Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/6334ae-8661-4b1c-8430-9b9df443c863/1/e3hz-JwqmFMn6nmWJnQjp3UcYWk.mft
File:                     e3hz-JwqmFMn6nmWJnQjp3UcYWk.mft (raw, json)
Hash identifier:          WxJyQGvDIcyzBfFBeSpNwGrOrzNoiFXlMIb6WdMC3As=
Subject key identifier:   04:E8:A2:5F:2E:72:78:EC:20:C7:AB:63:39:5C:B5:93:F8:9D:30:56
Authority key identifier: 7B:78:73:F8:9C:2A:98:53:27:EA:79:96:26:74:23:A7:75:1C:61:69
Certificate issuer:       /CN=7b7873f89c2a985327ea7996267423a7751c6169
Certificate serial:       019923A0E1777EC25D52B8ED7D1F8AA3584E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/e3hz-JwqmFMn6nmWJnQjp3UcYWk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e2/6334ae-8661-4b1c-8430-9b9df443c863/1/e3hz-JwqmFMn6nmWJnQjp3UcYWk.mft
Manifest number:          166E
Signing time:             Sun 07 Sep 2025 10:02:50 +0000
Manifest this update:     Sun 07 Sep 2025 10:02:50 +0000
Manifest next update:     Mon 08 Sep 2025 10:02:50 +0000
Files and hashes:         1: e3hz-JwqmFMn6nmWJnQjp3UcYWk.crl (hash: VoD6CZayCPBDvPcR7zdS7U8Bs2DVQyMvUlCJKTcB/z0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e2/6334ae-8661-4b1c-8430-9b9df443c863/1/e3hz-JwqmFMn6nmWJnQjp3UcYWk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e2/6334ae-8661-4b1c-8430-9b9df443c863/1/e3hz-JwqmFMn6nmWJnQjp3UcYWk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/e3hz-JwqmFMn6nmWJnQjp3UcYWk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 07:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:a0:e1:77:7e:c2:5d:52:b8:ed:7d:1f:8a:a3:58:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7b7873f89c2a985327ea7996267423a7751c6169
        Validity
            Not Before: Sep  7 10:02:50 2025 GMT
            Not After : Sep  8 10:02:50 2025 GMT
        Subject: CN=04e8a25f2e7278ec20c7ab63395cb593f89d3056
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:46:43:ac:f0:31:01:51:70:e9:9f:c4:af:19:
                    06:ec:83:31:16:54:d4:13:76:5a:31:a4:47:1c:f8:
                    b2:2a:8a:74:cd:94:05:bd:23:fe:ee:2b:a4:db:1f:
                    5b:c2:35:96:38:0f:ff:af:a2:64:01:30:76:a0:c2:
                    58:b1:2e:a9:d8:45:67:eb:ea:9a:b6:1f:b8:88:ac:
                    fd:52:29:7a:1d:f7:4f:8c:e5:73:a5:65:9c:cb:d2:
                    c7:f3:fe:b6:88:b2:68:c3:e3:2e:b6:ad:94:6d:68:
                    18:77:4b:30:ba:41:a6:a7:89:18:b6:bb:bf:e3:ac:
                    4f:85:51:61:c3:0f:c0:56:3d:f6:dd:20:48:35:1c:
                    44:ee:8e:dd:8a:d8:1e:8c:15:5c:c8:b9:6c:a1:f4:
                    80:bc:e9:25:fc:14:1d:63:ee:73:ab:3c:82:46:66:
                    e2:85:19:b2:5b:03:97:71:33:35:35:40:9c:e5:fc:
                    b6:9c:32:ae:cb:bc:05:a9:11:34:d5:d8:b1:b3:66:
                    d5:50:e7:4f:2e:74:cf:1c:1a:62:e7:80:4c:c3:b1:
                    7b:6e:6f:05:ad:6f:18:66:08:91:e6:a5:00:8f:d5:
                    c7:af:95:72:41:f9:63:4b:b8:fa:b0:90:fd:55:f7:
                    83:f3:4a:ec:7b:ac:62:ff:c8:8e:a7:5e:db:03:07:
                    74:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:E8:A2:5F:2E:72:78:EC:20:C7:AB:63:39:5C:B5:93:F8:9D:30:56
            X509v3 Authority Key Identifier:
                keyid:7B:78:73:F8:9C:2A:98:53:27:EA:79:96:26:74:23:A7:75:1C:61:69

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3hz-JwqmFMn6nmWJnQjp3UcYWk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/6334ae-8661-4b1c-8430-9b9df443c863/1/e3hz-JwqmFMn6nmWJnQjp3UcYWk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/6334ae-8661-4b1c-8430-9b9df443c863/1/e3hz-JwqmFMn6nmWJnQjp3UcYWk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c4:ba:09:85:b0:3b:62:ba:90:df:2f:14:ec:3c:3c:d1:d5:4d:
         99:d6:cf:c1:a6:75:98:5f:7a:53:77:40:50:6a:1d:4a:24:9f:
         c8:35:ad:f1:66:bd:c3:86:34:ef:34:b4:eb:eb:3e:00:a1:bf:
         84:69:dc:d5:6e:9f:da:6c:11:1d:f8:d9:30:85:3b:34:41:8d:
         b5:b7:c2:64:df:c8:52:59:ec:22:ca:3b:b5:47:1f:8f:23:46:
         c3:fc:10:ef:ab:0c:35:29:df:22:76:9d:f8:20:06:ce:c4:c2:
         83:b3:db:f8:74:3a:56:82:12:28:43:05:d9:eb:51:e0:1e:44:
         48:e0:dc:a5:6c:c4:29:ea:e2:8b:f0:0d:95:7d:b9:26:f8:33:
         fa:49:9d:f7:74:66:39:dd:5f:43:f3:6a:93:57:fe:21:62:57:
         af:04:ae:18:2a:9e:19:cf:c8:95:29:dc:f4:b5:13:02:65:d1:
         09:d3:4d:7a:c9:cf:1f:96:e7:d5:62:f3:e7:50:fc:6a:63:d4:
         ba:25:4e:4a:e7:b8:36:e3:3c:64:a4:ed:fc:dc:2b:ef:72:b7:
         ae:dc:72:f3:1d:42:aa:2a:19:23:93:ce:7f:4e:ef:3e:f2:0c:
         c8:ae:20:39:32:9d:4a:1e:6a:a7:ca:33:50:e6:f8:54:6e:b2:
         d7:50:43:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----