Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
File:                     6kHoOY_3zvtSIWNusighJuv-O3g.mft (raw, json)
Hash identifier:          xtak7BKl46pbqCuv9uoOV8alsk05eoWZrGSs2BeTgzM=
Subject key identifier:   69:45:51:F8:A4:FC:D4:70:21:D5:D1:E4:17:09:08:03:08:08:42:80
Authority key identifier: EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78
Certificate issuer:       /CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
Certificate serial:       019921B12A531AF1873EE19F65F064DA89FA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
Manifest number:          02C0
Signing time:             Sun 07 Sep 2025 01:01:22 +0000
Manifest this update:     Sun 07 Sep 2025 01:01:22 +0000
Manifest next update:     Mon 08 Sep 2025 01:01:22 +0000
Files and hashes:         1: 6kHoOY_3zvtSIWNusighJuv-O3g.crl (hash: oU5tk8tO+9IXqKNjitZvklEvdKy8/qt/aBLKzdSR3dY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 01:01:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:21:b1:2a:53:1a:f1:87:3e:e1:9f:65:f0:64:da:89:fa
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
        Validity
            Not Before: Sep  7 01:01:22 2025 GMT
            Not After : Sep  8 01:01:22 2025 GMT
        Subject: CN=694551f8a4fcd47021d5d1e41709080308084280
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:2c:9b:c1:8a:df:6e:65:de:7c:51:e1:58:77:
                    d1:79:a5:89:d8:c3:8b:4d:65:78:77:f1:82:9c:67:
                    ac:71:ad:60:17:a7:5b:41:e0:b0:2a:9b:15:06:5a:
                    eb:98:39:0f:ab:80:14:d2:07:72:18:86:cd:44:7f:
                    e0:1a:96:29:48:ab:a5:28:81:54:cd:97:47:71:33:
                    31:bc:76:cc:f3:2a:4c:76:de:1c:29:99:67:91:6b:
                    c8:35:9a:2b:4d:06:f0:1e:5c:f9:bf:81:f2:8d:db:
                    57:87:03:ac:0a:f5:a5:c5:3a:02:17:d4:aa:b6:77:
                    06:06:1f:75:de:c0:69:31:63:26:c0:cd:71:2c:01:
                    39:ea:0e:60:c1:60:ec:ef:94:6b:a1:60:05:21:17:
                    76:a9:30:f4:11:8d:1a:0e:20:e3:b1:dc:84:b2:a0:
                    9d:b6:40:df:7a:83:9a:0c:fc:68:8d:d7:22:00:87:
                    cc:f6:7c:cb:fa:f3:37:a4:33:b8:d8:2a:6e:7e:d2:
                    a4:04:99:84:eb:c8:3f:01:7c:96:df:09:0f:86:1e:
                    84:41:dd:b6:b9:aa:57:0d:39:14:73:ae:aa:e7:1b:
                    41:25:73:ce:67:3f:99:6d:c3:40:0f:55:19:a9:66:
                    92:76:10:c1:41:23:6c:1a:08:0a:8f:26:8f:95:49:
                    1c:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                69:45:51:F8:A4:FC:D4:70:21:D5:D1:E4:17:09:08:03:08:08:42:80
            X509v3 Authority Key Identifier:
                keyid:EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:65:8f:1a:db:6d:b0:6a:fa:85:bf:5a:a0:b5:aa:6f:42:f3:
         4e:6c:62:31:e0:f0:98:f2:c5:9c:20:6d:34:a0:66:18:df:90:
         61:06:ee:f5:86:9d:3e:f8:c9:5d:f0:02:94:4e:c5:b5:31:ae:
         ab:ca:60:96:a3:f0:1f:9d:86:2a:21:b2:46:f1:81:a9:5b:8e:
         25:26:ae:ad:2d:89:e5:5f:60:f9:90:39:43:e2:5d:aa:ee:54:
         a9:2f:b4:74:bd:e9:11:b2:ca:7f:96:3c:00:a6:2b:6c:b6:24:
         cf:a1:1a:6b:3f:12:09:67:b9:89:29:93:29:47:1d:e3:04:78:
         ce:fe:cf:a9:c1:4c:bf:01:9f:e8:97:83:4e:66:a0:51:3b:cf:
         1a:de:53:dc:f3:f5:77:30:c6:3b:8f:47:2a:b3:ec:60:fd:ba:
         0d:b0:e2:14:19:f8:e6:dd:5b:31:47:d7:ee:95:9e:7c:5a:29:
         e3:b9:c7:f3:03:ed:48:13:d4:6f:9a:5c:32:18:ae:bb:68:4a:
         7f:d4:2e:24:fe:5a:ba:e6:0a:44:29:ca:e1:06:79:23:0e:4f:
         2b:d6:8e:97:7f:34:29:a7:3a:be:55:29:7e:a9:da:9a:a1:c4:
         a9:af:64:97:ec:2c:45:15:16:ca:40:4a:65:ad:8b:17:58:97:
         de:fb:f0:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----