Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
File:                     2IUFXXA5jPDHLM6sXlga1A8gPvw.mft (raw, json)
Hash identifier:          mSICPokiLBE4euzrSsEcmC7PcInwuQmQ63I2QCYJjYg=
Subject key identifier:   4C:CF:F4:11:AB:7C:8B:E4:A1:CD:19:2A:59:6B:1F:7E:F6:3B:0C:4F
Authority key identifier: D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC
Certificate issuer:       /CN=d885055d70398cf0c72cceac5e581ad40f203efc
Certificate serial:       0199228D16634FDEC8F39783B198C734A661
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
Manifest number:          0E3B
Signing time:             Sun 07 Sep 2025 05:01:35 +0000
Manifest this update:     Sun 07 Sep 2025 05:01:35 +0000
Manifest next update:     Mon 08 Sep 2025 05:01:35 +0000
Files and hashes:         1: 2IUFXXA5jPDHLM6sXlga1A8gPvw.crl (hash: /KR81OxesGBOgdXd1SCXrhu3i1Rb5xss7Z3+GwaDGeE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:8d:16:63:4f:de:c8:f3:97:83:b1:98:c7:34:a6:61
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d885055d70398cf0c72cceac5e581ad40f203efc
        Validity
            Not Before: Sep  7 05:01:35 2025 GMT
            Not After : Sep  8 05:01:35 2025 GMT
        Subject: CN=4ccff411ab7c8be4a1cd192a596b1f7ef63b0c4f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:63:8b:b1:25:33:39:6b:0b:21:77:9e:96:9e:
                    45:e4:98:81:26:12:b5:31:25:9b:01:a1:ae:be:de:
                    31:b9:69:cc:c4:09:8a:6c:1c:10:89:b8:81:08:9b:
                    de:fd:eb:38:83:e0:08:5c:a2:49:51:d8:55:69:72:
                    f4:c3:12:f7:82:5f:92:5e:d1:33:28:74:90:02:d2:
                    6b:47:4e:77:b5:11:56:91:2d:08:19:99:8c:72:af:
                    b2:11:28:06:0b:16:ce:dd:b5:d5:5e:fc:0e:79:7d:
                    96:22:05:6d:e5:79:2b:41:d1:01:87:8e:d2:cf:98:
                    74:41:27:39:f6:66:b5:ee:95:80:73:04:19:d2:00:
                    60:df:53:70:16:8e:1a:c4:f4:bd:23:1d:46:15:b1:
                    3d:f0:03:73:3b:df:36:59:ee:1c:0b:4b:e3:cf:b6:
                    0d:59:37:bb:35:9a:f8:63:ec:91:fa:8b:27:68:84:
                    0b:58:98:97:a3:6d:af:d7:2f:4e:64:e4:88:ca:83:
                    6f:76:ad:3e:10:23:99:f5:02:69:ac:a7:c7:2a:2e:
                    38:5e:0a:88:40:f2:c3:8d:a8:35:0c:46:b5:96:0c:
                    ca:45:e8:88:f1:87:95:1a:42:be:69:8e:5b:e2:50:
                    07:7b:c5:df:25:11:c1:64:87:a7:d6:97:5f:a7:23:
                    47:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:CF:F4:11:AB:7C:8B:E4:A1:CD:19:2A:59:6B:1F:7E:F6:3B:0C:4F
            X509v3 Authority Key Identifier:
                keyid:D8:85:05:5D:70:39:8C:F0:C7:2C:CE:AC:5E:58:1A:D4:0F:20:3E:FC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2IUFXXA5jPDHLM6sXlga1A8gPvw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/82af28-b634-463a-b6be-1ca3c67f1506/1/2IUFXXA5jPDHLM6sXlga1A8gPvw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c8:ab:a8:45:5c:5a:2b:ca:69:f3:52:1e:25:00:04:10:63:e2:
         10:3f:3b:7f:43:8b:bf:8d:ef:8a:ac:94:8d:d9:ff:0a:04:8a:
         f1:6f:00:d0:9f:db:06:bd:7c:f6:f4:98:9b:98:29:bd:47:05:
         ca:a9:3d:73:f4:49:81:34:fc:4f:85:7e:5d:7e:7a:80:e7:1b:
         81:5a:9c:a3:34:ff:c1:9b:a1:de:65:0d:c4:0a:ad:ff:4b:46:
         56:18:ef:f4:72:59:ec:3c:96:89:9c:bc:da:1a:7e:5b:c3:a8:
         04:f4:fe:00:b5:f2:7c:df:51:1c:6f:16:56:cd:9e:b5:99:55:
         2d:75:6c:44:f4:72:ee:be:a9:9b:a3:e5:eb:d8:91:19:b6:32:
         56:02:dc:a4:42:80:21:3a:68:61:2f:0b:18:05:52:7e:1e:34:
         99:57:65:f2:76:5c:1e:fc:dd:5b:ca:a5:09:84:23:39:0b:df:
         1a:3e:62:07:7f:77:03:8a:18:24:33:37:36:43:84:86:fa:d2:
         c2:62:bc:6d:cf:63:20:af:65:a2:93:f8:52:ff:45:56:85:b7:
         15:1a:4f:3e:c5:fc:82:cf:c2:12:30:35:1b:f6:05:32:86:20:
         3c:ac:4e:51:b3:a4:58:c9:1e:da:21:c3:b9:94:d5:ce:a2:6b:
         63:b3:40:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----