Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/24dd54-e910-4e4b-a921-ae8d84003ff1/1/xxXNOs87ay1XvDSFZ1gnU8nMCTM.mft
File:                     xxXNOs87ay1XvDSFZ1gnU8nMCTM.mft (raw, json)
Hash identifier:          4KU7jHsp53VZmZrpEzP91W1fRjGcHIL3ZGrvkQTgVLQ=
Subject key identifier:   37:8F:1E:4A:63:D3:F8:D2:11:4C:B7:47:29:A0:E3:93:55:A2:05:A1
Authority key identifier: C7:15:CD:3A:CF:3B:6B:2D:57:BC:34:85:67:58:27:53:C9:CC:09:33
Certificate issuer:       /CN=c715cd3acf3b6b2d57bc348567582753c9cc0933
Certificate serial:       0199221E8967A64D63999EC95A2E1EF1469D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xxXNOs87ay1XvDSFZ1gnU8nMCTM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/98/24dd54-e910-4e4b-a921-ae8d84003ff1/1/xxXNOs87ay1XvDSFZ1gnU8nMCTM.mft
Manifest number:          166E
Signing time:             Sun 07 Sep 2025 03:00:50 +0000
Manifest this update:     Sun 07 Sep 2025 03:00:50 +0000
Manifest next update:     Mon 08 Sep 2025 03:00:50 +0000
Files and hashes:         1: xxXNOs87ay1XvDSFZ1gnU8nMCTM.crl (hash: OK8eCzC/uOtpv+dyaVSG5T7Sb2NlX3e4XOrF2b4JaPA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/98/24dd54-e910-4e4b-a921-ae8d84003ff1/1/xxXNOs87ay1XvDSFZ1gnU8nMCTM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/98/24dd54-e910-4e4b-a921-ae8d84003ff1/1/xxXNOs87ay1XvDSFZ1gnU8nMCTM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/xxXNOs87ay1XvDSFZ1gnU8nMCTM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 03:00:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:1e:89:67:a6:4d:63:99:9e:c9:5a:2e:1e:f1:46:9d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c715cd3acf3b6b2d57bc348567582753c9cc0933
        Validity
            Not Before: Sep  7 03:00:50 2025 GMT
            Not After : Sep  8 03:00:50 2025 GMT
        Subject: CN=378f1e4a63d3f8d2114cb74729a0e39355a205a1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:c2:fb:8c:bc:24:b1:3a:bb:fa:4c:31:e1:9f:
                    ac:dd:a0:f1:ed:9f:8f:e7:96:74:de:ba:bc:ae:8d:
                    bf:f4:68:b3:e3:37:fd:7f:b3:7b:a2:cd:39:f5:12:
                    1b:8f:b2:5e:2e:4f:6d:0b:63:08:6b:83:e3:3a:73:
                    68:a5:43:d6:43:bc:38:e5:d3:47:4b:56:6e:21:fc:
                    e5:aa:e5:71:3f:49:4c:ac:97:08:fa:f6:61:1e:72:
                    bb:28:f9:0d:d7:63:9b:a7:90:56:dd:8d:9f:80:c8:
                    93:b6:2e:61:8c:6b:89:54:6f:a0:f3:71:fb:28:57:
                    f2:7e:8b:b7:8e:cf:9e:f8:15:e4:2f:7c:18:b7:0a:
                    5e:74:b2:3b:0c:bf:9d:0d:08:4d:e3:29:aa:81:1f:
                    f8:65:4d:cd:03:d7:99:30:ba:92:52:68:fa:74:46:
                    76:35:25:11:4a:16:7b:81:dc:5c:31:13:4c:21:d4:
                    4f:09:ad:5f:52:9d:de:fd:77:38:81:f4:ac:17:ff:
                    72:bb:f9:65:60:20:bb:29:7f:26:c7:05:ee:71:45:
                    fa:58:a6:b1:d1:0c:1f:38:f2:3f:a0:e1:13:a3:9c:
                    34:cd:17:36:76:56:87:54:3e:e9:8a:94:75:7e:52:
                    7f:76:0e:a6:c4:81:81:3d:3a:04:ea:6a:ad:4f:5a:
                    07:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:8F:1E:4A:63:D3:F8:D2:11:4C:B7:47:29:A0:E3:93:55:A2:05:A1
            X509v3 Authority Key Identifier:
                keyid:C7:15:CD:3A:CF:3B:6B:2D:57:BC:34:85:67:58:27:53:C9:CC:09:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xxXNOs87ay1XvDSFZ1gnU8nMCTM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/24dd54-e910-4e4b-a921-ae8d84003ff1/1/xxXNOs87ay1XvDSFZ1gnU8nMCTM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/98/24dd54-e910-4e4b-a921-ae8d84003ff1/1/xxXNOs87ay1XvDSFZ1gnU8nMCTM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:ff:3d:03:7e:ea:4b:a7:d6:48:05:87:46:22:b3:fe:bb:f4:
         04:05:2e:a5:53:b7:bf:4d:e1:ba:8c:69:49:80:f9:ec:f1:30:
         e9:b2:bc:d0:ad:b3:06:64:4c:d1:0b:1c:d3:63:28:c3:38:66:
         83:82:9e:a3:99:12:8c:51:1b:77:f6:4b:cf:a9:df:ac:4a:02:
         59:d8:37:6f:a8:39:a3:2a:76:1f:fd:64:1b:a6:88:8a:76:04:
         d3:01:c5:7f:e8:7f:10:61:e5:e8:03:18:f5:89:58:e9:26:bc:
         50:a8:49:d1:af:eb:20:f4:89:59:ae:45:d3:d1:da:1c:f8:6d:
         a3:b5:db:40:59:cf:26:68:d0:2a:67:75:6c:e0:77:e3:45:2e:
         4f:17:f5:c1:3f:3a:6c:aa:2c:94:cb:fc:46:9c:23:23:43:93:
         de:3a:4b:14:ec:bb:fd:d4:22:07:14:35:31:2f:02:5d:61:ee:
         d5:70:50:c2:65:c5:71:75:75:76:fa:72:3d:e1:1c:5a:1b:db:
         71:d5:00:dd:a1:92:22:c8:a0:29:13:36:c0:27:8c:28:95:a9:
         1a:2e:3e:8f:50:bd:b5:1b:1d:5c:1e:84:92:af:70:2b:4b:fb:
         77:10:82:87:84:5b:b6:2a:82:23:40:4e:16:f0:3e:0a:d6:86:
         9a:0e:f8:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----