Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/ad883d-d243-4b1e-a32a-d14946e4f5cd/1/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.mft
File:                     7w8gUz3MeZWijPZ3Z6BBaYZnxM0.mft (raw, json)
Hash identifier:          gw9inUnPmxJ6BmQmzwVzIwBN7Eo9g6/30LKe9sdVNUk=
Subject key identifier:   BB:74:F3:55:8D:C1:2B:FE:FA:94:1A:76:79:B9:07:47:4B:98:56:55
Authority key identifier: EF:0F:20:53:3D:CC:79:95:A2:8C:F6:77:67:A0:41:69:86:67:C4:CD
Certificate issuer:       /CN=ef0f20533dcc7995a28cf67767a041698667c4cd
Certificate serial:       019918088BCF518309C27BB16452C87CAE5C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/93/ad883d-d243-4b1e-a32a-d14946e4f5cd/1/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.mft
Manifest number:          0BB3
Signing time:             Fri 05 Sep 2025 04:00:37 +0000
Manifest this update:     Fri 05 Sep 2025 04:00:37 +0000
Manifest next update:     Sat 06 Sep 2025 04:00:37 +0000
Files and hashes:         1: 7w8gUz3MeZWijPZ3Z6BBaYZnxM0.crl (hash: 6DxyiEQjV0pPTX7EB2zXuF1JxZjHKotFUWVTCle/mvA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/93/ad883d-d243-4b1e-a32a-d14946e4f5cd/1/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/93/ad883d-d243-4b1e-a32a-d14946e4f5cd/1/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 06 Sep 2025 01:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:18:08:8b:cf:51:83:09:c2:7b:b1:64:52:c8:7c:ae:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ef0f20533dcc7995a28cf67767a041698667c4cd
        Validity
            Not Before: Sep  5 04:00:37 2025 GMT
            Not After : Sep  6 04:00:37 2025 GMT
        Subject: CN=bb74f3558dc12bfefa941a7679b907474b985655
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:f2:18:db:7c:87:06:f9:d1:c7:67:6f:85:f9:
                    89:ef:df:28:74:82:4b:9c:ef:3a:44:6c:f4:b9:b4:
                    19:83:f8:06:df:8c:85:b4:60:62:d7:9d:2c:51:b7:
                    3d:eb:35:dc:fb:7d:d1:78:e3:d4:b8:91:db:b1:59:
                    d6:9f:63:01:e2:40:83:59:16:9d:4b:65:81:8e:5c:
                    80:d7:b3:f1:82:0f:28:4d:15:d7:fd:be:ed:80:f3:
                    bf:8c:14:df:b4:27:16:63:05:1d:94:ed:3c:a0:e1:
                    d5:44:3e:65:79:fd:52:06:52:ef:41:e3:79:59:ae:
                    2e:d6:71:10:22:72:2c:43:2e:31:d3:c9:f4:c3:bc:
                    3d:94:72:a8:97:62:01:82:7a:3f:6f:2b:99:73:43:
                    e3:78:75:1c:8f:ef:8f:4a:8c:70:37:a4:07:a8:c2:
                    25:93:14:3a:ca:75:15:bc:2d:a0:76:48:d2:e5:3e:
                    cd:ec:c1:ff:18:30:94:3b:64:6b:a4:6b:14:0d:c4:
                    87:b3:8e:6a:38:dd:c5:89:dc:64:b9:1c:42:fd:cb:
                    12:07:a7:ae:0d:32:ed:ce:f7:75:b3:2e:ed:0a:62:
                    57:ad:df:51:22:b7:24:12:53:05:b8:f7:d6:b2:79:
                    29:b2:d9:7b:a6:64:25:78:70:f8:f9:5f:24:18:bf:
                    c1:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:74:F3:55:8D:C1:2B:FE:FA:94:1A:76:79:B9:07:47:4B:98:56:55
            X509v3 Authority Key Identifier:
                keyid:EF:0F:20:53:3D:CC:79:95:A2:8C:F6:77:67:A0:41:69:86:67:C4:CD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/ad883d-d243-4b1e-a32a-d14946e4f5cd/1/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/93/ad883d-d243-4b1e-a32a-d14946e4f5cd/1/7w8gUz3MeZWijPZ3Z6BBaYZnxM0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         72:54:90:1f:20:23:3a:da:55:d8:4b:33:9b:e2:c0:f7:21:de:
         30:ba:a4:38:90:bb:d1:30:72:c3:f1:7f:37:0c:77:8a:7c:92:
         4f:b2:be:c0:ba:dc:12:fb:a2:9d:2f:46:52:50:c8:6f:9e:99:
         d4:fe:db:3a:60:ec:5e:68:14:32:7b:d7:01:9d:e9:5c:27:25:
         da:24:ce:62:32:06:35:c0:3d:0e:65:40:4b:f0:a2:f4:bc:68:
         1e:d0:3b:92:75:e3:f9:cf:43:bd:6f:8b:29:a4:af:87:23:f4:
         ca:93:67:f5:47:9b:b7:81:9d:26:b2:18:d5:ab:cc:e6:59:77:
         21:89:3d:00:74:4d:3f:32:b0:48:e0:c9:21:81:42:3c:ac:39:
         64:ec:69:1d:c7:df:e5:5c:00:25:4d:29:fb:eb:47:b3:c6:cd:
         db:c0:79:99:9c:5d:da:da:e0:24:80:64:75:23:ea:7c:5a:b7:
         58:ef:3c:0f:2f:cf:2b:b9:8f:8e:48:04:73:db:51:41:7e:9e:
         7d:07:90:5a:cf:1c:df:d4:d4:49:7c:32:47:62:75:fb:33:42:
         19:b5:ad:81:6a:91:90:eb:c0:34:80:22:e4:22:9e:d6:61:a3:
         f2:82:fd:14:a3:43:2d:dc:b8:f6:a8:50:12:09:19:05:35:46:
         74:5a:b4:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----