0a:
                    57:e3:29:e4:83:4e:86:64:ea:ec:51:af:a6:66:b3:
                    76:11:67:ab:a6:b1:07:f4:1c:c9:2a:45:b1:00:ce:
                    8a:5c:1f:eb:df:5a:c0:10:83:39:b8:cd:42:e0:94:
                    16:cf:57:b3:fe:b2:14:8e:82:a3:ce:ff:e5:60:1a:
                    ee:af:90:d0:c8:6a:6f:8d:5c:f3:78:31:fb:d1:08:
                    52:93:0a:6f:1d:49:b5:a0:73:1f:c1:a2:01:97:8e:
                    8c:b4:c7:61:62:5f:d0:64:ce:05:53:8b:2f:f0:28:
                    d8:8c:a5:bc:76:fa:0d:e8:42:22:c6:cb:7c:42:70:
                    b8:8b:05:bf:84:1d:bb:bb:86:b0:a0:f6:82:28:7d:
                    0b:83:d6:a7:86:e2:01:e2:c0:b8:d4:a2:b8:26:8e:
                    d1:a1:36:a2:b3:b1:9f:ae:72:fb:4a:d1:df:69:45:
                    7f:21:8a:ae:72:45:12:f1:11:2e:ff:45:01:9f:c9:
                    a8:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:74:80:87:18:27:2E:90:43:C1:FA:90:CF:9F:4A:F4:87:AA:03:54
            X509v3 Authority Key Identifier:
                keyid:AC:35:A8:37:B2:AF:5B:6F:B1:8C:A3:5D:16:0B:9A:9A:18:22:04:EF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rDWoN7KvW2-xjKNdFguamhgiBO8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/90/6e781a-bcfb-4a2b-b617-b511fba1329a/1/rDWoN7KvW2-xjKNdFguamhgiBO8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         64:47:33:31:1e:ad:8a:89:50:85:be:1d:da:22:37:f2:7f:75:
         82:1f:f0:cc:5d:e2:05:10:26:a3:88:9e:4d:50:53:e7:80:d7:
         59:32:08:d9:ed:3e:b9:6a:25:26:b7:25:4d:fe:18:02:c4:8c:
         75:ed:b0:8a:43:c7:99:11:a4:06:4a:76:78:86:61:3b:9b:06:
         8f:4b:9c:f9:b5:94:11:03:60:a4:8d:59:14:09:c7:55:f3:d1:
         48:ac:2f:32:4e:a3:49:e2:a9:9e:fc:68:8b:83:46:ad:1a:46:
         dc:9e:40:7b:b1:6b:1f:b5:f5:51:96:ef:fc:8f:f5:6f:b9:41:
         a3:64:91:c0:59:2c:db:cc:95:6f:51:ed:31:7e:bb:51:d3:9b:
         76:21:aa:8c:f0:8b:3c:80:4b:bb:5c:90:64:cd:a9:72:c5:8e:
         b3:20:64:ae:2e:33:11:dd:c3:66:47:08:a9:fc:86:bc:f2:63:
         c3:df:17:18:8a:3e:1e:6b:c0:ad:c5:12:f1:7c:b1:85:45:26:
         78:67:a5:86:b4:bb:22:e7:50:d0:60:32:7e:45:b4:9e:4e:e5:
         63:07:d1:1c:f4:53:a0:db:c2:d4:d4:67:8d:b5:56:5d:93:5d:
         ef:38:98:48:bb:42:87:ce:8f:09:0e:7f:5b:07:70:1a:5c:3d:
         91:3d:1f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----