Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft
File:                     iDyv-AezKVLWjHGq8BuRmErR6gg.mft (raw, json)
Hash identifier:          pk0eIGn8SVorm5iq8b6JJeMhfyHXlgSCSrdkr+GdRnU=
Subject key identifier:   9E:93:3F:54:65:23:6C:BF:AD:08:D8:03:23:95:6B:D0:0D:9A:2D:B9
Authority key identifier: 88:3C:AF:F8:07:B3:29:52:D6:8C:71:AA:F0:1B:91:98:4A:D1:EA:08
Certificate issuer:       /CN=883caff807b32952d68c71aaf01b91984ad1ea08
Certificate serial:       019923D5A1F528B4DD3B25DDF2B5106F83A0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft
Manifest number:          045B
Signing time:             Sun 07 Sep 2025 11:00:26 +0000
Manifest this update:     Sun 07 Sep 2025 11:00:26 +0000
Manifest next update:     Mon 08 Sep 2025 11:00:26 +0000
Files and hashes:         1: iDyv-AezKVLWjHGq8BuRmErR6gg.crl (hash: vfF03SNniXpOTlT3AOe5NRwH3Ql/G9mTdOfCtdzj9o8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:d5:a1:f5:28:b4:dd:3b:25:dd:f2:b5:10:6f:83:a0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=883caff807b32952d68c71aaf01b91984ad1ea08
        Validity
            Not Before: Sep  7 11:00:26 2025 GMT
            Not After : Sep  8 11:00:26 2025 GMT
        Subject: CN=9e933f5465236cbfad08d80323956bd00d9a2db9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:fd:05:4e:7c:95:ec:5e:57:19:97:7e:fc:de:
                    c5:12:f8:57:ab:40:ce:e0:72:5e:5f:e6:2b:f3:d6:
                    b6:63:77:45:75:c1:90:98:c6:46:1b:b2:4f:93:da:
                    b7:04:32:99:e3:b2:d9:fd:60:d1:02:f1:71:8d:c4:
                    3c:73:4b:3d:f4:98:1b:ba:5e:17:57:13:8d:89:6d:
                    66:85:c5:20:cf:2c:6e:64:b4:a6:67:1a:63:b0:8e:
                    80:28:c2:bf:31:68:c4:b1:b3:2c:61:82:61:e7:fa:
                    ec:bd:9a:0e:ca:c8:38:d5:b8:1d:6d:86:a0:4d:2f:
                    6a:27:f8:00:4c:99:54:08:f4:0c:41:87:c3:3b:d7:
                    1f:74:bc:1d:d0:fa:8c:1b:22:bf:5e:c3:00:2a:a0:
                    69:ab:5a:c8:c9:09:c8:27:34:60:33:09:ee:36:a7:
                    ff:9e:d6:c8:61:2b:93:a9:52:26:8b:bf:e9:a3:a9:
                    1c:c1:cc:a4:be:e3:27:81:e2:5e:a0:0d:27:52:67:
                    f3:dc:e0:65:3e:30:e9:8d:7f:07:4f:b1:00:38:c8:
                    4f:81:b8:11:dc:c4:a1:eb:48:0d:5c:6f:12:71:b4:
                    d6:31:1e:4f:93:cc:fe:d6:32:73:4c:02:bd:6a:34:
                    95:45:3d:e2:aa:b7:27:48:29:57:df:8e:35:34:0d:
                    98:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:93:3F:54:65:23:6C:BF:AD:08:D8:03:23:95:6B:D0:0D:9A:2D:B9
            X509v3 Authority Key Identifier:
                keyid:88:3C:AF:F8:07:B3:29:52:D6:8C:71:AA:F0:1B:91:98:4A:D1:EA:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDyv-AezKVLWjHGq8BuRmErR6gg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/a8b3c2-cad5-45a3-afaa-9ced5e5eff0f/1/iDyv-AezKVLWjHGq8BuRmErR6gg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         77:3e:b8:a2:86:83:a5:61:6c:96:3d:2d:a4:08:c1:76:25:bc:
         71:b9:16:5d:59:b9:81:52:b6:4d:9d:aa:49:64:a7:e3:dc:f3:
         0a:02:9d:17:1a:3f:5e:4c:4b:25:59:42:23:e8:0d:b7:b1:ab:
         3b:82:f0:95:42:98:cf:f8:0b:3a:91:d4:75:72:50:7a:2c:c9:
         85:e6:68:e4:47:a2:ed:86:5f:ba:03:31:5d:a2:54:d1:ec:12:
         e6:70:4e:b3:75:01:1f:fd:dc:a2:ec:71:2e:d7:c2:31:5b:de:
         b6:2a:58:0d:31:dc:03:cd:d7:61:0e:da:a2:62:88:0b:f6:45:
         4a:23:f1:d9:8c:c7:c8:91:de:38:f4:39:85:34:c4:07:bc:7c:
         00:82:50:c4:0a:ed:d9:45:c6:3c:46:5d:2e:56:cb:5c:8c:97:
         72:7f:e8:96:43:2d:6e:8f:8c:24:a0:97:c3:62:7e:14:e0:f9:
         51:e6:f4:82:bc:85:6b:e9:28:06:81:6d:74:1b:e8:a0:51:ca:
         d5:36:83:3e:d2:5e:17:e1:f1:37:ea:7c:b0:a5:e1:46:37:7e:
         34:d0:29:57:0b:09:10:79:3b:bb:fa:70:37:5c:e0:bd:a0:e5:
         07:42:f5:96:03:7e:3c:0f:45:05:bd:fe:5c:79:a7:f9:6b:f9:
         4d:4a:87:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----